Privacy & Legal

StanCorp Global Services India Private Limited Privacy Notice

 

Last updated on: Nov. 3, 2025

The privacy of your Personal Data (defined below) is important to us. We are committed to maintaining and protecting its confidentiality. We want you to know that:

  • We do not sell or rent the Personal Data we have about you to anyone.
  • We do not share your Personal Data with outside companies for the purpose for selling their products or services to you.
  • We only share Personal Data about you with others as the law permits or requires.

This Privacy Notice (“Privacy Notice”) sets out how we collect, use, store or otherwise process Personal Data of individuals (“Individuals,” “you,” or “your”) who interact with us in India through any of our public-facing websites, including https://www.stancorpglobalservices.in (“Website”), online platforms and digital portals (“Platforms”). This includes:

(a) Visitors to our Platforms and other online services including our social media pages;
(b) Individuals interacting with us via social media, emails, phone calls, texts or fax etc.;
(c) Job applicants applying via our Platforms or other means;
(d) Visitors to our physical office location(s) in India;
(e) Vendors, suppliers, and service providers (including their personnel); and 
(f) Any other individuals with whom SGS communicates or conducts business during its operations.

This Privacy Notice is being provided to you in accordance with the requirements of the Information Technology Act, 2000 (“IT Act”) and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (“SPDI Rules”).

If you are accessing our website from outside India, please refer to the applicable Privacy Notice for your region to understand the legal basis and other terms that may apply to the processing of your Personal Data.

For the purposes of this Privacy Policy:

(a) “Personal Data” means any information which may be collected or otherwise received by us, that relates to you, and which either directly or indirectly, in combination with other information available, can identify you. Without prejudice to the generality of the foregoing.

(b) “Sensitive Personal Data or Information” or “SPDI” means such Personal Data, which consists of information relating to:
     (i) Password;
     (ii) Financial information such as details of bank account, credit card, debit card or other payment instruments;
     (iii) Physical, physiological and mental health condition;
     (iv) Sexual orientation;
     (v) Medical records and history;
     (vi) Biometric information;
     (vii) Any detail relating to the above clauses as provided to body corporate for providing services; and
     (viii) Any of the information received under above clauses by body corporate for processing, stored or processed under lawful contract or otherwise provided that any information that is freely available or accessible in public domain or furnished under the Right to Information Act, 2005 or any other law for the time being in force shall not be regarded as SPDI for the purposes of this Privacy Policy.

Changes to the Privacy Policy

We reserve the right to amend, modify, vary or update this Privacy Policy, at our sole discretion from time to time, as and when the need arises. The most recently published Privacy Notice shall prevail over any of its previous versions. You are encouraged to check this Privacy Notice from time to time to stay informed of any changes.

Information We Collect

Depending on your relationship with us (for example, as a visitor to our websites or facilities in India, vendor representative, job applicant), we may collect various categories of Personal Data (including SPDI) from and/or about you:

(a) Contact information: Name, photograph, phone number, email, address, date of birth, age, marital status, location, nationality, government ID (such as PAN, Aadhaar).

(b) Employment details: Resume, employment history, education details (degrees, certifications etc.), salary slips, professional license or registration details.

(c) Visitor information: Date/time of office visit; CCTV footage; visitor ID.

(d) Financial data: Bank account details, billing address/payment terms information.

(e) Location information: We do not collect precise information (such as, GPS data; latitude and longitude) concerning the location from which you access our Platforms, but we collect information on your region or postal code to help us gather information useful for improving the relevance of our content and securing access to our Platforms.

(f) Usage data: When you access or use our Platforms, we may track certain information to analyse your usage, including your IP address; browser and device information; log data; date and time of your visit; name of your Internet service provider; third-party websites or pages you visit; and other analytical data.

Purposes of Processing

We ensure that your Personal Data (including SPDI) is collected and processed for lawful purposes and in a manner that is fair and transparent. These purposes include:

(a) To manage and fulfil contractual arrangements with vendors, suppliers and other business partners;
(b) For marketing, data analytics, market research and survey purposes; To provide you with a more personalized and improved user experience;
(c) To contact you in connection with our job application;
(d) For recruitment and human resources administration purposes;
(e) To ensure safety at our premises and to ensure the technical functionality and security of our Platforms; To monitor traffic and usage patterns for information security purposes;
(f) To update, consolidate and improve accuracy of any information related to you;
(g) To facilitate background, criminal record and reference checks;
(h) To meet our legal and regulatory obligations, and to comply with applicable law including but not limited to seeking professional, legal or accounting advice.

How We Collect Your Information

We collect Personal Data from and/or about you in the following ways:

(a) Directly from you (such as, when you visit our premises, contact us through our Platforms);
(b) Automatically you use our IT systems, security tools, or websites (such as, CCTV at facilities, cookies and web beacons); and
(c) From third parties, including background verification agencies, recruiters, payroll providers, insurers, regulators and our affiliates.

Cookies

Cookies are small text files that are placed on your device when you visit our Platforms. We use two types of cookies:

(a) Essential cookies that are necessary for the Platform(s) to function; and
(b) Non-essential cookies that help us collect website usage data, track user behaviour, personalize your experience, improve website functionality and show you targeted advertising. You may modify the cookie settings through your browser.

If you reject our cookies, this may disable some of the functionality on our Platform(s) and you may not be able to access and/or use certain features and/or services. Essential cookies cannot be disabled.

Third-Party Links

(a) Our Platforms may include hyperlinks to various external websites, and may also include advertisements, and hyperlinks to applications, content or resources (“Third-Party Links”). We have no control over such Third-Party Links, which are provided by persons or companies other than us. You acknowledge and agree that we are not responsible for any collection or disclosure of your Personal Data or any other information by any external sites, applications, companies or persons thereof. The presence of any Third-Party Links on the Platforms cannot be construed as a recommendation, endorsement or solicitation of any material or content on such Third-Party Links, or any other material on or available via such Third-Party Links. SGS shall not be liable for any disputes arising from or in connection with such transactions between you and the aforementioned third parties.

(b) Such third-party websites, and external applications or resources, accessible via the Third-Party Links may have their own privacy policies governing the collection, storage, retention and disclosure of your information that you may be subject to. We recommend that you exercise reasonable diligence, as you would in traditional offline channels and practice judgment and common sense before committing to any transaction or exchange of information, including but not limited to reviewing the third-party website or application’s privacy policy.

How We Disclose Personal Data

(a) Our Third-Party Providers. We transfer Personal Data to third-party service providers to perform tasks on our behalf. For example, we may use third-party service providers for background verification, online job applications, security and website analytics. We use commercially reasonable efforts to only engage or interact with third-party service providers and partners that post a Privacy Notice governing their processing of Personal Data and we require our service providers to maintain confidentiality and comply with applicable laws in relation to the processing of Personal Data.

(b) In connection with a corporate merger, sale, divestiture, consolidation, restructuring or other corporate change, including, without limitation, during the course of any due diligence process. We may transfer or assign Personal Data to a third-party entity that acquires or is merged with us as part of a merger, acquisition, sale or other change of control.

(c) We may also need to disclose your Personal Data to our professional advisors, including our lawyers, auditors, bankers or other professional consultants for business purposes (such as to conduct audits of SGS or prepare financial statements or for purposes of litigation or investigations).

(d) We may disclose Personal Data about you if we have a good faith belief that disclosure of such information is helpful or reasonably necessary to: (i) comply with any applicable law, regulation, legal process or governmental request; (ii) enforce our terms of use, including investigations of potential violations thereof; (iii) detect, prevent or otherwise address actual or suspected fraud or security issues; or (iv) protect against harm to our or third parties’ rights, property or safety.

(e) Where we transfer your Personal Data to group companies and/or to third parties located outside India, we will ensure that the recipient offers an adequate level of protection that is at least comparable to that which is provided under this Privacy Notice and applicable laws.

Information Security

We implement appropriate administrative, technical, organizational and physical measures to protect Personal Data from loss, theft, misuse and unauthorized access, corruption, disclosure and against unlawful forms of processing. These measures will be appropriate to the nature of Personal Data processed and potential identifiable threats.

Some of these measures include:

  • Encryption;
  • Access controls;
  • Backup and restoration;
  • Strict adherence to privacy and security practices;
  • Periodic security assessment and reviews to upgrade our practices; and
  • Restriction of access to personnel who have a need to know such data.

What Can I Do to Protect My Privacy?

While we implement appropriate technical and organizational measures to protect your Personal Data, you are responsible for taking reasonable steps to protect your information when accessing our systems or platforms, especially where a username and password is required.

To help protect your privacy and security, you should:

(a) Never share your username or password;
(b) Always sign out when you are finished using the Platform;
(c) Use only secure web browsers;
(d) Employ common anti-virus and anti-malware tools on your system to keep it safe;
(e) Use a strong password with a combination of letters and numbers; and
(f) Change your password often.

Retention of Information

We will retain your Personal Data only for the period necessary to fulfil the purposes for which it has been collected as described in this Privacy Policy, unless a longer retention period is required by law or for compliance with legal or regulatory requirements. After this timeframe, we will take the necessary steps to destroy or permanently delete your Personal Data or retain it in a form that does not permit identifying you.

Your Rights

You are entitled to exercise certain rights in relation to your Personal Data, including the right to:

(a) Access the Personal Data we hold about you;
(b) Correct or update any Personal Data that is inaccurate, incomplete or outdated; and
(c) Withdraw your consent for the processing of any SPDI.

However, as certain categories of SPDI are necessary for us to administer certain services or functionalities, withdrawal of consent for such processing may limit or prevent SGS from providing such services or functionalities.

All such requests must be submitted in writing to the Grievance Officer, providing sufficient details to enable identification of the relevant records. We will assess and respond to each request within a reasonable period.

Consent

By submitting Personal Data to us, you acknowledge that:

(a) You have read and understood this Privacy Notice and agree to the collection, use, processing and transfer of your Personal Data, including SPDI, as set out herein; and

(b) All information and representations provided by you are, to the best of your knowledge, accurate and complete, and you have not knowingly omitted any relevant information that may affect our ability to engage with or provide services to you.

By consenting to this Privacy Policy, you hereby provide your express and explicit consent to the aforesaid collection, transmission, publication, storage, retention, and any other usage of Personal Data (including SPDI) by SGS as per this Privacy Notice and as may be notified to you, from time to time. In case you do not consent to any of the usage, transmission, and/or publication of your Personal Data as detailed hereinabove, you may opt to not share your Personal Data and/or avail of our services or use/access our Platforms.

In the event of a change in applicable law regarding data protection in India, including by way of implementation of the Digital Personal Data Protection Act, 2023 and rules thereunder, you expressly consent to our continued collection, use, storage, and disclosure of your Personal Data. You may be required to provide additional consents or approvals in the form and manner prescribed by SGS to comply with such changes. Should you choose to not provide us with such additional consents and approvals, you may not be able to use and/or access our functionalities and services.

Grievance Redressal

SGS has designated a Grievance Officer to address any questions, concerns, or complaints relating to the collection, processing, storage, or disclosure of your Personal Data. You may contact the Grievance Officer using the details provided below:

Name: Mohua Sengupta
Designation: Senior Vice President and Country Head, StanCorp Global Services India
Address: 6th Floor, Towers 2 & 3, Hibiscus Building, Embassy Tech Village, Bengaluru – 560103, Karnataka, India
Email: TheStandardIndia@standard.com
Phone: 9987137302