Privacy Policy

Effective Date: 3rd November 2025

Multiply Talents, operating as a business and technology consultancy, duly acknowledges and commits to safeguarding the privacy and security of your personal data. This Privacy Policy outlines how Multiply Talents ("we," "us," or "our") collects, uses, processes, stores, and protects the personal data of our clients, prospective clients, website visitors, contractors, and employees ("you"). We are committed to adhering to the highest standards of data privacy and transparency, ensuring compliance with relevant data protection laws, including the Philippine Data Privacy Act of 2012 (Republic Act No. 10173), the European Union’s General Data Protection Regulation (GDPR), and the California Consumer Privacy Act (CCPA).

By engaging with our website, services, or personnel, you signify your understanding and acceptance of the terms outlined in this Privacy Policy.

1. Scope of This Policy

This Privacy Policy applies to all personal data collected and processed by Multiply Talents through our website (MultiplyTalents.io), our various service offerings, digital platforms (such as GoHighLevel), communication channels (email, phone, chat widgets), and interactions with our team members. It details our practices concerning data collection, usage, sharing, retention, security, and your rights regarding your personal data.

2. Information We Collect

We collect various types of personal data to effectively provide our services, manage our business operations, and comply with legal obligations. The nature of the information collected depends on your interaction with Multiply Talents.

2.1 Categories of Personal Data

Identity Data: Full name, title, company name, job role.

Contact Data: Email address, postal address, phone number, social media handles.

Professional Data (for Clients/Prospects): Business needs, project requirements, company size, industry, current challenges, and strategic goals relevant to our services (Strategic Planning, Digital Transformation, Digital Marketing, Back Office Support, IT Solutions, BIM & AEC Outsourcing).

Financial Data (for Clients/Contractors/Employees): Payment information (bank details, credit card numbers – often processed by third-party payment gateways), billing address, tax identification numbers, payroll details, compensation history.

Application Data (for Contractors/Employees): Resumes, cover letters, educational background, employment history, references, certifications, skills, and other information provided during the recruitment process.

Sensitive Personal Data (for Contractors/Employees, as required by law or for benefits): In certain circumstances, and only with explicit consent or as strictly required by law (e.g., for government mandated contributions in the Philippines or health benefits administration), we may collect sensitive personal information such as health information, marital status, or government-issued IDs (e.g., SSS, PhilHealth, Pag-IBIG numbers).

Technical Data: Internet Protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our website.

Usage Data: Information about how you use our website, products, and services, including browsing patterns, pages viewed, time spent on pages, and referring websites.

Marketing and Communications Data: Your preferences in receiving marketing from us and your communication preferences.

Customer Service Data: Records of communications and interactions with our customer support teams.

2.2 How We Collect Personal Data

We employ various methods to collect data:

Direct Interactions: You provide us with your Identity, Contact, Professional, or Financial Data when you:

o Inquire about our services through our website forms or chat widgets.

o Subscribe to our newsletters or marketing communications.

o Engage in consultations for Strategic Planning.

o Sign up for or utilize our Digital Transformation, Digital Marketing, Back Office Support, IT Solutions, or BIM & AEC Outsourcing services.

o Apply for a contractor or employment position with Multiply Talents.

o Provide feedback or contact us directly.

Automated Technologies or Interactions: As you interact with our website, we automatically collect Technical and Usage Data. This data is collected using cookies, server logs, and other similar technologies.

Third Parties or Publicly Available Sources: We may receive personal data about you from various third parties:

Publicly available sources (e.g., LinkedIn profiles, company websites).

Lead generation platforms or marketing partners.

Analytics providers (e.g., Google Analytics).

Payment service providers (e.g., PayMongo, Maya, Xendit, Stripe, e-wallets like PayPal or Wise).

Recruitment platforms (for contractor/employee applications).

3. How We Use Your Information

We use your personal data for legitimate business purposes, in accordance with applicable data protection laws. Each use case is underpinned by a lawful basis for processing.

3.1 Purposes of Processing Personal Data

To Provide Services: To deliver the requested services, including Strategic Planning, Digital Transformation, Digital Marketing, Back Office Support, IT Solutions, and BIM & AEC Outsourcing. This involves managing your account, fulfilling contractual obligations, and providing customer support.

For Communication: To respond to your inquiries, send you service-related updates, administrative messages, and information about changes to our terms or policies.

For Marketing and Promotion: To send you marketing communications, newsletters, and promotional offers about our services that we believe may be of interest to you, in line with your preferences.

For Business Operations: To manage our internal operations, including billing, invoicing, financial management, record-keeping, and human resources administration for our contractors and employees.

For Service Improvement: To analyze usage patterns, collect feedback, and conduct research to improve our services, website, and overall user experience.

For Personalization: To tailor our website content and service recommendations based on your preferences and interactions.

For Security and Fraud Prevention: To protect our website, systems, and data from unauthorized access, fraud, and other malicious activities.

For Compliance and Legal Obligations: To comply with legal, regulatory, and ethical requirements, enforce our terms and conditions, and protect our rights and the rights of others.

For Recruitment: To process applications for employment or contractor engagements, assess suitability, and manage the hiring process.

3.2 Lawful Basis for Processing Personal Data

We rely on the following legal bases for processing your personal data:

Consent: Where you have given explicit consent for a specific purpose (e.g., for certain marketing communications or processing of sensitive personal data). You have the right to withdraw your consent at any time.

Contractual Necessity: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into such a contract (e.g., providing our services, processing payroll for contractors/employees).

Legal Obligation: Where processing is necessary for compliance with a legal obligation to which Multiply Talents is subject (e.g., tax reporting, labor law compliance, data breach notifications).

Legitimate Interests: Where processing is necessary for our legitimate interests or those of a third party, provided that your interests and fundamental rights do not override those interests (e.g., improving our services, preventing fraud, direct marketing, managing internal operations, and ensuring network security). We always balance our legitimate interests against your rights.

4. How We Share Your Information

We may share your personal data with various third parties under specific circumstances and always in a lawful and proportionate manner.

4.1 With Service Providers

We engage trusted third-party service providers who assist us in operating our business and delivering our services. These providers are contractually bound to process personal data only on our behalf and in accordance with our instructions, maintaining strict confidentiality and security measures. Examples include:

GoHighLevel (GHL): Used for CRM, lead management, marketing automation (email, SMS, chat widgets), sales pipelines, and customer communication. Your data entered via our website forms, chat widgets, or direct interactions may be stored and processed within GHL.

Payment Processors: Such as PayMongo, Maya, Xendit, Stripe, PayPal, or other e-wallet and credit card payment gateways, which process your financial transactions securely. We do not store full credit card details on our servers.

Analytics Providers: Such as Google Analytics, which helps us understand website traffic and user behavior to improve our services.

Cloud Hosting & Storage Providers: For secure data storage and infrastructure (e.g., Microsoft 365 services like OneDrive, SharePoint, Google Workspace).

HRIS & Payroll Systems: Specialized platforms for managing employee data, payroll processing, and government contributions (especially for Philippine operations, e.g., Sprout Solutions).

IT Support Tools: Software for remote monitoring and management to deliver our IT Solutions services effectively.

Communication Platforms: Such as Slack or Microsoft Teams, used for internal and client communication.

4.2 With Affiliates and Partners

We may share data with our affiliated entities or strategic partners if necessary for delivering integrated services or for cross-promotion of complementary services, provided such sharing aligns with the purposes outlined in this policy and any specific consents obtained.

4.3 For Legal Reasons

We may disclose your personal data if required to do so by law or in the good faith belief that such action is necessary to:

Comply with a legal obligation or a court order.

Protect and defend the rights or property of Multiply Talents.

Prevent or investigate possible wrongdoing in connection with the services.

Protect the personal safety of users of the services or the public.

Protect against legal liability.

4.4 In Business Transfers

In the event of a merger, acquisition, asset sale, or other business transaction, your personal data may be transferred as part of the assets. We will notify you before your personal data becomes subject to a different Privacy Policy.

5. International Data Transfers

As Multiply Talents operates globally and serves US, EU, and Philippine clients while having operational hubs in the Philippines, your personal data may be transferred to, stored in, and processed in countries outside of your own, including the Philippines, where data protection laws may differ from those in your jurisdiction.

When transferring your data internationally, we implement appropriate safeguards to ensure your personal data remains protected in accordance with this Privacy Policy and applicable data protection laws. These safeguards may include:

Transferring data to countries deemed to provide an adequate level of data protection by relevant authorities (e.g., EU Commission, Philippine National Privacy Commission).

Implementing Standard Contractual Clauses (SCCs) approved by the EU Commission or other relevant authorities.

Relying on Binding Corporate Rules (BCRs) or other legally recognized transfer mechanisms.

Ensuring third-party service providers comply with robust data protection frameworks.

6. Data Security

Multiply Talents employs robust technical and organizational measures designed to protect your personal data from unauthorized access, disclosure, alteration, and destruction. These measures include:

Access Controls: Restricting access to personal data to authorized personnel on a need-to-know basis.

Encryption: Using encryption for data in transit and at rest where appropriate.

Regular Security Audits: Conducting periodic security assessments and vulnerability testing.

Employee Training: Training our employees and contractors on data privacy best practices and security protocols.

Physical Security: Implementing physical safeguards for our offices and data storage facilities.

Incident Response Plan: Having a documented plan to respond to potential data breaches swiftly and effectively.

Despite our diligent efforts, no method of transmission over the internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

The retention period is determined by considering:

The nature and sensitivity of the personal data.

The potential risk of harm from unauthorized use or disclosure.

The purposes for which we process your personal data and whether we can achieve those purposes through other means.

Applicable legal, regulatory, tax, accounting, or other requirements.

For clients, we retain data for the duration of the service contract plus a period to meet legal obligations or resolve disputes.

For job applicants, we retain data for a reasonable period following the application process unless consent is given for longer retention.

8. Your Data Protection Rights

You have specific rights regarding your personal data, which we are committed to upholding in accordance with applicable laws.

8.1 General Rights Applicable to All Users

Right to Access: You have the right to request copies of your personal data held by us.

Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.

Right to Erasure (Right to be Forgotten): You have the right to request that we erase your personal data under certain conditions.

Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data under certain conditions.

Right to Object to Processing: You have the right to object to our processing of your personal data under certain conditions.

Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.

Right to Withdraw Consent: If we are relying on your consent to process your personal data, you have the right to withdraw that consent at any time.

8.2 Specific Rights under the Philippine Data Privacy Act (DPA)

For individuals located in the Philippines, you are afforded additional specific rights under Republic Act No. 10173, known as the Data Privacy Act of 2012:

Right to be Informed: The right to be notified and furnished with information before your personal data is collected and processed.

Right to Object: The right to withhold consent to the processing of your personal data.

Right of Access: The right to demand reasonable access to your personal data.

Right to Rectification: The right to dispute and correct any inaccuracy or error in your personal data.

Right to Erasure or Blocking: The right to demand the suspension, withdrawal, blocking, removal, or destruction of your personal data.

Right to Damages: The right to claim compensation for damages sustained due to inaccurate, incomplete, outdated, false, unlawfully obtained, or unauthorized use of your personal data.

Right to File a Complaint: The right to file a complaint with the National Privacy Commission (NPC) for any violation of your rights under the DPA.

8.3 Specific Rights under the General Data Protection Regulation (GDPR)

For individuals located within the European Economic Area (EEA) or whose data is processed under the GDPR:

You retain all the general rights mentioned above.

Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority, particularly in the Member State of your habitual residence, place of work, or place of the alleged infringement.

8.4 Specific Rights under the California Consumer Privacy Act (CCPA)

For California residents, the CCPA provides specific rights regarding your personal data:

Right to Know: You have the right to request that a business disclose what personal information it collects, uses, discloses, and sells.

Right to Delete: You have the right to request the deletion of your personal information collected or maintained by the business.

Right to Opt-Out of Sale: You have the right to opt-out of the "sale" of your personal information (as defined by CCPA). Multiply Talents does not sell personal information.

Right to Non-Discrimination: You have the right not to be discriminated against for exercising any of your CCPA rights.

Exercising Your Rights: To exercise any of these rights, please contact us using the "Contact Us" details provided at the end of this Privacy Policy. We will respond to your request in accordance with applicable data protection laws. We may need to verify your identity before fulfilling your request.

9. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies (like web beacons and pixels) to enhance your browsing experience, analyze site usage, and support our marketing efforts.

Cookies: Small text files placed on your device by websites that you visit. They are widely used to make websites work, or work more efficiently, as well as to provide information to the owners of the site.

Purpose: We use cookies to:

o Remember your preferences and settings.

o Analyze website traffic and user behavior.

o Personalize content and advertisements.

o Track the effectiveness of our marketing campaigns.

Managing Cookies: You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of our website may become inaccessible or not function properly.

10. Third-Party Links

Our website may contain links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy policy of every website you visit.

11. Children's Privacy

Our services are not intended for individuals under the age of 18 ("Children"). We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your child has provided us with personal data, please contact us. If we become aware that we have collected personal data from children without verification of parental consent, we take steps to remove that information from our servers.

12. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Effective Date" at the top of this document. We encourage you to review this Privacy Policy periodically for any changes. Material changes will be communicated through more prominent notices, such as email or website banners.