Effective Date: January 10, 2006
Revised: May 17, 2018
Please Read Carefully.
- Cookies Policy
- Contact Us
Your Acceptance Through Use
Your continued use of our Site following the posting of changes to these terms means you accept these changes.
The Types of Information We Collect
We have several areas in this Site (including links to other CBRE websites) where you can submit personal and other information to us. The types of personal information we may obtain or you may choose to provide include:
- Contact information (such as name, postal or e-mail address, and phone number)
- Your professional information (such as job title, department and name of organization)
- Account information
- Subscription details
- Username and password
- Payment account information
- Content you provide (such as job and education history, comments, responses to questions)
- Mobile device unique identifier
- Geo-location data
- Information about your use of our websites. For more information, see our Cookies Policy
How We Use Your Information
Communications With You – Offerings and Services In Which You Expressed Interest
When you visit or transact business on this Site, you may be required to register with us or be requested to provide us with personal and account information. When you provide us with this information, we may use such information to contact you about the offerings or services in which you have expressed an interest. CBRE has a legitimate business interest to use the personal information we collect from you if you apply for employment or engage in a contractual business relationship with CBRE. Where we have relied on your consent, if you tell us that you do not want us to use this information as a basis for further contact with you (by accessing our opt-out procedure described below), we will respect your wishes.
Communications With You – Newsletters and Marketing Purposes:
In order to keep our users informed about our latest news, products and services, we may, subject to applicable law, send e-mails and marketing communications to the email address that you provided to us while registering on our Site or requesting information from us. Please be aware that we do sometimes send marketing communications that promote a third party’s products and services (for example, those of our business partners) as well as our own. If you elected to opt–in to any of our email lists, newsletters or other promotional offerings and later decide that you no longer wish to receive such newsletters or promotional e-mail from us, you may unsubscribe by following the instructions contained in each email we send to you (or use the opt-out procedure described below).
We may also use the personal information we obtain about you for the following purposes:
- Creating and managing any accounts you may have with us and respond to your inquiries;
- Evaluating your interest in employment and contacting you regarding possible employment with CBRE;
- Operating, evaluating and improving our business (including developing new products and services; managing our communications; determining the effectiveness of and optimizing our advertising; analyzing our products, services, websites, mobile applications and any other digital assets; facilitating the functionality of our websites, and mobile applications and any other digital assets);
- Anonymizing personal information and preparing and furnishing aggregated data reports showing anonymized information;
- Enforcing our Terms and Conditions or other legal rights;
- As may be required by applicable laws and regulations or requested by any judicial process or governmental agency having or claiming jurisdiction over CBRE.
We also may use the information in other ways for which we provide specific notice at the time of collection.
Information Provided to Us About You By Third Parties
Third Party Usage:
We may purchase marketing data from third parties and add it to our existing user database to better target our advertising and to provide pertinent offers in which we think you would be interested. We may also associate this marketing data to the personally identifiable information that you provide to us.
Personal Information We Share
We may share your personal information with companies acting as our authorized agents in providing our services (e.g., customer/support services) to you, all of which agree to use your information only for such specified purposes. Each vendor must agree to implement and maintain reasonable security procedures and practices appropriate to the nature of your information in order to protect your personal information from unauthorized access, destruction, use, modification or disclosure. Because we operate globally, we may transfer your information to countries or jurisdictions that do not provide the same level of data protection as the country in which you are based. If we make such a transfer, we will, or our vendors will, as applicable, provide for the proper safeguards required by applicable law to ensure that your information is protected. More information on International Data Transfers of your personal information is below.
Legally Affiliated Entities:
In the event that CBRE is merged, or in the event of a transfer of our assets, Site or operations, CBRE may disclose or transfer your personal information in connection with such transaction. In the event of such a transfer, CBRE will notify you via email or by posting a prominent notice on our Site for 30 days of any such change in ownership of CBRE resulting in a change of control of your personal information. We may also share your personal information with CBRE affiliates in order to provide or offer services to you.
Legally Compelled Disclosure:
We will also disclose your personal information when required to do so by law, for example, in response to a court order or a subpoena or other legal obligation, in response to lawful requests by public authorities, including to meet national security or law enforcement agency’s requirements, or in special cases when we have reason to believe that disclosing your personal information is necessary to identify, contact or bring legal action against someone who may be causing injury to or interference with (whether intentionally or unintentionally) our rights or property.
You should also be aware that courts of equity, such as U.S. Bankruptcy Courts, may have the authority under certain circumstances to permit your personal information to be shared or transferred to third parties without your permission.
International Data Transfers
Consent to Processing In the US and Elsewhere by Registration on This Site
CBRE is a global business. We may transfer the personal information we collect about you to recipients, and your personal information may be stored and processed, in countries other than the country in which the information was originally collected, including the United States and elsewhere that may have less stringent data protection laws than the country in which you initially provided the information. By providing any personal information to us, you fully understand and unambiguously consent to the transfer and processing of such personal information in the United States and other countries or territories.
If you object to your personal information being transferred or used in this manner please do not register with or use the Site.
Privacy Shield Certification:
Independent Recourse of Privacy Shield Complaints
In compliance with the EU-US and Swiss-US Privacy Shield Principles, CBRE commits to resolve complaints about our collection or use of your personal information. EU individuals with inquiries or complaints regarding our Privacy Shield policy should first contact CBRE at: PrivacyAdministrator@cbre.com.
CBRE has further committed to refer unresolved Privacy Shield complaints to JAMS, an alternative dispute resolution provider located in the United States. If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please contact or visit www.jamsadr.com for more information or to file a complaint. The services of JAMS are provided at no cost to you. You have the possibility, under certain conditions, to invoke binding arbitration for complaints regarding Privacy Shield compliance not resolved by JAMS. For additional information on binding arbitration, visit: https://www.privacyshield.gov/article?id=ANNEX-I-introduction.
CBRE endeavors to protect the security of your personal information and your choices for its intended use. We use Secure Socket Layers or SSL technology to protect the transmission of sensitive personal information such as your credit card number. We store your personal information on a secure server, and use procedures designed to protect the personal information we collect from unauthorized access, destruction, use, modification or disclosure.
Although we will take (and require our third-party providers to take) commercially reasonable security precautions regarding your personal information collected from and stored on the Site, due to the open nature of the Internet, we cannot guarantee that any of your personal information stored on our servers, or transmitted to or from a user, will be free from unauthorized access, and we disclaim any liability for any theft or loss of, unauthorized access or damage to, or interception of any data or communications. By using the Site, you acknowledge that you understand and agree to assume these risks.
- Your Rights
When you register on this Site, we may ask you to select whether you would like to receive email and electronic communications from us such as offers, news, reports and other promotional communications. You may withdraw your consent or opt-out of receiving such communications at any time by contacting us as described below. We are also improving this Site with a privacy preferences page so you can control what communications you want to receive from us.
You may contact us: (a) by telephone, at +1 877 227 3330; (b) by facsimile, at +1 212 6187085; (c) by following the Opt-Out or unsubscribe instruction contained in the body of any marketing e-mail from us; (d) by sending us an e-mail at PrivacyAdministrator@cbre.com, including a copy of the e-mail you have received and by typing “Remove” in the subject line of your e-mail; or (e) by mail, CBRE, Inc., 321 North Clark Street, Suite 3400, Chicago, Illinois 60654, Attention: Global Director, Data Privacy.
If you are located in Europe, the Middle East or Africa, you may also e-mail us at PrivacyAdministratorEMEA@cbre.com, including a copy of the e-mail you have received and by typing “Remove” in the subject line of your e-mail.
If you are located in Asia or the Pacific, you may also e-mail us at PrivacyAdministratorAPAC@cbre.com, including a copy of the e-mail you have received and by typing “Remove” in the subject line of your e-mail.
Your election not to receive newsletters or promotional and marketing correspondence from us will not: (i) preclude us from corresponding with you, by email or otherwise, regarding your existing or past relationship with us, and (ii) preclude us, including our employees, contractors, agents and other representatives, from accessing and viewing your personal information in the course of maintaining and improving the Site.
Objecting to or Unsubscribing from Direct Marketing:
You may unsubscribe from or object to receiving direct marketing from us; or request correction or object to our processing your personal information collected by this Site by sending a written request to (a) PrivacyAdministrator@cbre.com or (b) PrivacyAdministratorEMEA@cbre.com if you are located in Europe, the Middle East or Africa, or (c) PrivacyAdministratorAPAC@cbre.com if you are located in Asia Pacific.
Requesting Access to Your Personal Information and Other Rights:
You may also request to review, access, correct, delete, port or object to our processing your personal information processed by us by making a request on CBRE’s data subject rights portal or submitting your request to email@example.com. CBRE’s Guidance on Making a GDPR Data Subject Request is available on the DSR Portal.
Independent Recourse for Privacy Shield Complaints:
What is a Cookie: A cookie is a small text file that a website stores on your personal computer, telephone or any other device, with information about your navigation on that website. Cookies facilitate browsing and to make it more user-friendly. A cookie contains the name of the server it came from, the expiry of the cookie, and a value – usually a randomly generated unique number. Cookies do not give access to nor damage your computer.
B. Cookie Use By Us
Cookies Are Not Used to Store Sensitive Data:
The cookies we use do not store sensitive personal information, such as your address, your password, or your credit card data.
Main Cookies we use:
Here’s a list of the main cookies we use, and what we use them for:
Name Purpose Expiry Analytics _utma Used to record anonymous data about your visit.
The information is aggregated to our Google Analytics account. We do not share this data in any form.
2 years Analytics _utmb Same as above. 30 minutes Analytics _utmb Same as above. When you close your browser Analytics _utmz Same as above. 6 months Analytics MF_user This cookie establishes whether the user is a
returning or first-time visitor for the purpose of analytics. This is done
simply by a yes/no toggle – no further information about the user is stored.
90 days Analytics _GA Allows web analytics to identify unique users
across browsing sessions, but it cannot identify unique users across different browsers
90 days Analytics _Gid Allows web analytics to identify unique users
across browsing sessions, but it cannot identify unique users across different
browsers or devices.
90 days Analytics SC_ANALYTICS_
Identifies repeat visits from an anonymous
single user across CBRE websites.
1 year Performance Adrum Performance Cookie for technical monitoring of
the server load
On session close Performance ASP.NET_SessionId Collects and reports on aggregate non-identifiable information, which can then be used to report on the performance of the website and provide insights on how the site is currently used and how it can be improved. 1 year User Login State GRG_jwtToken Identifies if a user is logged in to the CBRE Global Research Gateway. The Login is able to persist up to 90 days or on log out by the user. 90 days User Login Stat auth_id_token Identifies a user is authenticated by Single Sign on and able to download CBRE Research 90 days
Avoiding and Disabling Cookies
You may contact us by emailing PrivacyAdministrator@cbre.com or by writing to us at 321 North Clark Street, Suite 3400, Chicago, Illinois 60654, Attention: Global Director, Data Privacy.
Visitors in Europe, the Middle East or Africa:
If you are located in Europe, the Middle East or Africa, you may also e-mail us at PrivacyAdministratorEMEA@cbre.com or write to us at St. Martins Court, 10 Paternoster Row, London EC4M 7HP, United Kingdom, Attention: EMEA Director, Data Privacy.
Visitors in Asia or the Pacific:
If you are located in Asia or the Pacific, you may also e-mail us at PrivacyAdministratorAPAC@cbre.com or write to us at 40/F GT Tower International, 6813 Ayala Ave. cor H.V. Dela Costa Street, Salcedo Village, Makati City, Philippines 1227, Attention: APAC Senior Manager, Data Privacy.
Last updated: 7 March 2014
CBRE Pty Limited ACN 057 373 574 and its related companies (collectively referred to as “CBRE”, “us” or “we”) respect the privacy and security of your Personal Information, as defined below, and comply with the requirements of the Australian Privacy Principles (“APP”) under the Privacy Act 1988 (Cth) (“the Act”).
You may be able to deal with us without identifying yourself (i.e. anonymously or by using a pseudonym) in certain circumstances. If you wish to do so, please contact us to find out if this is practicable in your circumstances. However, if you do not provide us with the Personal Information we have requested, we may not be able to complete or fulfill the purpose for which we collect the information, including providing our services.
WHAT PERSONAL INFORMATION DO WE COLLECT AND HOLD?
Under the Act Personal Information is defined as information or an opinion about an identified individual, or an individual that is reasonably identifiable, in whatever form and regardless of whether it is true or not (‘Personal Information’). The Act also defines a subset of Personal Information as sensitive information (for example health records, racial or ethnic origin, religious beliefs, criminal records).
The types of Personal Information we collect and hold will depend on the circumstances of collection and on the type of service we are providing. For example, when we are engaged to sell a property, we may collect and hold Personal Information from both the seller and potential buyers such as name, address, email address, telephone numbers, employment details and details about their business.
HOW WE COLLECT PERSONAL INFORMATION
We may collect Personal Information about you directly when you deal with us over the telephone, send us correspondence (whether by letter, fax or email), have contact with us in person, visit our websites or complete hard copy or online forms.
There are also circumstances where we may collect Personal Information about you from someone else. For example, from:
- market research companies contracted by us to obtain information so that we may improve and market our services;
- your employer;
- other agents and valuers who may be involved in the services we provide;
- property developers who contract us to market properties;
- publicly available information and databases;
- any of the companies within the CBRE group (both local and overseas); and
- anyone you have authorised to deal with us on your behalf.
We also automatically collect certain information when you visit our websites or our subscribers receive promotional emails from us via cookies and other tracking technology (such as web beacons), some of which may be capable of personally identifying you. Such information includes the type of browser and operating system you are using, your IP address and how you use our websites.
WHY WE COLLECT, HOLD AND USE PERSONAL INFORMATION
We generally collect, hold and use your Personal Information for the purposes for which it is provided to us (which will usually be obvious at the time of collection), related purposes or as permitted or required by law. Such purposes may include:
- acting as agent for vendors or purchasers in relation to the sale of a property;
- acting as agent for owners or tenants in relation to the leasing and or valuation of a property;
- project management services;
- structured advisory services;
- town planning services;
- capital allowances services and other consulting services in relation to the property market;
- administration of our business, such as collection of overdue commissions or outstanding fees;
- responding to client enquiries and communicating with you from time to time to maintain contact and keep you updated on the services you have requested;
- forecasting future needs of our services and general quality assurance and training purposes;
- engaging in legal proceedings and/or enforcing judgments and/or orders;
- complying with the applicable legal or regulatory requirements and/or orders of competent authorities;
- providing you with promotional and marketing information, including market research reports, newsletters, event invitations and/or property market information relating to our products and services which we think may be of interest to you; and
- any other purpose identified at the time of collecting your Personal Information.
DISCLOSURE OF PERSONAL INFORMATION
We may disclose your Personal Information to third parties as may be necessary for any of the purposes stated in the above section. Such third parties generally include:
- our third party providers, contractors, consultants, agents and/or representatives (such as law firms, banks, financial institutions, insurers, IT providers, mortgage referral services providers and/or wealth management services providers) who provide services to us or on our behalf, including to:
- conduct valuations;
- assist with obtaining payment from creditors;
- operate data centres;
- conduct market research;
- provide advice;
- potential buyers, tenants, conjunctional real estate agents and brokers for the purpose for which the information was collected or for related purposes (for example to complete a transaction on your behalf or provide you with a service that you requested);
- anyone you have authorised to deal with us on your behalf;
- any of the companies within the CBRE group and their related companies;
- government authorities, regulatory bodies, law enforcement agencies, courts, tribunals and/or parties to the legal proceedings where you have consented to this or we are required or authorised to do so by law;
- debt collection agencies; and/or
- any other third parties identified at the time of collection of your Personal Information.
DISCLOSURE OF PERSONAL INFORMATION OVERSEAS
Some of the third parties listed above to whom we may disclose your Personal Information are located overseas. For example:
- companies within the CBRE group that are located in the countries listed on our website at www.cbre.com/EN/services/Pages/Overview.aspx;
- our information technology and business process service providers that are located in countries including (but not limited to) the United States, United Kingdom, Spain, the Netherlands, India and Hong Kong; and
- our overseas clients that are located in the same countries as the companies within the CBRE group.
However you acknowledge that, by agreeing to the disclosure of your Personal Information to these entities outside of Australia, we will no longer be required to take reasonable steps to ensure the overseas recipient’s compliance with the Australian privacy law in relation to your Personal Information and we will not be liable to you for any breach of the Australian privacy law by these overseas recipients. On this basis, you consent to such disclosure.
ACCESS, UPDATE AND CORRECTION OF PERSONAL INFORMATION
We take reasonable steps to ensure that the Personal Information we hold about you is accurate, complete and up-to-date. However, we also rely on you to advise us of any changes to your Personal Information. If you are able to access your Personal Information by logging on to an account you have with us, it is your responsibility to ensure your information is accurate, complete, relevant and up-to-date.
On request we will provide you with access to the Personal Information we hold about you, including for the purpose of correcting or updating that information, unless otherwise required or permitted by law.
There is no charge for making the request or giving the access to your Personal Information. We will deal with your request within a reasonable period after the request is made.
If we refuse to provide you with access we will provide you with a written notice that, at a minimum, outlines reasons for the refusal and the complaints mechanisms available to you.
If you wish to access the Personal Information we hold about you or to update or correct it, you can either do so by logging on to your account (if you have one) or contact us using the contact details provided below. We will require you to verify your identity and specify what information you require.
SECURITY OF PERSONAL INFORMATION
We take reasonable steps to protect any Personal Information that we hold from misuse, interference and loss and from unauthorised access, alteration and disclosure. For example, we implement IT security procedures including password protection, firewalls and site monitoring and we store your Personal Information on a secure server.
However, data protection measures are never completely secure and, despite the measures we have put in place, we cannot guarantee the security of your Personal Information. You must take care to protect your Personal Information (for example, by protecting any usernames and passwords). You should notify us as soon as possible if you become aware of any security breaches.
When you register as a member on our websites, you will be given a choice as to whether you want to receive e-mail messages from us, including newsletters, announcements and e-mail communications about our latest news, products or services. To the extent the relevant local law requires us to seek your consent, we will only send such messages to you if you opt-in.
If you do not wish to receive direct marketing calls or materials, you may use the unsubscribe facility in the marketing communication or contact our Chief Privacy Officer using the channels prescribed below. Further, as a registered member with us, you can modify your choice at any time by accessing your registered account with us. We will stop using your Personal Information for direct marketing if you so request.
PRIVACY ON OUR WEBSITES
WHAT IF YOU HAVE A COMPLAINT?
Our Chief Privacy Officer will investigate the issue and determine the steps that we will undertake to resolve your complaint. We will contact you if we require any additional information from you and will notify you in writing of the outcome of the investigation.
If you are not satisfied with our determination, you can contact us to discuss your concerns or contact the Australian Privacy Commissioner via www.oaic.gov.au.
PRIVACY & SITE CHANGES
OUR CONTACT DETAILS
CBRE Pty Limited
Chief Privacy Officer
363 George St
Sydney NSW 2000
For more information about the Privacy Act in Australia and protecting your privacy, visit the www.privacy.gov.au (external link) website.
CBRE uses Swift Digital, an online marketing platform service provider to send and manage emails. In using this service, the company may collect personal information which may contain email addresses and other information to be used for the distribution of email campaigns and other important information.
All information collected using the Swift Digital service is the property of CBRE and is never shared or used by third parties.
Swift Digital maintains your data in compliance with Australia’s SPAM ACT 2003 and Australian Privacy Provisions.
All data is maintained within Australia and never leaves Australian jurisdiction. Where stipulated data is encrypted in transit using SSL connections. All data stored via Swift Digital is encrypted at rest.
Should you wish to contact Swift Digital, you can find contact details on the website.