Personnel Privacy Notice

Quick Links:

• Introduction
• Information collection
• Information use
• Selling of information
• Information retention
• Disclosure of information to third parties
• Consent
• Former personnel
• Personal information requests
• Verification of personal information requests
• Third party requests
• Data Privacy Framework notice
• Information security
• Changes to our Privacy Notice
• Questions

Introduction

This Personnel Privacy Notice applies to Personnel of each of the Deloitte U.S. Firms. As used herein, the following terms have the following meanings:

• "Deloitte Network" refers to Deloitte Touche Tohmatsu Limited ("DTTL"), the member firms of DTTL, and their affiliates and related entities.
• "Deloitte U.S. Firms" means Deloitte USA LLP, Deloitte LLP, Deloitte Consulting LLP, Deloitte Financial Advisory Services LLP, Deloitte Tax LLP, Deloitte Transactions and Business Analytics LLP, Deloitte & Touche LLP, Deloitte Services LP, and Deloitte Corporate Finance LLC and their respective affiliates.
• "Personal information" means identifiable information about you. If we anonymize personal information by removing all identifying information such that the information cannot be reasonably linked to you, then such anonymized information is not personal information and therefore is not subject to this privacy notice.
• "Personnel" means an individual that was, is, or may become employed by, or was, is, or may become a partner or principal of, a Deloitte U.S. Firm, including partners, principals, managing directors, and other client service and shared services staff. The Personnel relationship is triggered by documentation that establishes the Personnel relationship between a Deloitte U.S. Firm and the individual, such as an offer letter or a standard Deloitte U.S. Firm job application form.
• "We", "us" and "our" refer to the Deloitte U.S. Firms.

Information collection

We collect the following personal information about you:

• Name
• Contact information
• Date of birth
• Government identifiers (such as social security number)
• Financial account information
• Information about your family, dependents, and/or emergency contacts
• Other information about you in connection with the Personnel relationship

In some cases, we may collect the following types of personal information about you that may be considered sensitive:

• Racial or ethnic origin
• National origin
• Immigration or citizenship status
• Religious or philosophical beliefs
• Criminal records
• Trade union membership
• Genetic or biometric data
• Political opinion
• Medical or health information
• Sex life or sexual orientation
• Status as transgender or non-binary
• Status as victim of a crime
• Contents of your personal mail, email, or text messages when the communication is not sent to or from a Deloitte address or device
• Precise Geolocation

We do not unlawfully discriminate in connection with the Personnel relationship and will only use personal information, including sensitive information, in a lawful manner.

We collect personal information about you from, among other places:

• Information you provide directly to us
• Information we may receive from other firms within the Deloitte Network
• Information we may receive from third parties such as consumer reporting agencies or in connection with organizational transactions (such as mergers and acquisitions)

Information use

We use personal information about you to:

• Provide you with compensation and benefits
• Manage and develop your performance
• Determine your eligibility for hire, promotion or admission as a partner or principal
• Facilitate and enhance our business operations, such as promoting and delivering our services to clients and prospective clients, and developing and improving our systems, tools, products and services
• Comply with independence and other professional and legal requirements
• Facilitate business travel
• Monitor your use of our resources and facilities
• Maintain safety and security
• Address additional aspects of the Personnel relationship

Selling of information

We do not sell your personal information.

Information retention

We retain your personal information for as long as the information is reasonably needed for the purposes described in this Privacy notice. We also may retain your personal information to comply with our legal or professional obligations, enforce our agreements, or resolve disputes.

Disclosure of information to third parties

We share personal information about you with other entities to fulfill our obligations to you or others or as required or permitted by law, regulation, contract or professional standards. We may share personal information about you with the following types of third parties:

• Other firms within the Deloitte Network
  
• Clients, potential clients and other third parties in connection with the promotion and delivery of our services
  
• Third parties that perform services for us or that provide services or benefits to you
  
• Government entities and regulatory bodies, such as law enforcement or national security agencies, regulators or courts
  
• Those with whom you have requested us to share information
  
• Third parties in connection with organizational transactions (such as sales, divestitures, reorganizations or mergers)
  
• Other third parties when disclosure is otherwise a necessary consequence of the Personnel relationship
  

Any personal information that we have referenced above under "Information collection" may be disclosed to the third parties identified in this section for the purposes set forth herein.

We require third parties who perform services for us to agree to treat personal information about you confidentially and securely. We generally do not place requirements on third parties regarding the treatment of personal information about you if the personal information is provided to the third party at your request or in connection with your purchase of goods or services from the third party.

We may transfer personal information about you outside the United States to other countries for the purposes described in this Personnel Privacy Notice or as permitted or required by law.

Consent

Except as required by law or a Data Privacy Framework (see the “Data Privacy Framework notice” section below), we will not obtain your consent to the processing of personal information about you if the processing is consistent with this Personnel Privacy Notice.

Former personnel

If your relationship with us changes, for example if you retire or resign, we may continue to use personal information about you for the purposes described in this Personnel Privacy Notice.

Personal information requests

You may have the right under applicable law to request that we confirm whether we process your personal information or that we correct, delete, or stop processing your personal information. You may also have the right under applicable law to request that we provide the following information regarding the personal information we hold about you:

• The categories and/or specific pieces of personal information we collected
• The categories of sources from which personal information is collected
• The business or commercial purpose for collecting personal information
• The categories of third parties with whom we shared personal information

We will treat your requests in accordance with this Personnel Privacy Notice, our policies and applicable legal requirements.

To exercise any of your rights under applicable law described above regarding your personal information, visit our Personal Information Request Form or call us at +1.844.919.0711. When calling us, please provide your full name, mailing address, email address, and the specific type of request you are making. You may also appeal a denial of your request by completing the Personal Information Request Appeal Form.

Verification of personal information requests

For certain personal information requests, we must first verify your identity before processing your request. To do so, we may ask you to provide us with your full name, contact information, and relationship to Deloitte. Depending on your request, we may ask you to provide additional information. Once we receive this information, we will then review it and determine whether we are able to match it to the information Deloitte maintains about you to verify your identity.

Third party requests

If you are submitting a personal information request on behalf of someone other than yourself, please complete our Personal Information Request Form and include proof that you are authorized to make the request. This may be in the form of a written authorization signed by the person whom you are acting on behalf of or a valid power of attorney.

Data Privacy Framework notice

Deloitte LLP and its United States affiliates comply with the EU-U.S. Data Privacy Framework and the UK Extension to the EU-U.S. Data Privacy Framework, and the Swiss-U.S. Data Privacy Frameworks as set forth by the U.S. Department of Commerce (each, a “Data Privacy Framework”) with respect to personal information that is transferred from the European Economic Area, the United Kingdom and Switzerland to the United States within the scope of its Data Privacy Framework certifications. To learn more, see our Data Privacy Framework Notice.

Information security

We maintain reasonable physical, administrative and technical safeguards to protect personal information from loss, misuse, unauthorized access, disclosure, alteration or destruction.

Changes to our Privacy Notice

In addition to describing our current privacy practices, this Privacy Notice also describes the categories of personal information we collected, disclosed, or sold during the preceding 12 months. We reserve the right to change this Personnel Privacy Notice. We will provide you with a revised Personnel Privacy Notice that reflects such changes as required by law.

Questions

If you have any questions or concerns regarding this Personnel Privacy Notice, please contact us at USPrivacyQuestions@Deloitte.com or call us at +1.844.919.0711.