sunRISE group inc. Global Candidate Privacy Notice

Effective Date: 04/04/2024 sunRISE group inc. is committed to protecting the privacy and security of your personal data. This Global Candidate Privacy Notice (“Notice”) explains how sunRISE group inc. and its subsidiaries (“sunRISE group inc.,” “we,” or “us”) collect, use, and process personal data during the job application and recruitment process. This Notice applies to job applicants only and should be read together with our general privacy policy, which applies to all personal data collected on our website.
  1. Collection of Personal Data
We may collect personal data from you directly or from third parties during the recruitment process. The categories of personal data we may collect include:
  • Personal contact details: name, address, email, and phone numbers.
  • Work history: resumes, cover letters, job applications, previous employment, and references.
  • Educational information: degrees, certifications, and transcripts.
  • Compensation history: where permitted by law.
  • Other details: including preferences for employment, visa status, and any information provided voluntarily.
  1. Use of Personal Data
We use your personal data to:
  • Evaluate your job application.
  • Verify your employment and educational background.
  • Communicate with you about the recruitment process.
  • Conduct background checks where applicable and allowed by law.
  • Maintain hiring process records for legal compliance.
We will retain personal data no longer than necessary for recruitment purposes unless required for legal or compliance obligations.
  1. Sharing of Personal Data
We may share your personal data with:
  • Service Providers: for the purpose of conducting background checks or processing applications.
  • Legal authorities: when required by law.
  • Affiliated entities: within sunRISE group inc. for internal hiring needs.
All third-party service providers are contractually obligated to protect the confidentiality and security of your data.
  1. Data Security
We have implemented security measures to protect your personal data from unauthorized access, loss, or disclosure. Only employees, agents, or service providers with a legitimate business need can access personal data, and they are bound by confidentiality obligations.
  1. Data Retention
We will retain your personal data for as long as necessary for recruitment and related legal requirements. If you are not selected for the position, we may retain your information for future job opportunities unless you request otherwise.
  1. Rights of Access, Correction, and Deletion
You have the right to access, correct, or request the deletion of your personal data. If you wish to exercise any of these rights, please contact us at.
  1. Cross-Border Transfers
If you are applying from outside the United States, your data may be transferred to and processed in countries that may not have the same data protection laws as your home country. We ensure that appropriate legal safeguards are in place for such transfers.
  1. Updates to This Privacy Notice
We reserve the right to update this Notice periodically to reflect changes in legal or regulatory requirements. Material updates will be communicated via our website.
  1. Contact Us
For questions regarding this Privacy Notice or to exercise your rights, contact us at <Insert Contact Us Link>. California Rights Addendum Effective Date: January 1, 2023 This California Rights Addendum (the “Addendum”) supplements sunRISE group inc. (“we”, “us”, and “our”) Global Candidate Privacy Notice and supports compliance with the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act of 2020 (collectively, the “CPRA”), and this Addendum solely applies to you if you are a covered person who resides in the State of California in the United States of America. In the event of a conflict between the terms of this Addendum and the rest of the Global Candidate Privacy Notice, this Addendum shall take precedence for California residents. Capitalized terms not defined herein shall have the meanings set forth in the California Consumer Privacy Act (“CPRA”).
  1. Key Definitions under the CCPA and CPRA
For purposes of this Addendum, the term “personal information” includes “sensitive personal information” such as social security number, driver license number, state identification card, passport number, financial data, genetic data, biometric data, precise geolocation, and racial and ethnic origin, content of consumer communications (email, mail, or text) unless the business is the intended recipient, genetic data, and information collected concerning a consumer’s health, sex life, or sexual orientation, commission or alleged commission of crime or related proceedings, and/or financial information. Any terms used but not defined herein have the meanings assigned to them under the CPRA. In any event, under the CPRA, personal information (including sensitive personal information) generally does not include (i) publicly available information from government or other publicly available records, (ii) de-identified or aggregated information, or (iii) any other information excluded under applicable law.
  1. Your Privacy Rights
As of January 1, 2023, the CPRA provides California residents (referred to as “you” herein) with specific rights regarding their personal information, subject to certain legal limitations and exceptions. The existing and new rights available to California job applicants include the following:
  • Right to know what categories of personal information being collected or that an employer holds about you. Specifically, you have the right to request that we disclose certain information to you about our collection and use of your personal information over the past 12 months (the “right to know”). In response to your verified request, we will disclose to you:
    1. The categories of personal information we collected about you;
    2. The specific pieces of personal information we collected about you;
    3. The categories of sources from which we collected personal information about you;
    4. The purpose(s) for which we use that personal information; The categories of third parties with whom we share that personal information, including identifying the personal information categories that each category of recipient obtained; and
    5. The categories of information that the business sells or discloses to third parties.
  • Right to access the personal information collected by a business about the person, in a portable and usable format,
  • Right to delete personal information (subject to certain exceptions, including to comply with a legal obligation),
  • Right to correct inaccurate personal information maintained by the employer,
  • Right to know what personal information is sold or shared with third parties (i.e., disclosure for monetary or other compensation where there is not a written agreement restricting the other party’s use of the data),
  • Right to opt-out of sale or sharing of personal information,
  • Right to limit use and disclosure of sensitive personal information to specific business purposes or limited disclosures, and
  • Right to no retaliation following opt-out or exercise of their CPRA rights.
If we receive a request from a job applicant to exercise one of the above rights, we will be required to honor the request within 45 days (which may be extended for up to an additional 45 days under certain circumstances), unless an exception applies.
  1. Categories of Personal Information We Collect
This section sets forth the categories of “personal information” (as such terms are defined under the CPRA) that we may collect about you when you inquire about and/or apply for employment at SunRISE group inc. In particular, we have collected the following categories of personal information in the preceding twelve (12) months from one or more job candidates for the purposes identified below:
  1. Personal Information
Personal Information Category Business Purpose(s)
Identifiers (including name or alias, home address, telephone number, or email address) Used to process and manage interactions and transactions with job applicants, service providers, contractors, and third parties; provide and perform marketing and support; maintain security of personnel and company and employee property and facilities; perform human resource functions and employment training; fulfill legal obligations of the company; and manage employment and administer benefits.
California Customer Records Statute (including signature, education, employment history, bank account number, or any other financial information, medical information, or health insurance information, etc.) Note: Some personal Information included in this category may overlap with other categories. Used to implement diversity and inclusion programs and to comply with applicable laws; perform human resource functions, including hiring and interviewing job candidates; and manage employment and administer benefits and payroll.
Protected classification characteristics under California or federal law (such as race, national origin, religion, gender, age, sexual orientation, medical conditions, citizenship, disability, military or veteran status, request for family and medical care leave, and request for pregnancy disability leave) Used to implement and improve our diversity and inclusion programs and to comply with applicable laws, such as the reporting requirements of the Federal Equal Employment Opportunity Act; to perform human resource functions; and manage employment and administer benefits, reasonable accommodations, and leaves of absence.
Commercial information (such as records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies) Used to process and manage interactions and transactions with customers, service providers, contractors, and third parties; and provide and perform products and services and related marketing and support.
Biometric information (such as voice recordings or keystrokes) Used to conduct research for the purpose of reviewing and improving products and services and associated marketing and customer support; and to conduct employment-related training.
Internet or other similar network activity (such as browsing or search history) Used to protect the Company, customer, and employee property, equipment, and confidential information; monitor employee performance; and enforce the Company’s electronic communications acceptable use and code of conduct policies; manage internal investigations and whistleblower programs; and enforce the company’s legal rights.
Geolocation data (such as the location of company-issued laptops, mobile phones, device location) Used to protect the Company, customer, and employee property, equipment, and confidential information; monitor employee performance; and enforce the Company’s electronic communications acceptable use and code of conduct policies; manage internal investigations; and exercise the company’s legal rights.
Sensory data (such as audio, electric, visual, thermal, olfactory, or similar information) Used to protect the Company, customer, and employee property, equipment, and confidential information; enforce the Company’s electronic communications acceptable use and code of conduct policies; manage internal investigations; and exercise the company’s legal rights.
Professional or employment-related information (such as work history, prior employer, human resources data, and data necessary for administering benefits and related administrative services) Used to establish, manage, or terminate the employment relationship or manage the post-employment relationship, administer health and Workers’ Compensation insurance programs; and comply with applicable laws.
Non-public education information (such as Non-publicly available educational information as defined under the Family Educational Rights and Privacy Act (FERPA) and related regulations, such as a grade point average, report card, and school transcript) Used to the extent that educational information is relevant to interviewing and hiring qualifications for employees, interns, and contractors and as may be necessary for a tuition reimbursement program.
Inferences drawn from other personal information (when used to create a profile about a consumer reflecting the consumer’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes) To administer, provide access to, monitor, and secure our information technology systems, websites, applications, databases, and devices; to comply with legal and regulatory obligations.
  1. Sensitive Personal Information
We do not collect or process sensitive personal information or characteristics of protected classifications for the purpose of inferring characteristics about job applicants.
  1. We Do Not Sell or Share Your Personal Information
We do not sell (as that term is defined under the California Privacy Rights Act (CPRA)) your personal information to third parties. This means that we do not sell, rent, share, or otherwise disclose your personal information to third parties in exchange for monetary or other valuable consideration.
  1. Disclosure of Personal Information for a Business Purpose
We may share your personal information by disclosing it to a third party for a business purpose. We only make these business purpose disclosures under written contracts that describe the purposes, require the recipient to keep the personal information confidential, and prohibit using the disclosed information for any purpose except performing the contract. During the past 12 months, we have disclosed for our business purposes the categories of personal information listed above to the following categories of third parties:
  • affiliates and subsidiaries;
  • Service Providers;
  • with third parties at your direction or that are required by law or legal process;
  • professional advisors;
  • entities to which you have consented to the disclosure; and/or
  • to the public if you choose to make such information available.