Reviewed: 17 October 2024

 

At Dromon Bureau of Shipping (DBS) we know privacy is important to you, and we are committed to protecting personal information of our customers, colleagues and associates. In this privacy policy, we explain how we collect, use and protect your personal information. We also describe how you can make choices and take control.

The EU General Data Protection and Privacy Regulation requires compliance by all organizations who use data relating to EU citizens as part of their business, regardless of whether the organization resides within the EU.

In this respect, we have updated our Privacy Policy and Terms and Conditions to reflect the GDPR requirements and ensure that DBS is in compliant.

  1. Who we are
    Established in 2003, we have grown to be among the leading engineering service providers with the objective of protecting the environment and life at sea.
    Our core services consist:

    1. Classification of ships and other marine structures
    2. Statutory certification
    3. Verification services under various environmental schemes
    4. Independent engineering service
      Our extensive experience in assessing the design and construction of ships and other marine related structures has established DBS as one of the leading independent classification societies.
  2. What categories of personal data we process
    We use a variety of personal information depending on the circumstances under which personal information is made available to us.

    1.  Business contacts: We hold the names, job titles, employer details and professional contact details for various business contacts, including client contacts, supplier contacts and interested parties who have signed up for our newsletter via our website.
    2. Clients: Most of our clients are incorporated entities, however in the course of conducting surveys/audits, we may collect and use personal information of individuals that work for our clients. This can include names, contact details and information about an individual’s work or role at our client.
    3. Subcontractors: If you are a subcontractor, we will process your name, professional and personal contact details, CV and professional background, payment details and information about the work you complete for us.
    4. Job applicants: Where you apply for a role with us, we will process the personal information you provide to us as part of your application and any interview selection process. This will ordinarily include your name, personal contact details, professional history, education and qualifications and references.
    5. Personal data automatically collected when you browse our website: When you visit the website to browse information it contains, we will gather and store certain information (e.g. IP address, the browser used, the date and time of visit, pages visited) about your visit automatically.
  3. How do we collect your information?
    We may collect information from you when you:

    1. Apply for a job by sending us your CV or by filling in a job application form
    2. Sign up for our newsletters via our website.
    3. Through contracts with employees and subcontractors
    4. Otherwise provide it to us.
  4. The purposes for which we process personal data
    Personal data actively provided by you may be used to enable us to communicate with you with regards to the services in which you have registered an interest, to make available targeted information and provide you with e-mail information on our services. We use your information to communicate with you and improve our business relationship, to personalize and expand your business experiences as well as to provide our services and to manage our business operations. We may use your information or part of it for marketing and promotional purposes and share your information with third parties assisting us to complete our business cycles.In order to process your personal information, we must determine a legal basis which is connected to the purpose behind its collection. Please note below all purposes and corresponding legal bases.

    Purpose Legal Basis
    For payroll, employment records, and communication. Contract
    Responding to your inquiries and requests. Legitimate interest.
    Processing payment for services you purchased from us. Contract
    Providing you with direct marketing communications. For example, sending you Newsletters via email Consent
    Complying with legal obligations. For example, enforcing our terms and conditions, protection of general operations and property and enforcing our responsibilities under applicable law. Legitimate interest and/or Legal Obligations
    Authenticating the identity of individuals contacting us by telephone or other electronic means. Legitimate interest.
    Technical support. For example, in the event of technical website and application malfunction to find the cause and remediation. Legitimate interest.
    Security purposes. For example, detecting threats and protecting against malicious or fraudulent activity. Legitimate interest.
  5. Who will your information be shared with?
    As a large company, we share your personal information internally and with third parties for the purposes described above. We would typically share your information with:

    1. Service Providers
      We may share your information with third parties who perform services on our behalf. This includes third parties that enable us to answer your inquiries, process your payments, deliver our services, hosting our websites, deliver marketing communications, and analysing information. In these circumstances, we take steps required by data protection laws to ensure that these service providers protect the personal information we share with them
    2. Certification and Accreditation Bodies: We may be required to share personal information with accreditation and regulatory bodies, who monitor certification and audit services to ensure that we are compliant with their rules and requirements when awarding certifications and accreditations.
    3. Internal transfers
      We may share your personal information within the DBS for operational and business purposes.
    4.  Legal reasons
      We may share your personal information:

      1. To comply with a legal obligation.
      2. In connection with a legal proceeding.
      3. At the request of law enforcement authorities or other government agencies conducting an investigation.
      4. With companies who help us protect our property and rights.
      5. To protect the safety of third parties such as website
  6. Retention periods
    Personal data will be deleted as soon as it is no longer needed for the purpose it was collected for to provide the services and fulfill the agreements and transactions you have requested, or for other essential purposes such as complying with our legal obligations and enforcing our agreements.  Because these needs can vary for different data types in the context of different services, actual retention periods can vary significantly. We may, however, retain information about your previous transaction for auditing purposes (financial, quality and other audits), to ensure the integrity of our data and to fulfill legal requirements.In the event of complying with our audit legal requirements (financial, quality and other audits), we may keep our records for a certain period, as required, to a controller which we will ensure that shall be GDPR compliant.Unsuccessful job applicant information is retained for a period of 6 months after the position has been filled.We will retain the personal information of business contacts that receive our newsletter until they opt-out or unsubscribe from our newsletter. 
  7. Sending personal Information overseas
    We may need to transfer personal information outside the European Union to our agents / subcontractors and suppliers based in countries where data protection laws may not provide the same level of protection as those in the EU.We will only transfer your personal information outside the EU where either:

    1. the transfer is to a country which the EU Commission has decided ensures an adequate level of protection of personal information; or
    2. we have put in place our own measures to ensure adequate security as required by data protection laws.
  8. Monitoring and recording of communications
    DBS may monitor and record communications with you, such as emails for quality assurance and compliance.
  9. Security
    We take market standard precautions to protect personal data.The transmission of information via the internet is not completely secure and therefore we cannot guarantee the security of data sent to us electronically and transmission of such data is therefore entirely at your own risk. Where we have given you (or where you have chosen) a password so that you can access the website or our Eretes platform or MyDromon platform, you are responsible for keeping this password confidential.Unfortunately, no data transmission or processing can be guaranteed to be 100 % secure. Accordingly, despite our efforts to protect the personal data, DBS is not able to guarantee or warrant the security of the personal data.
  10. Privacy rights
    You may be entitled to exercise some or all the following rights free of charge: 

    1. require (i) information whether your personal data is retained and (ii) access to and/or (iii) duplicates of your personal data retained, including the purposes of the processing, the categories of data concerned, and the recipients or categories of recipients to whom the data are disclosed and where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;
    2. request proper rectification, removal or restriction of your personal data, e.g. because (i) of the incomplete or inaccurate nature of the personal data, (ii) it is no longer needed for the purposes for which it was collected, (iii) the consent on which the processing was based has been withdrawn, or (iv) you have taken advantage of an existing right to object to the data processing; in case your personal data is processed by third parties, we will forward your request for rectification, removal or restriction also to such third parties unless this proves impossible or involves disproportionate effort;
    3. receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and to transmit those data to another controller without hindrance from our side; where technically feasible you shall have the right to have the personal data transmitted directly from us to another controller,
    4. refuse to provide and – without impact to data processing activities that have taken place before such withdrawal – withdraw your consent to processing of your personal data at any time;
    5. object at any time, out grounds relating to your particular situation, that your personal data shall be subject to a collection, processing or use;
    6. not to be subject to any automatic individual decisions (automatic decisions based on data processing by automatic means, for assessing several personal aspects) which produce legal effects on you or similarly significantly affect you
    7. take legal actions in relation to any breach of your rights regarding the processing of your personal data, as well as to lodge complaints before the competent data protection regulators.
  11. Online activities
    In the following www.dromon.com,  eretes.dromon.com and mydromon.com are referred to as the “Website”.The Website uses “cookies” to help personalize your online experience. A cookie is a text file that is placed on your hard disk by a web page server. Cookies cannot be used to run programs or deliver viruses to your computer. Cookies are uniquely assigned to you and can only be read by a web server in the domain that issued the cookie to you. We may use cookies to collect, store, and track information for statistical purposes to operate our Website and Services. You have the ability to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer.In some special cases we also use cookies provided by trusted third parties. The following section details which third party cookies you might encounter through this site.

    1. This site uses Google Analytics which is one of the most widespread and trusted analytics solution on the web for helping us to understand how you use the site and ways that we can improve your experience. These cookies may track things such as how long you spend on the site and the pages that you visit so we can continue to produce engaging content. For more information on Google Analytics cookies, see the official Google Analytics page.
    2. From time to time we test new features and make subtle changes to the way that the site is delivered. When we are still testing new features these cookies may be used to ensure that you receive a consistent experience whilst on the site whilst ensuring we understand which optimizations our users appreciate the most.
    3. We also use social media buttons and/or plugins on this site that allow you to connect with your social network in various ways. For these to work the following social media sites including Facebook, Twitter, LinkedIn, YouTube, will set cookies through our site which may be used to enhance your profile on their site or contribute to the data they hold for various purposes outlined in their respective privacy policies.
  12. Revision of the Privacy Policy
    DBS may change or update the privacy policy without notice.  All such changes will take effect once they have been posted in our website.  It is your responsibility to monitor such updates.  The privacy policy was last updated on the date stated at the beginning of this privacy policy.
  13. Contact Details
    If you are concerned about use of your data or have any questions regarding this Privacy Policy, please email our Head office info@dromon.com.More information can be obtained on the data protection/privacy policy/data subject information policy on the website (here) of the europa.eu webpage concerning GDPR.