American Express Online Recruitment Privacy Statement - Malaysia
Effective Date: March 22, 2021
At American Express,we are committed to safeguarding your privacy. We want you to know how we may collect, use, share, and keep information about you and the choices that are available to you during the employee recruitment and selection process.
This Online Recruitment Privacy Statement applies to American Express websites or other services which link to this statement, and to all data collected throughout the recruitment process. It does not apply to those websites, apps, or services that have their own online privacy statements such as the American Express website, americanexpress.com, or the American Express Network website, amexnetwork.com. It does not apply to information we collect to provide products and services.
From time to time, we will change this Online Recruitment Privacy Statement. We recommend that you check the current version available here. If we make changes to this statement, we will update the “Effective Date” at the top of the page.
What is in this online privacy statement?
- What information does this Online Recruitment Privacy Statement cover?
- What information do we collect online and how do we collect it?
- How do we use the information we collect about you?
- How do we share your information?
- How do we handle Aggregated Information and De-identified Information?
- How do we keep and safeguard your information?
- What are your rights?
- Do you have questions about the Online Recruitment Privacy Statement, want to exercise any of your rights or want to make a complaint?
- Glossary
What information does this Online Recruitment Privacy Statement cover?
This Online Recruitment Privacy Statement describes how we (and our Service Providers ) may collect, use, share, and keep information that we get about you online and offline. We gather Online Information if you:
- Visit, use or apply on our recruitment websites or other platforms, such as social media platforms, that link to the American Express recruitment sites; or
- Receive or reply to electronic communications from us.
We may also collect Offline Information from you or about you during the recruitment process including but not limited to:
- during interviews (i.e. phone interview, in person interview);
- from referrals;
- as part of the background verification process.
In this statement, we also explain how we may combine Online Information with Other Information we collect from you and others and how we then use the combined information.
Some Online Information and Other Information is Personal Data/Sensitive Personal Data.
What information do we collect online and how do we collect it? Generally, you give information directly to us (or to our Service Providers). For example, you have to give us your name, email, mailing address, phone number, or date of birth when you: Cookies and Similar Technologies We (and our Service Providers) may collect information using Cookies and Similar Technologies including but not limited to: We (and our Service Providers) may also collect information made publicly available through third-party platforms and services (such as online social media platforms, professional social networking sites, job/career fairs, etc.), through online databases or directories, or that is otherwise legitimately obtained. This information may be governed by the privacy notice(s) provided by the third party at the time of collection. We may also collect non-public information from third parties for purposes such as for background checks and referrals. Automated decision making We may use fully automated processes to help us make certain decisions, including to evaluate certain aspects about you (for example, to identify relevant candidates for open positions based on job skills and resume details as part of our talent acquisition and recruitment process). These decisions are based on Personal Data that we lawfully hold such as information that you provided in your job application. In addition, the methods we use to make such decisions are regularly tested to ensure that they remain fair, effective and unbiased. Some of these decisions relying solely on automated means may have legal or similarly significant effects on you. However, we’ll only perform such processing if it’s: - necessary for entering into or performing a contract between you and American Express; - authorized by a law to which American Express is subject and which also lays down suitable measures to safeguard your rights and freedoms and legitimate interests; or - based on your explicit consent to such processing. Please see the section “What are your rights?” below for more information about your rights with respect to these types of automated decisions
We (and our Service Providers) also collect information through Cookies and Similar Technologies. Most Cookies and Similar Technologies will only collect De-identified Informationsuch as how you arrive at our website or your general location. However, certain Cookies and Similar Technologies do collect Personal Data/Sensitive Personal Data.
We use the Personal Information you provide to us and, possibly, Online Information or information collected by our Service Providers about you on its own or combine it withOther Information,including but not limited to:
- If you register for notifications, we may contact you with notifications and announcements about new jobs at American Express;
- If you submit your resume/CV,
- we may hold your resume/CV and related Personal Data/Sensitive Personal Data in accordance with our record retention schedule;
- We may review your online applicant profile from time to time to consider you for relevant job opportunities at American Express; and
- protect your information;
- safeguard the security of your information;
- conduct research and analysis, including to better understand our job candidates and website visitors;
- To support our background screening process if you apply for employment and are subsequently offered a position, subject to applicable law and where appropriate (we will provide you with additional information before we do such a screening); and
- use it in other ways as required or permitted by law or with your consent (as applicable).
Please note that if you choose to provide us with your e-mail address or your mobile number, we will only use these to send you e-mails and/or SMS alerts about your recruitment enquiry, job application, to request additional details about your resume/CV, and send you job alerts, where you have enrolled in this service. If we send you emails, we will collect information about your interaction with our e-mail content, such as whether you can read graphic-rich html e-mails.
How do we share your information?
We may share Personal Data/Sensitive Personal Data as required or as permitted by law, including but not limited to:
- with regulatory authorities, courts, and governmental agencies to comply with legal orders, legal or regulatory requirements, and government requests;
- with our Service Providers law enforcement and governmental agencies to detect and prevent fraud or criminal activity, and to protect the rights of American Express or others;
- within the American Express Family of Companies;;
- with our Service Providers who perform services for us and help us operate our business, including our recruitment processes;
- for specific services, when you have given your consent (as applicable).
We may transfer Personal Data/Sensitive Personal Data to companies within the American Express Family of Companies or to our Service Providers throughout the world, for example, to search for suitable positions or to process your application. Regardless of where we process your information, we still protect it in the manner described in this Online Recruitment Privacy Statement and according to the applicable laws.
How do we handle Aggregate Information and De-identified Information
Aggregate Information and De-identified Information does not identify you individually; it helps us to analyze patterns among groups of people. We may share Aggregate Information or De-identified Information for the same reasons as we might share Personal Data/Sensitive Personal Data. .
How do we keep and safeguard your information?
We use organizational, administrative, technical and physical security measures to protect your Personal Data/Sensitive Personal Data..These measures include computer safeguards and secured files and facilities. We require Service Providers to safeguard Personal Information and only use your Personal Information for the purposes we specify.
We will keep your Personal Information only as long as we need to follow up on your request to register for job notifications, process your application or inform you about future opportunities, unless we are required by law or regulation or for litigation and regulatory investigations to keep it. When your Personal Information is no longer necessary for our business, legal or regulatory needs, we will take reasonable steps to securely destroy such information or permanently de-identify it.
What are your rights?
You have the right to access, update, and/or erase your Personal Data/Sensitive Personal Data in the following ways:
- withdraw your request to receive job notifications or to be considered for job applications at any time;
- ask us to delete the Personal Data we have about you;
- ask us to rectify any incorrect Personal Data;
- request a copy of the Personal Data we have about you; and
- request a manual review of certain automated decisions that may produce legal effects concerning you or that may similarly significantly affect you.
Please note that if you decide to restrict and/or object to the processing of your Personal Data or if you withdraw your job application, we will not be able to further process your application or consider you for future opportunities at American Express.
If you want to access, update or change your Personal Data, please contact RecruitmentOperationsServicing@aexp.com
Do you have questions about the Online Recruitment Privacy Statement, want to exercise any of your rights or want to make a complaint?
If you have questions, wish to make a complaint or exercise you rights you may contact clrmalaysia@aexp.com
Glossary
Aggregate Information — data or information relating to multiple people which has been combined or aggregated such that individuals cannot be re-identified. Aggregated Information includes information that we create or compile from various sources, including certain data from Cookies and Similar Technologies.
American Express (we, our, us) — the American Express Company as identified at the beginning of this Online Recruitment Privacy Statement.
American Express Group of Companies — any affiliate and subsidiary of, and any company owned or controlled by, the American Express Company.
Cookies and Similar Technologies —a cookie is a small data file that a website transfers to your computer's hard drive. We place cookies when you visit our recruitment website. We use the term Cookies and Similar Technologies in this statement to refer to all technologies that collect information in this way.
De-identified Information — data or information used in a way (for example, pseudonymised) that does not identify you to a third party. We often derive. De-identified Information from Personal Data/Sensitive Personal Data. It includes information that we may collect from Cookies and Similar Technologies.
IP Address — a number assigned to a device when connecting to the Internet.
Minister — the Minister charged with the responsibility for the protection of personal data pursuant to the Personal Data Protection Act 2010.
Online Information —data or information collected on American Express websites and applications as well as on websites and applications of third parties relating to topics about our business, which may include Personal Information, Aggregated Information and De-Identified Information.
Other Information — American Express internal information (for example, previous employment history) and other online and offline information we collect from or about you.
Personal Data or Personal Identifiable Information (PII) -- information that relates to an identified or identifiable natural person, such as name, address, telephone number, email address, previous employment history and other information associated with that individual such as demographic details.
Sensitive Personal Data or Information -- includes Personal Information that also consists of information relating to:
- physical or mental health or condition,
- political opinions,
- religious beliefs or other beliefs of a similar nature,
- the commission or alleged commission of any offence, or
- any other personal data as the Minister may determine by order published in the Gazette.
Service providers -- any vendor, third party and/or company that performs business operations on our behalf, such as recruitment, printing, mailing, other communications services (email, direct mail, etc.), data processing, and servicing.