The term "personal information" as used in this Policy shall mean any information that enables us to identify you, directly or indirectly, by reference to an identifier such as your name, identification number, location data, online identifier or one or more factors specific to you.
General Atomics is made up of different legal entities. This Policy is issued on behalf of the group so when we mention "GA", "we", "us" or "our" in this Policy, we are referring to the relevant company in our group responsible for your information. For the purposes of the EU General Data Protection Regulation 2016/679 (the "GDPR") and the UK Data Protection Act 2018, the entity with which you enter a contract or otherwise share your personal information will be the controller.
If you are visiting our Websites or accessing our products and services from outside the U.S., be aware that your personal information may be transferred to, stored, and processed in the United States. Where required by applicable law, personal information may be stored locally before onward transfer.
If you have any questions or concerns regarding this Policy, or wish to exercise any of your data protection rights and choices, please go to our Websites or contact us at:
We may collect the following personal information that you choose to provide voluntarily when you access our Websites, comment on blog posts, complete forms, make a call to us, correspond with us by e-mail or otherwise, and when you use our services:
If you apply for work with us, we may collect, store, and use categories of personal information including the following that you have provided to us in your curriculum vitae, a covering letter, on an application form or during an interview, or that we have received from a recruitment agency, reference, or background check provider:
The amount and type of information that we gather depends on the nature of the interaction.
Like most website operators, we collect "internet or other similar network activity" indirectly from you when you access our Websites or otherwise correspond with us, including the sort of information that web browsers and servers typically make available, such as your IP address, browsing or search history, website interactions, the browser type and version, time zone setting, operating system and platform, page interaction information, language preference, referring site, and the date and time of each visitor request. We may also collect "general location information" through your IP address.
We collect internet or other similar network activity to better understand how visitors use our Websites. From time to time, we may release internet or other similar network activity in the aggregate (i.e. in a form that will not personally identify you), e.g., by publishing a report on trends in the usage of our Websites.
We will use your personal information so that we can provide services to you, and only where we have a legal ground for doing so under applicable data protection law. The legal ground will depend on the purpose for which we process your personal information.
We use your identifiers, commercial information, audio and video recordings, and financial and transaction data as is necessary for the performance of a contract between you and us or to answer questions or take steps at your request prior to entering into a contract, including in the following ways:
We use your identifiers, commercial information, audio and video recordings, financial and transaction data, and internet or other similar network activity as necessary for certain legitimate interests, or where you have given your consent to such processing as required by applicable law (such consent can be withdrawn at any time), including in the following ways:
If you have applied for work with us, we will use your identifiers, professional or employment-related information, non-public education information, sensitive personal information, electronic network activity information, and protected classification information as necessary in our legitimate interests, and to decide whether to enter into a contract relationship with you, including in the following ways:
We may use your protected classification information and sensitive personal information including in the following ways:
We process your personal information for as long as necessary. This means that we do keep a record of your personal information for as long as it is required or justified by the law or by another legal obligation, or for a specific period consented to by you (where relevant), or for the period for which this would be necessary for the aforementioned purposes.
At the end of the retention period, we will use appropriate measures to delete or anonymize your personal information. To the extent that we hold hard copies of your personal information, such records, print-outs or hard copy documents etc. will be permanently destroyed.
We work closely with a number of trusted third parties with whom we need to share personal information to help us provide our services. These include:
We may also disclose your personal information to third parties:
We may also share your personal information (including identifiers, professional or employment-related information, non-public education information) for the purposes of processing your application for employment with search consultancies, background screening providers and our affiliated group companies.
Where we transfer UK and European Economic Area ("EEA") personal information to a third party located in a country not recognized by the European Commission, or another relevant body, as ensuring an adequate level of protection, we will take appropriate steps, such as implementing Standard Contractual Clauses recognized by the EU Commission or UK Government, to safeguard such personal information.
If you want further information on the specific mechanism used by us when transferring your personal information out of the UK or the EEA, please contact us using the contact details set out above.
The security of your personal information is important to us. We use reasonable technical, administrative and physical measures to protect information contained in our system against unauthorized access, destruction, misuse, loss or alteration. We may use standard encryption technology to protect information being transferred to our site, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure and we cannot guarantee its absolute security.
We have no control over, and assume no responsibility for, the content of, privacy policies, or practices of any third party sites, products or services.
Subject to applicable law, if you are a registered user of our Websites and have supplied your email address, we may occasionally send you an email to tell you about new features, solicit your feedback, or just keep you up to date with what's going on with us and our products. You may unsubscribe from these communications at any time by clicking the "unsubscribe" link at the bottom of those emails you receive. We primarily use our blog to communicate this type of information, so we expect to keep this type of email to a minimum. If you send us a request (for example via a support email or via one of our feedback mechanisms), we reserve the right to publish it (without publishing your name, email address or any other information that would personally identify you) in order to help us clarify or respond to your request or to help us support other users. We take all measures reasonably necessary to protect against the unauthorized access, use, alteration or destruction of personally-identifying and potentially personally-identifying information.
Please note that even if you opt-out of receiving marketing emails, you may still receive communications regarding products or services bought from us.
To enrich your online experience, we may use "Cookies", similar technologies and services provided by others e.g. to display personalized content and store your preferences on your computer.
We may allow selected third parties to place cookies through the Website to provide us with better insights into the use of the Website or user demographics or to provide relevant advertising to you. These third parties may collect information about a consumer's online activities over time and across different websites when he or she uses our Website. We may also permit third party service providers to place cookies through our Website to perform analytic or marketing functions where you are notified of them and you have consented to the usage. We do not control the use of such third party cookies or the resulting information and we are not responsible for any actions or policies of such third parties.
For more information about our practices in this area, please see our Cookie Notice.
We support "do not track" signals ("DNT"). If you have DNT enabled in your web browser, we will not receive browser-related information from our advertising partners for tailoring advertisements.
If you are based in the UK or the EEA, under certain circumstances you may have the following rights:
You can exercise any of these rights by contacting us using the contact details set out above.
Also, where you believe that we have not complied with our obligations under this Policy or data protection law, you have the right to make a complaint to a Data Protection Authority.
You will not have to pay a fee to access your personal information (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal information (or to exercise any of your other rights). This is a security measure to ensure that personal information is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
We aim to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
Your California Privacy Rights
We may share your Personal Data with third parties for their use to market their products or services to you only when we have your consent. You may withdraw your consent at any time by contacting us at using the Contact Us page or at DataPrivacy@ga.com.
California Privacy Rights Act
The California Privacy Rights Act ("CPRA") provides certain verified California residents with the right to receive disclosure of our information collection and disclosure practices, the specific information collected about them, to request that we correct information we hold, to make requests that we do not sell information or do not share personal information for cross-context or behavioral marketing purposes, to request that we limit processing of sensitive personal information to the purposes for which it was originally provided, or that we delete information subject to certain exceptions. For details on how to exercise these rights, please see below. We will not discriminate against you as a result of your exercise of any of these rights.
California employees (current, former or applicants) can learn about our information collection and disclosure practices and exercise their CPRA rights by contacting our human resources compliance group.
For purposes of the CPRA personal information means information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly with, a particular California resident or household.
During the past 12 months we may have collected the following categories of personal information from the sources and for the purposes identified. Not all information is collected from everyone who interacts with us. This list excludes information collected about employees in the context of the employment relationship.
We may have disclosed certain sensitive personal information in connection with the operation of our business. This includes disclosing social security or tax payer identification numbers of employees, contractors or service providers to our third party accounting and professional service providers and taxing authorities and, with respect to employees, to benefits providers; disclosing financial account information to service providers such as payment processors and payroll services for purposes of processing payments and payroll; disclosing racial or ethnic origin, religious or philosophical beliefs, or union membership to our third party staffing and professional providers and, when required by law, to government regulators to establish that we do not engage in discriminatory practices; disclosing health information to benefits providers or government agencies to comply with state, federal or local health requirements; and disclosing biometric information to services providers for purposes of identity verification and security. We may have disclosed information in the other foregoing categories of information with our affiliated group companies, service providers, marketing partners and other third parties including governmental authorities and law enforcement for our business purposes including for decision making, reporting, management, improving our Websites and services, analytics and marketing assistance, professional services, security, quality control, research and development, and legal compliance.
Personal information sales; opt-out and opt-in rights
We do not sell your information for monetary consideration but we may transfer your information to a third party that provides us with services such as helping us with advertising, data analysis, and security, which may fall under the definition of for "other valuable consideration" and which may therefore be considered a "sale" under the CPRA. During the past 12 months we may have disclosed identifiers, electronic network or internet activity, or commercial information for a business purpose which falls within the definition of a "sale". We do not sell the personal information of individuals we actually know are less than eighteen (18) years of age. Please see below for opting out of having your information sold.
Sharing personal information; opt-out rights
We do not share your personal information with third parties who may use it for cross-context or behavioral marketing purposes. Please see below for opting out of having your information sold.
Processing sensitive personal information
We collect and process sensitive personal information for the purposes disclosed at the time we collect this information. We do not process this information for purposes other than the purpose for which it was originally collected unless required by law.
Exercising your rights
Disclosure, Access, Correction, Deletion, Data Portability. You can seek to exercise your rights to receive disclosure about our information practices, to request correction or deletion of information or to request the specific information collected about you by calling us toll-free at +1 (888) 501-0335 or emailing us at DataPrivacy@ga.com. We will acknowledge receipt of your request within 10 days and will endeavor to respond within forty-five days of receipt of your request, but if we require more time (up to an additional forty-five days) we will notify you of our need for additional time. We will ask you for information that allows us to reasonably verify your identity (that you are the person about whom we collected personal information) by matching it against information in our records and will use that information only for that purpose. We may request that you submit a signed statement that you are the individual you claim to be if you request disclosure of specific information or deletion. We cannot respond to your request or provide you with personal information if we cannot verify your identity and confirm that the personal information relates to you.
You may make a request for disclosure of our Information Collection or Disclosure Practices or the specific information we collected about you up to twice within a 12-month period. You may make other requests at any time.
Opting Out: To seek to exercise the right to opt-out of having your information sold or shared, you (or your authorized representative) may submit a request to us by visiting the following page: "Do Not Sell or Share My Info". We will process your request as soon as feasible and at least within fifteen (15) business days.
You may also opt out by activating a user-enabled global privacy control, such as a browser plug-in or privacy setting, device setting, or other mechanism, that communicates or signals your choice to opt-out of the sale and sharing of personal information. When we receive such a signal we will stop setting third party cookies or third party tracking tags on your browser. This will prevent the sale or sharing of information relating to that specific device through cookies to our advertising or analytics partners. This option does not stop all sales or sharing of your information because we cannot match your device's identification or internet protocol address with your personally identifiable information like your name, phone number, email address or ZIP Code. If you delete cookies on your browser, any prior do not sell or do not share signal directed to our website is also deleted and you should make sure that your user-enabled setting is always activated.
Once you make an opt-out request, we will wait at least twelve (12) months before asking you to reauthorize personal information sales.
Using an authorized agent
You may submit a request through someone holding a formal, notarized Power of Attorney. Otherwise, you may submit a request using an authorized agent only if (1) the person is registered with the Secretary of State to do business in California, (2) you provide the authorized agent with signed written permission to make a request, (3) you verify directly with us that you have authorized the person to make the request on your behalf, (4) you verify your own identity directly with us; and (5) your agent provides us with proof that they are so authorized.
We do not transfer Personal Data for monetary consideration. Nevertheless, if you would like to inform us not to sell your information in the future, please email us at DataPrivacy@ga.com with your name, postal address, telephone number and email address with "Nevada do not sell" in the subject line.
VERSION DATE: January 1, 2023