Legal & Privacy Policy

Access to and use of the Ivory Worldwide site (ivoryworldwide.com or any sites that lead to it) (hereinafter referred to as “this site”) is provided by Ivory Worldwide (“us” or “we”) subject to these Site Terms.This site is operated by Ivory Worldwide (Holdings) Limited, a company registered in England and Wales under number 06426996 and whose registered office is at 42-46 Princelet Street, London, E1 5LP [“the Company.”]

The entire text and image/visual content of this website is Copyright of the Company which retains all rights in respect of any or all of the material. The contents of this website may be printed for personal informational use as long as the Copyright notices are also reproduced.

The content may not be re-distributed, re-sold, reproduced, stored in a retrievable system or transmitted in any form by any means, electronic, mechanical, for photocopying, recording or otherwise, without prior permission of the Company. Any infringements will be rigorously pursued.

The site uses cookies. A cookie is a small file on your computer which stores certain information about your online browsing. Cookies help us recognise you as a prior site visitor, to personalise your browsing and to track your interests so we can improve our site for your benefit. We do not store any personal data about you using cookies.

If you wish to opt out of cookies you can do this through your browser settings.

Privacy Policy

This document outlines the privacy policy for the Ivory Worldwide group of companies – Ivory Worldwide (Holdings) Limited, Ivory Worldwide Limited, and Ivory Worldwide Inc.

How We Handle Your Data

Ivory Worldwide acts as either a data controller or processor. When acting as a data processor, we have a contract in place with the data controller. This section details Ivory’s role as a data controller.

Data Collection

Ivory Worldwide collects the following types of personal data:

• Basic contact details and information relating to financial contracts with customers and suppliers for accounting purposes.
• Contact details and CVs from employment inquiries.
• Contact details, personal notes, and email tracking data from communications with clients and prospective clients to effectively communicate about our services.
• Contact details and other data concerning employees to fulfill legal obligations and support staff welfare.

Regarding website information, we use IP addresses to analyze trends, administer the site, and track movements. IP addresses do not provide personally identifiable data. We also use Google Analytics, which collects anonymous information about site visitors.

Lawful Basis for Processing

We process your personal data based on the following legal grounds:

• To enter and perform a contract with you or take steps before entering a contract.
• To pursue our legitimate business interests in providing and marketing our products and services.
• Your consent, which you can withdraw at any time.
• To comply with legal obligations and establish, exercise, or defend our legal rights.
• Other purposes you have agreed to.

Data Storage

Personal data is stored on servers within the European Union or the US. We have an integrated Information Security and Privacy Management System to oversee the secure processing of your data.

Data Retention

We retain personal data according to our retention policies, which are determined by legal, contractual and business requirements.

Data Sharing

We can share information with the following third parties:

• Data processors (suppliers providing services), with contracts in place (including EU model contracts for processors outside the EEA).
• Local and foreign regulators, governments, law enforcement, advisors, courts, tribunals, and arbitrators.
• Other third parties with your consent.

Encryption and Backup

We encrypt Personally Identifiable Information (PII) data in transit and at rest using industry-standard cloud-based technologies from approved service providers. Backup policies ensure PII data remains securely managed and can be restored with integrity.

Event Logs

We collect event logs related to PII data which shows who accessed the data, what was changed, and when. Access to these logs can be provided upon request for investigative purposes.

Audits

Regular independent audits against ISO 27001 and ISO 27701 are conducted to ensure compliance. Contact gdpr@ivoryworldwide.com for more information.

Subcontractor Management

Customers are informed of subcontractors used in the management and/or processing of their PII data. Changes to subcontractors will be communicated. Written authorization is required for changes to controlled processes.

Your Rights

If you believe the information we process is incorrect, you can request to see it and have it corrected or deleted. You further have the rights to restrict processing, including automated decision-making and profiling. To raise a request or complaint regarding your personal data, please email gdpr@ivoryworldwide.com.

If you are unsatisfied with our response or believe we are not processing your data lawfully, you can complain to the Information Commissioner’s Office.