1. Information We CollectWe collect information to provide better services to our clients and users. This includes:
- Personal Information: Name, email address, phone number, and billing/contact details when voluntarily submitted.
- Automated Browsing Data: IP addresses, browser types, device identifiers, operating systems, cookies, and tracking pixels.
- Client-Delegated Data: Data collected on behalf of our business clients via embedded scripts, tags, or SDKs integrated into their websites.
2. Methods of CollectionWe collect data through legitimate, transparent, and legal means:
- Direct Interaction: Information you type into forms on our Site.
- Tracking Technologies: Cookies, web beacons, and unique identifiers used to measure site traffic and behavior.
- Third-Party Integration: Data forwarded to us securely by our business clients who have obtained your explicit consent.
3. Purpose and Use of DataYour data is processed based on the principles of Transparency, Legitimate Purpose, and Proportionality. We use it to:
- Provide, maintain, and optimize our third-party data collection tools.
- Generate aggregated, non-identifiable statistical reports for our business clients.
- Detect, prevent, and mitigate security threats, fraud, or technical vulnerabilities.
- Comply with statutory, regulatory, and legal obligations in the Philippines.
4. Data Sharing and DisclosureWe do not sell your personal data. We only share information under the following strict conditions:
- With Business Clients: We share processed data back with the specific client from whose website your data was collected, governed by our Data Sharing Agreements.
- Service Providers: Trusted vendors who assist us in operating our infrastructure, under strict confidentiality clauses.
- Legal Compliance: When mandated by a court order, legal process, or subponaea issued by the National Privacy Commission or other regulatory bodies.
5. Data Storage, Security, and RetentionWe implement organizational, physical, and technical security measures to safeguard your information:
- Encryption: Data is encrypted both in transit (SSL/TLS) and at rest.
- Access Control: Only authorized personnel with strict confidentiality duties can access personal data.
- Retention Policy: Personal data is retained only for as long as necessary to fulfill the purposes outlined in this policy, or as required by Philippine law. Once no longer needed, data is securely destroyed or anonymized.
6. Your Rights as a Data SubjectUnder the Philippine Data Privacy Act, you possess the following rights, which we fully respect:
- Right to be Informed: Knowing whether your data is being processed.
- Right to Access: Requesting a copy of the personal data we hold about you.
- Right to Rectification: Requesting the correction of inaccurate or outdated data.
- Right to Erasure or Blocking: Requesting the removal or destruction of your personal data from our systems.
- Right to Object: Withdrawing consent to processing at any time.
- Right to Data Portability: Requesting an electronic copy of your data for personal use.
- Right to File a Complaint: Lodging a grievance directly with us or the National Privacy Commission.
7. Contact Our Data Protection Officer (DPO)If you have any questions, concerns, or wish to exercise your data subject rights, please contact our designated Data Protection Officer:
- Company Name: MTR CredTrust Outsourcing Innovations OPC
- Attention: Data Protection Officer
- Email Address: rjordan@mtrcredtrust.com
- Phone Number: +63 920 554 2237
- Office Address: 10F, Felina Corporate Plaza, Eastwood Libis, Quezon City