Privacy Policy

This Privacy Statement explains how Santa Fe Associates International L.L.C.  processes personal data collected through websites, products, and services (“applications”) and through in-person and digital events, webinars, surveys, marketing activities, and visits to our premises (along with applications, collectively our “offerings”). References to “SFAI Qatar,” “we,” or “our” means Santa Fe Associates International L.L.C. – a QFC registered entity in Qatar. and other entities that belong to the SFAI corporate family and that link to this Privacy Statement.

We may display supplemental privacy notices on occasion, such as when we believe additional transparency would help you make an informed choice about whether to provide personal data. For example, you may see a supplemental privacy notice explaining a particular data collection program, or you may see a supplemental privacy notice when registering for an event.

SFAI Qatar processes personal data for a variety of purposes. We collect this personal data directly from you, for example, if you engage us to prepare your tax return, if you visit SFAI Qatar website, if you submit your contact details to receive marketing communications from us, if you submit event-related data to attend SFAI Qatar events or submit a job application via the SFAI Qatar careers website. Alternatively, we process your personal data in the context of providing professional services to your employer or service provider, for example, conducting an audit of your bank or payroll for the company you work for. Finally, we obtain your personal data via publicly available sources, such as LinkedIn. This privacy notice is intended to cover all the above-mentioned scenarios. Following are the additional sources to collect personal data:

• Visitors to SFAI Qatar website
• Clients
• Individuals whose personal data we obtain in connection with providing services to our clients
• Contacts in our customer relationship management (CRM) systems
• Participants of SFAI Qatar meetings, conferences, events and learning sessions
• Individuals who visit our social media sites, social media plugins and tools
• Individuals who correspond with SFAI Qatar via email
• Job applicants
• Alumni
• Vendors
• Visitors to SFAI Qatar office

In case you have any inquiries regarding the processing of your personal data or wish to contact the data protection officer of SFAI Qatar, please contact the SFAI Qatar data protection team who will direct your query to the appropriate person or team within the organization.

What data is covered?

In this privacy statement, “personal data” means any information relating to an individual who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data or an online identifier. Personal data also refers to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of an individual.

It also includes special categories of personal data (special category data) from which we can determine or infer an individual’s:

• National origin
• Political opinions
• Religious or philosophical beliefs
• Membership of a trade union
• Genetic data
• Biometric data
• Physical or mental health or condition

As well as personal data relating to criminal convictions and offenses

Your rights in relation to personal data

You have the following rights in relation to your personal data:

• To access the personal data held by SFAI Qatar about you
• To have your personal data corrected, for example, if it is incomplete or incorrect
• To opt out of receiving marketing communications at any time
• To restrict or object to the processing of personal data or request erasing personal data (in certain circumstances and subject to applicable law)
• To receive a copy of the personal data which you have provided to SFAI Qatar, in a structured, commonly used (in certain circumstances and subject to applicable law)
• Where you have provided personal data voluntarily, or otherwise consented to its use, the right to withdraw your consent
• The right to complain to a data protection authority (see section “Complaints”)

If you have a query or wish to exercise your rights, please speak to the person you usually deal with at SFAI Qatar or contact the SFAI Qatar data protection team.

Complaints

If you are concerned about an alleged breach of privacy law or any other regulation by SFAI Qatar, you can contact the person you usually deal with at SFAI Qatar, Shoumoukh Tower B, 10th Floor C Ring Road Doha, Qatar.

Purposes for which we process personal data

Visitors to SFAI Qatar website

Personal data that we collect about you when you visit our site falls into several categories.

We collect personal data that you provide voluntarily through our site, for example, when completing online forms to contact us, subscribing to a newsletter, using one of our online benchmark tools, subscribing to receive marketing communications from us, participating in surveys or registering for events that we are organizing. The information we collect about you include the following:

• Name
• Job title, job level or job function, role
• Education
• Company or organization
• Company data
• Contact information, including primary email, email address and telephone numbers
• Demographic information, such as industry, country, postcode, preferences, and interests
• Other information relevant to client surveys or similar research
• Information relating to events captured through event-related forms, such as dietary restrictions, hotel and flight information, registration/participation status, media interview attendance, previous event experience and gender
• Information pertinent to fulfilling our services to you
• Any other personal data that you voluntarily choose to provide to us

We do not intentionally collect sensitive category data unless you provide us with such data. While there may be free text boxes on the site where you are able to enter any information, we do not intend to process sensitive information. You are not required to provide, and should not disclose, sensitive personal information in the free text boxes. If you choose to provide any sensitive personal information in this manner, you acknowledge you consent to the collection and processing of this sensitive information.

if you register on our site, your personal data will be stored in our CRM system. Data of registrants is deleted after an individual has not actively engaged with SFAI Qatar for 18 months, or sooner if required by law.

If you have opted out of receiving SFAI Qatar publications, your basic contact details will remain on our opt-out list.

Information that we collect automatically

When you visit our site, we collect certain personal data automatically from your device. Specifically, the data we collect automatically include information, such as your IP address, pixel ID, device type, unique device identification number, browser type, operating system, broad geographic location (e.g., country or city-level location) and other technical information. We also collect information about how your device has interacted with our site, including the pages accessed, current URL, time you visited the site and links clicked. Collecting this information enables us to better understand the visitors who come to our site, where they come from and what content on our site is of interest to them. We use this information for our internal analytics purposes, and to improve the quality and relevance of our site to our visitors. Information will be collected using cookies and similar tracking technology, as explained further in the SFAI Qatar Cookie Policy. Note that if they Do Not Track setting in your browser is enabled, Advertising/Targeting cookies will be disabled by default.

Our site also uses various social media plugins.

Purposes for which we process your personal data as a visitor to our site are:

• To administer and manage our site, including to confirm and authenticate your identity, and prevent unauthorized access to restricted areas of our site
• To personalize and enrich your browsing experience by displaying content (including targeted advertising) that is more likely to be relevant and of interest to you
• To analyze the data of visitors to our site and site traffic information
• To capture webometrics about the journey of users within our site
• To determine the company, organization, institution, or agency that you work for or with which you are otherwise associated
• To develop our business and services
• To provide you with marketing communications,
• To conduct benchmarking and data analysis (for example, regarding usage of our site and demographic analyses of visitors of our site)
• To understand how visitors use the features and functions of our site
• To monitor and enforce compliance with applicable terms of use
• To conduct quality and risk management reviews
• To enable the better management of SFAI  Qatar events
• To enable teams managing events to coordinate their email campaigns and event notifications more effectively
• To allow for event and webinar sign-up
• To allow for content download and lead capturing
• To allow services and information to be delivered effectively to you
• Any other purpose for which you provided information to SFAI Qatar.

Legal grounds for processing personal data of visitors of our site are:

• Our legitimate interest in the effective delivery of information and services to you, and the effective and lawful operation of our businesses
• Our legitimate interest in developing and improving our site, and your user experience
• Explicit consent of the visitor

Clients

When you engage us to provide you with professional services, we collect and use personal data when we have a valid business reason to do so in connection with those services. In the context of providing professional services to clients, SFAI Qatar also processes personal data of individuals who are not directly our clients (for example, employees, customers, or suppliers of our clients)

The majority of the personal data we collect and use to provide our services is supplied voluntarily by (or collected by us from third-party sources at the request of) our clients. Because of this, if you are a client of SFAI Qatar, then it will generally be obvious to you what personal data we collect and use. This information can include:

• Basic information, such as your name, the company you work for, your position and your relationship to a person
• Contact information, such as your postal address, email address and telephone numbers
• Financial information, such as payment-related information
• Any other personal data relating to you or other third parties which you provide to us for the purpose of receiving our services

We use this information:

• To provide services to you
• To administer our relationship and maintain contractual relations
• For accounting and tax purposes 
• For marketing and business development
• To comply with our legal and regulatory obligations
• To establish, exercise or defend legal rights
• For historical and statistical purposes

Given the diversity of the services we provide, we process many categories of personal data. Please see below (non-exhaustive) examples of personal data categories for our four main service lines:

Audit & Assurance

In providing audit and assurance services, SFAI Qatar will process information that contains personal data, such as payroll files, board records and other documents attributable to the audit client’s and any group companies’ activities. Examples of categories of personal data that are processed are:

• Contact details, such as name, address, telephone numbers and email address
• Details of employment, such as employment number, employment department, role, and employment time
• Health and absence data, e.g., medical certificate and information on sick leave, leave of absence or parental leave
• Trade union membership
• Personal identity number
• Information on financial conditions, such as bank account information, salary details and other benefits, insurance data and the license plate number of a company car
• Information on insurances and occupational pensions

Or

• Other categories of personal data needed for conducting the audit in accordance with good auditor’s and auditing standards

Tax

Examples of personal data categories processed by SFAI Qatar tax client engagement teams are:

• Personal details for the individual client and their family members, including names, addresses and demographic, contact information, dates of birth, and tax identifiers, including social security numbers and email addresses
• Personal details for the individual client’s delegates, including names, contact information and email addresses
• Tax return files: liability, dates produced and sent, and comments on tax returns
• Tax equalization data: liability, dates produced, settlement amounts and taxes paid
• Organizers used for collecting the individual taxpayer’s (and if required, their family members’) country-specific personal income tax information, education, employment, medical, legal history, and other data that is required in rendering services
• Workpapers used to edit client information received from organizers or other means; compensation data from employers; sourcing of income based on assignment and travel calendar data
• Current, past, or future travel information for the individual, including locations visited and workday activities that occurred in each location
• Documents, such as tax returns, assignment letters, immigration documents, audit requests from taxing authorities, and official and personal documents (birth certificates, marriage licenses, education documentations and degrees, and passport copies)
• Company-specific information: corporate client personnel contacts and division names
• Assignments data: details regarding current working and living arrangements, including country and city of assignment, employer division funding salary and assignment costs
• Immigration data: work permit questionnaires, status of work permit, copy of application form, copy of work permit, copy of visa, copy of passport and other immigration documents

Advisory and Human Capital Solution.

In providing advisory and human capital solution services, SFAI processes a wide variety of information, including potentially all types of personal data. The scope depends on the service and the sector in which the SFAI Qatar’s client is active. Examples of personal data categories received or processed by Advisory client engagement teams are:

• Contact details, such as name, address, telephone numbers and email address
• HR and supplier records of clients, which include personal details of employees or suppliers of the client, such as name, contact details, date of birth, race, government identification numbers, employment contracts and service contracts
• Financial data, such as wage and salary information, pension and retirement benefits information, and bank account numbers
• Health information about individuals receiving specific drugs or treatments
• Personal data of employees potentially impacted by supply chain changes or outsourcing
• Customer data, including race or gender during a customer experience engagement

Individuals whose personal data we obtain in connection with providing services to our clients

As part of the professional services SFAI Qatar provides to clients, SFAI Qatar processes personal data of individuals with whom we do not have a direct (contractual or other) relationship. For example, if we perform a statutory audit, our engagement team will be required to audit our client’s books, which could include payroll data for employees of the client, supplier data, financial administration, data regarding claimants and legal proceedings. To take another example: if we undertake a due diligence review of an acquisition of a target on behalf of a client, SFAI Qatar obtains personal data concerning the target’s employees, management, and customers.

We seek confirmation from our clients that they have the authority to provide personal data to us in connection with the performance of the services and that any personal data they provide to us has been processed in accordance with applicable law.

Given the diversity of services we provide, we process many categories of personal data such as:

• Personal details (such as name, age, data of birth, gender, marital status, and country)
• Contact details (such as phone numbers, email address and postal address)
• Financial details (such as salary, payroll, income, investments, benefits, and tax status)
• Employment details (such as role, rank, experience, performance data and employment numbers)

Legal grounds for processing personal data of individuals whose personal data we obtain in connection with providing services to our clients are:

• Compliance with a legal or regulatory obligation
• Our legitimate interest in making sure our clients are provided with seamless, consistent, and high-quality services

Contacts in our customer relationship management (CRM) systems

We process personal data about contacts (former, existing, and potential clients and individuals employed by, or associated with, such clients and other business contacts, such as alumni, consultants, regulators, and journalists) in our CRM systems. These CRM systems support the marketing operations of SFAI Qatar. Contacts in our CRM systems will be sent SFAI Qatar, newsletters, marketing materials, learning opportunities, surveys, and invitations to events.

In our CRM systems, we process the following categories of personal data:

• Name, job title, address, email address, phone, and fax numbers
• Name of employer or organization the individual is associated with
• Marketing and user preferences including whether the individual has opted into marketing communications
• Invitation responses, reading activity and event attendance confirmations via the use of cookies and similar technologies to tailor our communications

Data of business contacts who have not been actively engaged with SFAI Qatar in the past 18 months will be deleted from our CRM systems. If you have opted out of receiving future SFAI Qatar publications, your basic contact details will remain on our opt-out list.

Legal grounds for processing personal data of business contacts are:

• Explicit consent of the business contact
• Our legitimate interest in managing the relationship with our business contacts and providing information about SFAI Qatar, our services, and events we organize

Participants of SFAI Qatar meetings, conferences, events and learning sessions

We process personal data about participants in SFAI meetings, conferences, events and learning sessions (events). We use various applications to manage event registration processes, which applications will contain their own privacy notices explaining why and how personal data is collected and processed by these applications. We encourage participants to refer to the privacy notices available on those applications.

As part of our event management processes, we process the following personal data (but only to the extent required for a specific event):

• Name, age or date of birth
• Client personnel information (home, office and business information)
• Customer information (home, office and business information)
• Email address
• Gender
• Home or other physical address
• Names of employers ( company)
• Occupation (job title)
• Passport number
• Personal web URL (if you have a personal website that you would like to share)
• Telephone or fax numbers

We do not intentionally collect sensitive category data, unless you provide us with such data

Attendees of SFAI Qatar events hosted at external venues are required to bring a photo ID for identification purposes to safeguard our people, assets and information, and to prevent unauthorized people gaining access to off-site SFAI Qatar events.

SFAI Qatar is allowed to take photographs and make audio or video recordings in public areas of the SFAI Qatar events. We use such media in our marketing materials. Images and voices of attendees will be recorded. Recordings will be edited, copied, exhibited, published, or distributed.

Legal grounds for processing personal data of participants are:

• Explicit consent of the participant
• Our legitimate interest in organizing events and managing the registration process for such events.
• Our legitimate interest in protecting our people, assets, and information, and to prevent unauthorized people gaining access to off-site SFAI Qatar events.
• Our legitimate interest in providing information about SFAI Qatar, our services and events we organize

Individuals who visit our social media sites, social media plugins and tools

Social media sites

SFAI Qatar uses various social media platforms, for example, for recruitment or marketing purposes. We use social media to provide you with easy access to relevant information regarding job opportunities at SFAI Qatar and events we organize, and to promote our services and brand.

While SFAI Qatar will be responsible for the content it publishes using social media platforms, SFAI Qatar will not be responsible for managing the social media platforms (such as creating user statistics or placing cookies). When using these social media platforms, you are obliged to adhere to the legal and privacy terms imposed by the social media platform providers. Such providers collect personal data about you, including statistical and analytical data regarding your use of the social media platforms, such as an overview of pages you have accessed, “likes,” recent visits, posts you publish or find interesting. If you require access to such data or want to invoke one of your other rights (such as the right to object to the processing of your data), you should contact the social media platform provider. Some social media providers provide SFAI Qatar with aggregate data relevant for our pages, such as the amount of “likes” triggered by our content or the number of posts, visitors to our sites, photos that are downloaded or links that are clicked.

Social Media Plugins

On our site, we implement so-called social media plugins. When you visit a page that displays one or more of such buttons, your browser will establish a direct connection to the relevant social network server and load the button from there. At the same time, the social media provider will know that the respective page on our site has been visited. We have no influence on the data that the social media providers collect based on the buttons. If you wish to prevent this, please log out of your social media accounts before visiting our website. Social media providers set cookies as well unless you have disabled the acceptance and storage of cookies in your browser settings.

Social media tools

Google Maps

Our site uses the Google Maps map service via an application programming interface (API).

To use Google Maps, it is necessary to save your IP address. This information is generally translated to a Google server in the United States and stored there. We have no influence on this data transfer.

LinkedIn

Once LinkedIn members click on SFAI Qatar advertisement, they will see a form that is pre-filled with information from their LinkedIn profile, such as their name, contact information, company name, seniority, job title and location to get connected with SFAI Qatar

Legal grounds for processing personal data of visitors to our social media pages, and the use of social media plugins and tools are:

• Our legitimate interest in promoting SFAI Qatar services and brand
• Our legitimate interest in attracting, identifying, and sourcing talent
• Our legitimate interest to improve your website experience and to optimize our services

Individuals who correspond with SFAI Qatar via email

SFAI Qatar uses a variety of tools to maintain the security of our IT infrastructure, including our email facilities. Examples of such tools are:

• Systems that scan incoming emails to SFAI Qatar recipients for suspicious attachments and URLs, to prevent malware attacks
• Tools that provide end-point threat detection to detect malicious attacks
• Tools that block certain content or websites

If you correspond via email with an SFAI Qatar recipient, your emails will be scanned by the tools SFAI Qatar operates to maintain the security of its IT infrastructure, which could result in content being read by authorized SFAI Qatar persons other than the intended recipient.

Legal grounds for processing personal data of individuals who correspond with SFAI Qatar via email:

• Our legitimate interest in protecting our IT infrastructure against unauthorized access or data leakage
• Our legitimate interest in analyzing email traffic

Job applicants

We collect information from and about candidates in connection with available employment opportunities at SFAI Qatar. The information that we collect, the way it is used, and the timing in which it is gathered varies depending on the country in which you apply. As general matter, the data we collect regarding our job applicants includes resumes or CVs, identification documents, academic records, work history, employment information and references.

We use your personal data to match your skills, experience and education with specific roles offered by SFAI Qatar. This information is passed to the relevant hiring managers and persons involved in the recruitment process to decide whether to invite you for an interview. SFAI Qatar will collect further information if you are invited to the interview (or equivalent) stage and onward. Such information includes interview notes, assessment results, feedback and offer details.

In connection with our recruitment activities including applications and onboarding, we also collect special category data from candidates where we have an employment law obligation to do so. This information is relevant to their future working environment at SFAI Qatar or the future provision of employment benefits, or with the individual’s explicit consent, where collecting such information is permitted by law. For example, where allowed under applicable law, we will collect information about an individual’s disabilities to analyze the diversity of our workforce. Once onboarded, an individual’s provision of information regarding disabilities will also be used to provide a suitable working environment. We will also need to conduct criminal background checks for certain candidates to assess their eligibility to work at SFAI Qatar or for SFAI Qatar clients. In certain countries, we will also ask candidates to provide diversity information about their race and ethnicity, and sexual orientation for diversity monitoring purposes, although the provision of this information will be entirely voluntary. However, where a candidate does not voluntarily provide such information, we could be required by law to make our own assessment of such criteria.

Our recruitment tools and websites contain their own privacy notices explaining why and how personal data is collected and processed by those applications. We encourage individuals using our recruitment tools and websites to refer to the privacy notices available on those tools and websites.

SFAI Qatar collects personal data about candidates (“you”) from the following sources:

• Directly from you – for example, information that you have provided when applying for a position directly through the SFAI Qatar careers website (for additional information about the processing of your personal data via our global recruitment management system, please read the data privacy statement available in this system)
• From recruitment agencies – for example, when a recruitment agency with your details contacts us to suggest you as a potential candidate.
• Through publicly available sources online – for example, where you have a professional profile posted online (e.g., on your current employer’s website or on a professional networking site, such as LinkedIn)
• By reference – for example, through a reference from a former employee or employer, or from a referee you have identified
• Results of background screening checks

Legal grounds for processing personal data of our job applicants are:

• Explicit consent of the candidate
• Our legitimate interest in attracting, identifying and sourcing talent
• Our legitimate interest to process and manage applications for roles at SFAI Qatar, including the screening and selecting of candidates
• Our legitimate interest to hire and onboard candidates by making an offer to successful candidates, and carrying out pre-employment screening checks
• Our legitimate interest to manage our career websites (including conducting statistical analyses)
• Compliance with a legal or regulatory obligation (when carrying out background checks to warrant a candidate is eligible to work)

Alumni

SFAI Qatar hopes to maintain a lifelong, mutually beneficial relationship with global SFAI alumni (former member firm partners, employees, and contractors). If we invite you to our alumni community, your name, contact details, role, last SFAI office, rank, service line and country will be used to create a record for you in one of our alumni databases, unless you have indicated that you are not interested in participating in the SFAI Qatar alumni program. You can create a more detailed profile and to decide how much additional information you wish to share with SFAI Qatar and the wider alumni community.

Our alumni databases contain their own privacy notices explaining why and how personal data is collected and processed by those applications. We encourage individuals using our alumni databases to refer to the privacy notices available on those applications.

The legal grounds for processing personal data of our alumni are:

• Explicit consent of the alumnus
• Our legitimate interest in maintaining a strong relationship with our alumni, sending publications about SFAI Qatar and our services, inviting alumni to events, and helping alumni keeping in touch with other alumni.

Vendors

We process personal data about our vendors (including subcontractors, and individuals associated with our vendors and contractors) to manage our relationship and contract, and to receive services from our vendors.

The personal data we process is generally limited to contact information (name, name of employer, phone, email, and other contact details) and financial information (payment-related information).

In addition, we also use data about our vendors to check whether we have a conflict of interest or audit independence restriction to appointing a vendor. Before we take on a new vendor, we also carry out audit independence and other background checks required by law or regulation, for example, adverse media, bribery and corruption, and other financial crime checks.

Legal grounds for processing personal data of our suppliers are:

• Performance of a contract
• Compliance with a legal or regulatory obligation
• Our legitimate interest in managing payments, fees, and charges, and to collect and recover money owed to SFAI Qatar
• Our legitimate interest in understanding any conflict of interest or challenge with regard to independence legislation
• Our legitimate interest in safeguarding against SFAI Qatar inadvertently dealing with the proceeds of criminal activities or assist in any other unlawful or fraudulent activities (for example, terrorism)

Visitors to SFAI Qatar office

When you visit an SFAI Qatar office, we process your personal data in order to provide you with certain facilities (such as access to our buildings and conference rooms or Wi-Fi), to control access to our buildings, and to protect our offices, personnel, goods and confidential information (for example, by using CCTV).

The personal data we collect is generally limited to your name, contact information, location, and the time you enter and leave our office.

Visitor records and access badges

We require visitors to our offices to sign in at reception and we keep that record of visitors for a short period of time. Visitors to our offices are provided with a temporary access badge to access our offices. Our visitor records will be used to verify that access badges are returned, to look into a security incident and for emergency purposes (for example, if an office needs to be evacuated).

Wi-Fi

We monitor and log traffic on our Wi-Fi networks. This allows us to see limited information about a user’s network behavior, but will also include being able to see at least the source and destination addresses the user is connecting from and to.

CCTV

SFAI Qatar uses CCTV monitoring were permitted by law. CCTV images are securely stored and only accessible on a need-to-know basis (for example, to investigate an incident). We are allowed to disclose CCTV images to law enforcement bodies. We will also share CCTV images with our insurers for purposes of processing an insurance claim because of an incident. CCTV recordings are typically deleted or automatically overwritten after a short period of time unless an issue is identified that requires further investigation.

Legal grounds for processing personal data of visitors to SFAI Qatar offices are:

• Our legitimate interest in protecting our offices, personnel, goods, and confidential information
• Our legitimate interest in preventing and detecting crime, and establishing, exercising, and defending legal claims

Transfer of personal data

SFAI Qatar is a member firm of SFAI Global which operate in more than 100 countries across the globe. However, the global SFAI infrastructure is decentralized. In case, an engagement with SFAI Qatar clients span more than one jurisdiction, certain information will need to be accessed by all those within the SFAI organization who are working on the matter. Therefore, your personal data will be transferred to and stored outside the country in which you are located.

We take appropriate security and legal precautions to safeguard the safety and integrity of personal data that is transferred within the SFAI organization.

Your personal data will also be processed by SFAI Qatar support providers that support our internal ancillary processes

Support Provider

We transfer or disclose the personal data we collect to external support providers (and their subsidiaries and affiliates) who are engaged by us to support our internal ancillary processes. For example, we engage support providers to provide (a) general office support including printing, document production and management, archiving, and translation services; (b) accounting, finance, and billing support; (c) conflict checking, risk management and quality reviews.

It is our policy to only use third-party support providers that are bound to maintain appropriate levels of data protection, security, and confidentiality, and that comply with any applicable legal requirements for transferring personal data outside the jurisdiction in which it was originally collected.

Other Disclosures

SFAI Qatar discloses your personal data:

• Where this is appropriate for the purposes described in the section “Purposes for which we process personal data,” including within the SFAI organization itself
• If required, by applicable law
• In connection with a reorganization or combination of our organization with another organization
• If we believe that such disclosure is appropriate to enforce or apply terms of engagement, and other agreements or otherwise protect and defend SFAI Qatar rights, property or safety
• In order to comply with a judicial proceeding, court order or other legal obligation, or a regulatory or government inquiry

Or

• With your consent

We would like to draw particular attention to the fact that in certain jurisdictions, SFAI Qatar has a legal obligation to report suspicious transactions and other activity to relevant regulatory authorities under anti-money laundering, terrorist financing, insider dealing or related legislation. SFAI Qatar also reports suspected criminal activity to the police and other law enforcement bodies. We are not always permitted by the law to inform you about this in advance of the disclosure, or at all.

Third-party recipients of personal data include:

• Professional advisors, such as law firms, tax advisors or auditors
• Insurers
• Audit regulators
• Tax and customs, and excise authorities
• Regulatory and other professional bodies
• Stock exchange and listing authorities
• Public registries of company directors and shareholdings
• Providers of identity verification services
• Credit reference agencies
• The courts, police, and law enforcement agencies
• Government departments and agencies
• Service providers
• Support providers

Security

SFAI Qatar protects the confidentiality and security of information it obtains during its business. Access to such information is limited, and policies and procedures are in place that are designed to safeguard the information from loss, misuse, and improper disclosure.

Keeping your personal data up to date

We maintain the accuracy and completeness of the personal data we hold. It is important that you inform us of any updates to your contact details or other personal data so that we have the most up-to-date information about you. Please contact the person you usually deal with at SFAI Qatar.

Retention

Our policy is to retain personal data only for as long as it is needed for the purposes described in the section “Purposes for which we process personal data.” Note that retention periods vary in different jurisdictions and are set in accordance with local regulatory and professional retention requirements.

In order to meet our professional and legal requirements, to establish, exercise or defend our legal rights, and for archiving and historical purposes we need to retain information for significant periods of time.

Minors

Our Site is not intended for use by minors under the age of sixteen (16) years.  SFAI Qatar does not knowingly collect, disclose, or sell the personal data of minors under 16 years of age. If you are under 16 years old, please do not provide any personal data even if prompted to do so. If you believe that you have inadvertently provided personal data, please ask your parent(s) or legal guardian(s) to notify us and we will delete your personal data.

Change to this privacy statement

We will occasionally update this privacy notice to reflect changes in our practices and services. When we post changes to this privacy notice, we will revise the “last updated” date at the top of this privacy notice. If we make any material changes in the way we collect, use, and share personal data, we will notify you by prominently posting notice of the changes on the website. We recommend that you check this page from time to time to inform yourself of any changes in this privacy notice.