Last updated: 17 May 2018
Previous version: 29 June 2012
This website (the "Website") is operated by Cushman & Wakefield Debenham Tie Leung Limited on behalf of ourselves, our group companies, international partnerships and affiliated organisations ("C&W", "we", "our" or "us").
We recognize that when you choose to provide us with information about yourself, you trust us to act in a responsible manner. This Privacy Notice explains who we are, how we collect, share and use personal information about you, and how you can exercise your privacy rights.
This applies to personal information that we collect though the Website or when engaging in our relationship or potential relationship with you (or your organisation) as a supplier, customer or business partner.
Cushman & Wakefield is a leading global real estate services firm with 45,000 employees in more than 70 countries helping occupiers and investors optimize the value of their real estate. Cushman & Wakefield is among the largest commercial real estate services firms providing core services of agency leasing, asset services, capital markets, facility services (C&W Services), global occupier services, investment & asset management (DTZ Investors), project & development services, tenant representation, and valuation & advisory. For more information about us, please see the About Us section of our Website.
Depending on your relationship with C&W, we may collect personal information about you that broadly falls into the following categories:
Website information. You can visit our website without telling us anything about yourself. However, in some situations we may ask you to voluntarily provide us with some personal information. For example, this might be if you are interested in signing up to receive emails from us, or reading some research, or attending an event, or participating in any online forum provided by us from time to time, or if you register for any online account made available by us, or contact us via the Website (in which cases we will collect information such as name, email address, organisation, country, zip code/postal code, job title, telephone number(s), details of your comment or query and username/password). When we do receive your personal information we will treat it securely, lawfully and fairly.
When you visit our Website, we may collect certain information automatically from your device. In some countries, including countries in the European Economic Area, this information may be considered personal information under applicable data protection laws. Specifically, the information we collect automatically may include information like your IP address, device type, cookie ID, browser-type, broad geographic location (e.g. country or city-level location) and other technical information. We may also collect information about how your device has interacted with our Website, including the pages accessed and links clicked. Collecting this information enables us to better understand the visitors who come to our Website, where they come from, and what content on our Website is of interest to them. We use this information for our internal analytics purposes and to improve the quality, relevance and experience of our Website for our visitors. Some of this information may be collected using cookies and similar tracking technology, including web beacons. For further information about the types of Cookies we use, why, and how you can control Cookies, please see our Cookies Notice.
You may also provide us with information about a health condition to facilitate us making adjustments to ensure accessibility to premises and/or events.
If you provide us with information about another person, you confirm that they have appointed you to act for them, that you have informed them of our identity and the purposes (as set out in this Privacy Notice) for which their information will be processed and that you have obtained any necessary consents to the processing of their personal information. When we first contact them, we may tell them where we got the information from.
We use your personal information for the following purposes (or otherwise described at the point of collection):
We may disclose your personal information to the following categories of recipients:
Further information about our group companies, affiliated entities and the third party service providers that may process your personal information (including their location) can be provided on request by contacting us using the details in the How to contact us heading below.
Under European Union data protection law, our legal basis for collecting and using the personal information described above will depend on the personal information concerned and the specific context in which we collect it.
However, we will normally collect personal information from you only (i) where we need the personal information to perform a contract with you, (ii) where the processing is in our legitimate interests and not overridden by your rights, or (iii) where we have your consent to do so. In some cases, we may also have a legal obligation to collect personal information from you or may otherwise need the personal information to protect your vital interests or those of another person.
Where we process your sensitive personal information, we do so: (i) in the context of know-your-counterparty checks as required by applicable law; (ii) on the basis that the processing is necessary for reasons of substantial public interest; (iii) on the basis of your explicit consent; or (iv) to establish, exercise or defend legal claims.
You can choose not to provide personal information to us. However, unless otherwise indicated, the information that we request is necessary for the purposes of entering into and performing a contract with you or your organisation and/or providing services to you or your organisation and failure to provide it will impede the contracting process and/or the provision of the relevant services.
If we collect and use your personal information in reliance on our legitimate interests (or those of any third party), these interests will normally be: to provide our services to you, respond to your queries, improve our Website(s), undertake marketing, or for the purposes of detecting or preventing illegal activities.
Given the business-to-business context in which we undertake the processing of your personal information, and the safeguards that we take to protect your personal information (including as outlined under the How do we protection your information heading below), our legitimate interests are not outweighed by any prejudice to your individual rights and freedoms. We may have other legitimate interests and, if appropriate, we will make clear to you at the relevant time what those legitimate interests are.
If you have questions about or need further information concerning the legal basis on which we collect and use your personal information, please contact us using the contact details provided under the How to contact us heading below.
We use appropriate technical and organisational measures to protect the personal information that we collect and process about you. The measures we use are designed to provide a level of security appropriate to the risk of processing your personal information. We take care to allow access to personal information only to those who require such access to perform their tasks and duties, and to third parties who provide services to us or otherwise have a legitimate purpose for accessing it (see under the Who do we share your personal information with? heading above). Whenever we permit a third party to access personal information, we will implement appropriate measures to ensure the information is used in a manner consistent with this Privacy Notice and that the security and confidentiality of the information is maintained.
Your personal information may be transferred to, and processed in, countries other than the country in which you are resident. These countries may have data protection laws that are different to the laws of your country (and, in some cases, may not be as protective).
Specifically, our Website servers are located in the United States, and our group companies, affiliated companies and third party service providers operate around the world. This means that when we collect your personal information we may process it in any of these countries. For example, we use a third party customer relationship management platform that entails the processing of personal information in the US.
However, we take steps to safeguard your personal information in accordance with this Privacy Notice. These include, for example, reliance on a third party service provider registration with EU-US Privacy Shield (pursuant to Article 45 of the General Data Protection Regulation). Further details about the protection given to your personal information can be provided upon request by contacting us using the details in the How to contact us heading below.
We retain personal information we collect from you where we have an ongoing legitimate business need to do so. If you are a client or vendor (or a representative of a client or vendor) then the information will be retained for a period of time to allow us to provide our services, to comply with applicable legal, tax or accounting requirements and, if necessary, for the establishment, exercise or defence of legal claims.
When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymise it or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.
If European data protection laws apply, you have the following rights:
You have the right to complain to a data protection authority about our collection and use of your personal information. For more information, please contact your local data protection authority.
We respond to all requests we receive from individuals wishing to exercise their data protection rights in accordance with applicable data protection laws.
We link to other websites. We are not responsible for the content or privacy policies of these websites for the way in which information about their users is treated. In particular, unless expressly stated, we are not agents for these websites or advertisers nor are we authorized to make representations on their behalf. In any event, you should explore the privacy practices of those third parties.
In order to bring you more personalized services, we may ask you to establish one or more passwords to gain access to certain services or sections on our Website. You are solely responsible for the control and use of each password you create and we recommend not reusing an old password and creating a strong one.
We may update this Privacy Notice from time to time in response to changing legal, technical or business developments. When we update our Privacy Notice, we will take appropriate measures to inform you, consistent with the significance of the changes we make. We will obtain your consent to any material Privacy Notice changes if and where this is required by applicable data protection laws.
You can see when this Privacy Notice was last updated by checking the date displayed at the top of this Privacy Notice.
If you have received an e-mail or e-mails from Cushman & Wakefield that you no longer wish to receive, please contact us at firstname.lastname@example.org. If you otherwise have any questions or concerns about our use of your personal information, please contact us at: email@example.com. If you are in Germany, you can contact C&W's German-based Data Protection Officer (DPO).
The data controller of your personal information is the Cushman & Wakefield group entity (i) with which you or your organisation is engaged as a supplier or customer; (ii) which is considering entering into a relationship with you or your organisation; and/or (iii) with which you are engaged as user of a particular Cushman & Wakefield website.