AXA Equitable AgriFinance, LLC – Privacy Statement effective December 19, 2019.
This privacy statement is applicable to the processing by AXA Equitable AgriFinance, LLC (“we” or “the Company”) of all personal data such as but not exclusively of (potential) customers, suppliers/vendors and business partners as well as visitors of our website.
Protecting your personal data
At The Company we are committed to protecting and respecting your privacy. We believe that transparency and honesty about what we do with your personal data is crucial for maintaining strong relationships with our clients. We would like to inform you through this privacy statement about how we process and use your personal data. You can print this Privacy Statement by selecting “Print” from your browser’s menu commands or by right-clicking on this page and selecting “Print” from the pop-up menu.
This privacy statement is applicable to the processing by The Company of all personal data of its clients, customers and potential customers, suppliers/vendors, and business partners as well as visitors of our website.
2. Controller/Processor of your personal data
The Company, having its registered office in the State of Delaware, US, is the controller, joint controller or processor of all personal data that fall within the scope of this privacy statement.
3. Contact us
If you have any questions about this statement, please contact our Data Protection Officer:
AXA Equitable AgriFinance, LLC
Attn. Data Protection Officer
6300 C Street SW
Cedar Rapids, IA 52499
Email US Data Protection Officer (email@example.com)
4. How and why we obtain personal information about you
You or someone representing you, for example a financial advisor, consultant, an employer, or the business you work for, may give us information about you by completing forms (paper versions or through a website), concluding contractual arrangements or by contacting us by phone, email or otherwise. We may also receive your personal information from a third party where they have obtained your consent to share such information.
For the processing activities described below, the personal data that is gathered and processed may include:
Where sensitive personal data is collected and processed as part of any of the activities below, this will be stated in the relevant processing descriptions. Sensitive personal data processed may include the following:
You can find additional information on the most common activities that we conduct which involve the collecting and processing of personal data and why below:
When collecting and processing personal data, we will only process the minimum amount of personal data relevant to the specific purpose it is collected for. We will only use the data in-line with the original purpose (stated below) or a further purpose deemed sufficiently similar and likely to be in line with your expectations.
Conducting checks and assessments prior to doing business.
This will include Anti-Money Laundering checks as well as screening personal data against known sanctions and politically exposed persons (‘PEP’) lists. This processing is conducted in order to detect and prevent fraudulent behaviour. It is also necessary in order for us to meet our legal obligations as a company. We conduct the screening check automatically using a third party system provided by FinScan which compares personal data against a number of official sanctions lists. The results of this check will be considered by a member of our staff in determining whether to proceed doing business with you. This processing may require the collecting and sharing of (sensitive) personal data, including copies of identification documents, with our affiliates and appointed suppliers. Data may also need to be shared with supervisory and governmental authorities in certain circumstances.
The administration of the service we have agreed to provide.
This includes processing your instructions and account transactions, settling those transactions, assessing investments, managing investment portfolios, monitoring investment portfolios and managing risks associated with an account or product, including areas of regulatory compliance. This processing is imperative to us providing the requested service and executing the agreement between us.
Servicing our customers and prospective customers.
This includes managing existing and prospective customer relationships, handling complaints, managing any incidents/issues encountered, providing account reporting, detecting fraud and providing online services including our websites. This processing is required in order for us to provide the service agreed under our agreement and ensure the integrity of any account you have with us. Customer relationships may be maintained by phone, mail, e-mail and fax where appropriate.
In order to develop our products and services.
This includes reviewing our existing offering of products and services, making required improvements and launching new products/services. Personal data may also be processed when we develop our appropriate business strategies internally. Where these processes include personal information they are conducted in the legitimate interest of the Company to ensure we provide the best products and services for our customers. We are committed to ensuring that the impact to the data subjects involved is minimal, the approach adopted is reasonable and we will ensure that the least intrusive approach is followed. The data may be shared with our affiliates.
More information can be found in the section titled 'Sharing your personal data’.
Managing third party and supplier relationships.
Personal data may be processed in order to obtain services provided by a third party company, to manage the relationship between the companies (including where they act as our data processor) and reporting and performance analysis on these relationships. These processes may also require sharing personal information with our affiliatesas well as consulting publicly available records. These processes are conducted to ensure appropriate execution of the agreement between the parties and between us and our clients, as well as being in the legitimate interests of the Company to be able to utilize third party services when providing its products and services to clients in the best way possible.
Where appropriate, these processes may include the use of any sensitive data provided on copies of identification documents.
Internal management reporting and support functions.
Including legal and regulatory support and advice (both internal and external), internal auditing, strategy development and providing and maintaining IT solutions. Most of these processes are conducted in order to execute activities vital to the internal management of our business and are imperative to the performance of our agreements with clients, customers and suppliers, however some will be conducted in order to meet our legitimate interests as a company. Where this is the case, we are committed to ensuring that the impact to the data subjects involved is minimal, the approach adopted is reasonable and that the least intrusive approach is followed. Other processes may be conducted in order to fulfill a legal or regulatory obligation. Personal data may be shared with our affilates, including our affiliate Aegon Global Technology who will act as a data processor of personal data handled or processed when providing IT and technology solutions. Personal data may also be shared with third parties including external law firms, accountants and auditors.
Managing relationships with governments and supervisory authorities.
This includes responding to requests and providing regular and ad hoc reporting. These processes are conducted in order to fulfill a legal and regulatory obligations of the company. Where personal data, including sensitive personal data, needs to be processed in order to fulfill these obligations, it will be in line with this privacy statement including when processing involves third parties and our affiliates.
More information can be found in the section titled 'Sharing your personal data’.
Conducting processing activities.
All emails sent to any member of our staff will be retained and may be monitored in order to complete the respective processing activities or achieve the processing purposes stated in this statement. All Bloomberg chat conducted with our staff is also monitored to meet these and other regulatory requirements. Only the appropriate staff members are authorized to monitor or review email or message content in line with their job role.
Marketing to our customers and prospects.
This will include the execution and analysis of marketing campaigns and strategies, promoting products and services provided by the Company and our affiliates, running and contributing to promotional events, and the use of ad hoc competitions and promotions. We may use the personal data we have to send you marketing information and news about our products and services that may be of interest to you, unless you have opted out of marketing.
We may conduct marketing with our business partners based on our legitimate interest to share product and service information with them in order for them to take it into account when providing a related service. When doing this, we will ensure that the least intrusive method is used and that we feel the recipient would reasonably expect to receive marketing of this type. Business partners will be able to opt out of marketing from us at any point and this will be respected.
Marketing communications will be conducted using various channels such as mail, phone and email.
Please remember that you can withdraw your consent or request to opt-out of marketing communications at any time by contacting us (see section 'Your Rights').
The withdrawal of consent, or your objection to the specific processing of personal data, including for the purposes of marketing, does not affect the processing conducted before the withdrawal. It will also not affect the provision of other products and services unrelated to the process for which you have withdrawn consent.
We may conduct marketing related analytics which includes the processing of personal data based on our legitimate interest to ensure we provide customers with appropriate marketing information that is relevant to them. When doing this, we will ensure that aggregated information is used where possible and where personal data is processed the least intrusive method is used and that we feel the recipient would reasonably expect this type of processing. Data subjects may object to this at any time by contacting us. This analytics may include additional (personal) information obtained from third parties where we consider the use of this data fair and legal.
6. Do Not Track Signals When you browse the web with your web browser, you can send a request to websites not to collect or track your browsing data. Our website does not currently recognize or respond to “do not track” signals.
7. Sharing your personal data
7.1 Sharing your personal data among affiliates within the AXA Group and AEGON Group
The Company is a joint venture of AXA Equitable Life Insurance Company and AEGON USA Realty Advisors, LLC, which are members of the AXA Group and AEGON Group, respectively. As such, the Company’s affiliates include members of the AXA Group and the AEGON Group, both of which are global organizations. As a global organization, personal data we collect may be transferred internationally throughout the worldwide organizations of the AXA Group and the AEGON Group. For the AXA Group, this may include transfers to AXA Equitable Life Insurance Company, and for the AEGON Group, this may include transfers to AEGON USA Realty Advisors, LLC, AEGON USA Realty Advisors of California, Inc., and AEGON USA Investment Management, LLC.
We share your data for the purposes mentioned in section 4 and to have a complete overview of our contacts and contracts within the AXA Group and the AEGON Group. We may also share your data in order to offer you a complete package of services and products. This will be handled in line with the description above on how we provide marketing to customers and prospects. Sharing of data within the AXA Group and the AEGON Group will be conducted in line with applicable regulatory requirements, including appropriate technical and organizational measures.
Company personnel are authorized to access personal data only to the extent necessary to serve the applicable purpose and to perform their job.
7.2 Sharing your personal data with third parties
We work with carefully selected providers that carry out certain functions on our behalf and cooperate with relevant authorities. The following types of third parties have or could be granted access to your personal data where relevant for the processing described above.
When third parties are given access to your personal data, we will take the required contractual, technical and organizational measures to ensure that your personal data is only processed to the extent that such processing is necessary. Unless we tell you otherwise, we will strive to ensure that the third parties to whom we provide your personal data for processing purposes as described above will only process your personal data in accordance with our instructions.
In other cases, your personal data will not be supplied to third parties, except:
7.3 The use of your personal data by data processors
When a third party processes your personal data solely following our instructions, it acts as a data processor. We enter into an agreement with such a data processor concerning the processing of personal data. In this agreement we include obligations to safeguard that your personal data is solely provided to the data processor to provide specific services to us and the data is afforded a sufficient level of protection.
8. Retention of personal data
We will keep your personal data following the conclusion of our relationship and/or the processes mentioned above. This is to ensure that we comply with our record retention obligations, as set out in our internal record retention policy and determined by the appropriate supervisory and governmental authorities (including financial regulators) or other regulatory and legislative requirements. Any personal data retained after the conclusion of the relationship will be kept confidential and we will not use the information for any purpose other than to meet our legal obligations.
We are committed to ensuring your information is protected and held securely. However, the internet is not a secure medium and we cannot accept responsibility for the security of an email or any transmission of data.
The Company has implemented appropriate functional, technical, physical and organizational measures designed to protect the personal data that we have under our control from:
All our employees and service providers who have access to personal information, are obliged to protect it and keep it confidential.
10. Your rights
You have a number of rights including:
To exercise any of these rights, please contact the US Data Protection Officer at (firstname.lastname@example.org).
When requesting to exercise your rights, we will take into account other obligations of the Company as well as the rights of other data subjects. As a result, there is a chance that your request may be partially fulfilled or in limited circumstances rejected. If this is the case an explanation will be provided to you.
11. Your California Privacy Rights.
California law establishes additional privacy-related rights and obligations beyond those described above. If you are a California resident, please refer to our California Consumer Privacy Act Disclosure & Statement of Rights for more information.
12. Making a complaint
If you believe we have not processed your personal data in accordance with our data protection obligations, and that you have been affected by our non-compliance, you can make a complaint to us by contacting our Data Protection Officer at email@example.com.
Through this website, we do not purposefully market any products or services to, or knowingly gather or solicit data from, children under thirteen (13) years of age. By using this website you represent that you are not under thirteen (13) years of age. If you are under the age of thirteen (13), please do not transmit to us any of your personal data.
14. Changes to this privacy statement
From time to time we may make changes to this privacy statement. If we make any substantial changes to this privacy statement and the way in which we use your personal data we will post these changes on this page and will do our best to notify you of any significant changes.
This privacy statement was last updated on December 19, 2019.