Privacy Policy for BIL Internal Mobile Application
Disclaimer: A recipient may not solicit, directly or indirectly (whether through an agent or otherwise) the participation of another institution or person without prior approval. Any form of reproduction, dissemination, copying, disclosure, modification, distribution and or publication of this material is strictly prohibited.
Table of Contents
- Document Control
- 1. Purpose
- 2. Scope
- 3. Data We Collect
- 4. Purpose of Collection
- 5. Data Storage and Retention
- 6. Data Sharing and Disclosure
- 7. Data Protection Measures
- 8. User Rights
- 9. Changes to This Policy
Document Control
| Current version | Ver. 1.0 |
|---|
| Prepared by / date | Passang Waiba, June 06, 2025 |
|---|
| Reviewed by / date | Technical Committee, June 09, 2025 |
|---|
| Approved by / date | Management, July 21, 2025 |
|---|
| Applies to | BIL Internal Mobile Application |
|---|
| Effective Date | July 21, 2025 |
|---|
| Document Status | Active |
|---|
1. Purpose
This Privacy Policy describes how Bhutan Insurance Limited ("BIL", "we", "us", or "our") collects, uses, discloses, and protects personal information when you use the internal BIL Mobile App ("the App"). The App is restricted for use by authorized BIL employees only.
2. Scope
This policy applies to all data collected or processed by the App in connection with Bhutan Insurance Limited’s employee authentication, workflow management (leave, tour, training), and associated ERP functionalities.
3. Data We Collect
The App does not collect any personal information directly, but it accesses and transmits data securely from the BIL’s internal ERP system. When you use the App, we may process the following categories of personal information:
- Employee ID or Username (ERP login)
- Role and Department
- Leave, tour, and training application details
- Approval or rejection status by Heads and HR/ADM Department
- Device IP address and basic metadata for security audit purposes
4. Purpose of Collection
- To authenticate users via BIL ERP
- To allow staff to submit and track leave, tour, and training requests
- To enable Department Heads and HR/ADM to review, approve, and manage employee workflows
- To maintain logs for internal audit, accountability, and IT support
- To enhance user experience and improve internal workflow & service efficiency
5. Data Storage and Retention
- All data is stored in secure, access-controlled servers managed by BIL
- Data is retained only as long as necessary for operational and regulatory requirements
- Logs are routinely purged in accordance with BIL’s data retention policy
6. Data Sharing and Disclosure
We do not sell or disclose personal information to third parties. Internal access is:
- Role-based and limited to authorized employees, HR, Managers, and IT administrators
- Logged and monitored for security and compliance
7. Data Protection Measures
- Encryption of data in transit and at rest
- Secure API authentication with ERP
- Regular system audits and vulnerability assessments
- User access reviews and permissions audits
8. User Rights
Subject to internal policy and applicable laws, users have the right to:
- Access their personal information processed via the App
- Correct inaccurate or outdated information
- Raise concerns about misuse or data protection violations
All requests can be submitted to: 📧 jatshobil@gmail.com | 📞 +975-17688382 | 📍 BIL Head Office, Thimphu
9. Changes to This Policy
We may update this Privacy Policy from time to time. Any material changes will be communicated via internal email or notification in the App.
Version History
| Ver. No. |
Year |
Particulars of Changes |
Prepared By / date |
Reviewed By / date |
Approved By / date |
| 1.0 |
2025 |
Developed initial Privacy Policy for eBIL Application |
Passang Waiba, 6th June, 2025 |
Technical committee, 9th June, 2025 |
Management, 21st June, 2025 |