top of page
Privacy Policy

Introduction

BPOpower (“Company”, “we”, “us”, or “our”) is committed to protecting the privacy, confidentiality, and security of personal data entrusted to us.
 

We provide Business Process Outsourcing (BPO) services to companies, including but not limited to accounting support, administrative support, reporting, and related professional services.
 

This Privacy Policy explains how we collect, use, disclose, and safeguard personal data when:

  • You visit our website;

  • You engage with us as a client;

  • You interact with us as a prospective client, partner, vendor, or employee candidate;

  • We process personal data on behalf of our clients in the course of delivering BPO services.


We process personal data in accordance with applicable data protection laws, including the EU General Data Protection Regulation (GDPR), relevant EU Member State laws, and applicable U.S. privacy regulations.

Categories of Personal Data We Collect

We may collect and process the following categories of personal data:
 

Information You Provide Directly

  • Name, job title, company name

  • Email address, phone number

  • Business contact details

  • Information submitted through contact forms

  • Contractual and billing information

  • CVs and recruitment information (where applicable)

Information Collected Automatically
 

When you visit our website, we may collect:

  • IP address

  • Browser type and version

  • Device type

  • Operating system

  • Pages visited and time spent

  • Referring URLs

  • Cookie and tracking data

Client Data Processed on Behalf of Clients

In providing BPO services, we may process personal data on behalf of our clients, including:

  • Employee payroll data

  • Financial and accounting records

  • Vendor and customer information

  • Tax-related information

  • Transactional data

 

In such cases, we act as a data processor, and the client remains the data controller.

Legal Bases for Processing (GDPR)

Where GDPR applies, we rely on one or more of the following legal bases:

  • Performance of a contract

  • Compliance with legal obligations

  • Legitimate interests (e.g., business operations, security, service improvement)

  • Consent (e.g., marketing communications, cookies)

Purpose of Processing

We process personal data for the following purposes:

  • Delivering BPO and professional services

  • Managing client relationships

  • Contract administration and billing

  • Regulatory and legal compliance

  • Recruitment and HR processes

  • Website administration and improvement

  • Marketing and business development (where permitted by law)

  • Protecting our legal rights and preventing fraud

 

We do not sell personal data.

Data Sharing and Disclosure

We may share personal data with:

  • Authorized employees and contractors bound by confidentiality obligations

  • IT service providers and cloud hosting providers

  • Professional advisers (lawyers, auditors, insurers)

  • Regulatory authorities where required by law

  • Subprocessors engaged under written agreements

All third parties are subject to appropriate confidentiality and data protection obligations.

International Data Transfers

As we serve clients in different countries, personal data may be transferred across borders.

Where personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs)

  • Data Processing Agreements (DPAs)

  • Transfers to countries with adequacy decisions

  • Additional technical and organizational measures

Data Security

We implement appropriate technical and organizational measures to protect personal data, including:

  • Access controls and role-based permissions

  • Encryption in transit and at rest

  • Secure cloud infrastructure

  • Confidentiality agreements

  • Regular security reviews

  • Secure data retention and disposal procedures

As a professional services provider, confidentiality and data integrity are core principles of our operations.

Data Retention

We retain personal data only for as long as necessary to:

  • Fulfill contractual obligations

  • Comply with legal and regulatory requirements

  • Resolve disputes

  • Enforce agreements

Retention periods are determined based on legal, contractual, and operational requirements.

Your Rights

Where applicable under GDPR and other data protection laws, you have the right to:

  • Access your personal data

  • Rectify inaccurate data

  • Erase personal data (right to be forgotten)

  • Restrict processing

  • Object to processing

  • Data portability

  • Withdraw consent (where applicable)

  • Lodge a complaint with a supervisory authority

If we process personal data on behalf of a client, requests should generally be directed to the relevant client (data controller).

Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Ensure website functionality

  • Analyze website performance

  • Improve user experience

You may manage cookie preferences through your browser settings.

Confidentiality and Professional Standards

As a provider of accounting and BPO services, we adhere to strict professional confidentiality standards. All personnel are bound by confidentiality obligations and professional ethics requirements.

Client data is processed strictly for the purpose of delivering agreed services and in accordance with contractual agreements.

bottom of page