Privacy Policy

Effective as of January 16, 2023.

This Privacy Policy describes the privacy practices of Wafra Inc. and our subsidiaries or affiliates (collectively, “Wafra,” “we”, “us” or “our”), and how we handle personal information that we collect through our digital properties that link to this Privacy Policy, including our website and other activities described in this Privacy Policy (the “Service”).

Wafra provides investment advice – from strategic partnerships to consulting services – to asset owners around the world such as institutional investors. This Privacy Policy does not apply to information that we process on behalf of such institutions while providing Wafra services to them. Our use of this information is restricted by our agreements with those institutional investors. If you have concerns regarding personal information that we process on behalf of an institutional investor, please direct your concerns to the relevant Wafra institutional investor.

Our websites, products, and services are designed for institutional investors and their representatives. We do not offer products or services for use by individuals for their personal, family or household purposes. Accordingly, we treat all personal information we collect through the Service as pertaining to individuals in their capacities as business representatives and not their individual capacities.

Personal information we collect

Information you provide to us. Personal information you may provide to us through the Service or otherwise includes:

  • Contact data, such as your first and last name, salutation, email address, mailing address, professional title and company name, and phone number.
  • Account data, such as the username and password that you may set to establish an online account on the Service and any other information that you add to your account profile.
  • Communications data that we exchange with you, including when you contact us through the Service or otherwise.
  • Marketing data, such as your preferences for receiving our marketing communications and details about your engagement with them.
  • Government-issued identification numbers, such as national identification number (e.g., Social Security Number, tax identification number, passport number), state or local identification number (e.g., driver’s license or state ID number), and an image of the relevant identification card.
  • Payment information needed to complete transactions, including payment card information or bank account number.
  • Job application data, such as professional credentials and skills, educational and work history, LinkedIn profile page, personal website, authorization to work in the U.S., immigration status, criminal history, and other information that may be included on a resume or curriculum vitae as well as in a cover letter. This may also include diversity information that you voluntarily provide.
  • Other data not specifically listed here, which we will use as described in this Privacy Policy or as otherwise disclosed at the time of collection.

Third-party sources. We may combine personal information we receive from you with personal information we obtain from other sources, such as:

  • Public sources, such as government agencies, public records, and other publicly available sources.
  • Private sources, such as social media platforms, data providers (including data licensors) and other similar sources.
  • Marketing partners, such as joint marketing partners and event co-sponsors.

Automatic data collection. We, our service providers, and our business partners may automatically log information about you, your computer or mobile device, and your interaction over time with the Service, our communications and other online services, such as:

  • Device data, such as your computer’s or mobile device’s operating system type and version, manufacturer and model, browser type, screen resolution, RAM and disk size, CPU usage, device type (e.g., phone, tablet), IP address, unique identifiers (including identifiers used for advertising purposes), language settings, mobile device carrier, radio/network information (e.g., Wi-Fi, LTE, 3G), and general location information such as city, state or geographic area.
  • Online activity data, such as pages or screens you viewed, how long you spent on a page or screen, the website you visited before browsing to the Service, navigation paths between pages or screens, information about your activity on a page or screen, access times and duration of access, and whether you have opened our marketing emails or clicked links within them.
  • Location data when you authorize the Service to access your device’s location.

Cookies and similar technologies. Like many online services, we use the following technologies:

  • Cookies, which are small text files that websites store on user devices and that allow web servers to record users’ web browsing activities and remember their submissions, preferences, and login status as they navigate a site. Cookies used on our sites include both “session cookies” that are deleted when a session ends, “persistent cookies” that remain longer, “first party” cookies that we place and “third party” cookies that our third-party business partners and service providers place.
  • Local storage technologies, like HTML5 and Flash, that provide cookie-equivalent functionality but can store larger amounts of data, including on your device outside of your browser in connection with specific applications.
  • Web beacons, also known as pixel tags or clear GIFs, which are used to demonstrate that a webpage or email address was accessed or opened, or that certain content was viewed or clicked.

Cookies. Some of our automatic data collection is facilitated by cookies and similar technologies. For more information, see our Cookie Notice.

How we use your personal information

We may use your personal information for the following purposes or as otherwise described at the time of collection:

Service delivery. We may use your personal information to:

  • provide, operate and improve the Service and our business;
  • communicate with you about the Service, including by sending announcements, updates, security alerts, and support and administrative messages;
  • understand your needs and interests, and personalize your experience with the Service and our communications; and
  • provide support for the Service, and respond to your requests, questions and feedback.

Research and development. We may use your personal information for research and development purposes, including to analyze and improve the Service and our business. As part of these activities, we may create aggregated, de-identified or other anonymous data from personal information we collect. We make personal information into anonymous data by removing information that makes the data personally identifiable to you. We may use this anonymous data and share it with third parties for our lawful business purposes, including to analyze and improve the Service and promote our business.

Direct marketing. We may send you marketing communications related to the Service or other direct marketing communications as permitted by law. You may opt-out of our marketing communications as described in the Opt-out of marketing section below.

To manage our recruiting and process employment applications. We may use your personal information, such as information submitted to us in a job application, to facilitate our recruitment activities and process employment applications, such as by evaluating a job candidate for an employment activity, and monitoring recruitment statistics.

Compliance and protection. We may use your personal information to:

  • comply with applicable laws, lawful requests, and legal process, such as to respond to subpoenas or requests from government authorities;
  • protect our, your or others’ rights, privacy, safety or property (including by making and defending legal claims);
  • audit our internal processes for compliance with legal and contractual requirements or our internal policies;
  • enforce the terms and conditions that govern the Service; and
  • prevent, identify, investigate and deter fraudulent, harmful, unauthorized, unethical or illegal activity, including cyberattacks and identity theft.

With your consent. In some cases, we may specifically ask for your consent to collect, use or share your personal information, such as when required by law.

How we share your personal information

We may share your personal information with the following parties and as otherwise described in this Privacy Policy or at the time of collection.

Affiliates. Our corporate parent, subsidiaries, and affiliates, for purposes consistent with this Privacy Policy.

Service providers. Third parties (such as companies and individuals) that provide services on our behalf or help us operate the Service or our business (such as hosting, information technology, customer support, email delivery, marketing, customer relationship management systems, and website analytics).

Professional advisors. Professional advisors, such as lawyers, auditors, bankers and insurers, where necessary in the course of the professional services that they render to us.

Authorities and others. Law enforcement, government authorities, and private parties, as we believe in good faith to be necessary or appropriate for the compliance and protection purposes described above.

Business transferees. Acquirers and other relevant participants in business transactions (or negotiations and due diligence for such transactions) involving a corporate divestiture, merger, consolidation, acquisition, reorganization, sale or other disposition of all or any portion of the business or assets of, or equity interests in, Wafra or our affiliates (including, in connection with a bankruptcy or similar proceedings).

Your choices

You have the following choices with respect to your personal information.

Access or update your information. If you have registered for an account with us through the Service, you may review and update certain account information by logging into the account.

Opt-out of marketing communications. You may opt-out of marketing-related emails by following the opt-out or unsubscribe instructions at the bottom of the email, or by contacting us. Please note that if you choose to opt-out of marketing-related emails, you may continue to receive service-related and other non-marketing emails.

Cookies. For information about cookies employed by the Service and how to control them, see our Cookie Notice.

Do Not Track. Some Internet browsers may be configured to send “Do Not Track” signals to the online services that you visit. We currently do not respond to “Do Not Track” or similar signals. To find out more about “Do Not Track,” please visit http://www.allaboutdnt.com.

Declining to provide information. We need to collect personal information to provide certain services. If you do not provide the information we identify as required or mandatory, we may not be able to provide those services.

Delete data or close your account. You can choose to delete certain profile data in your account or you can request to close your account by contacting us.

Other sites and services

The Service may contain links to websites, mobile applications, and other online services operated by third parties. In addition, our content may be integrated into web pages or other online services that are not associated with us. These links and integrations are not an endorsement of, or representation that we are affiliated with, any third party. We do not control websites, mobile applications or online services operated by third parties, and we are not responsible for their actions. We encourage you to read the privacy policies of the other websites and mobile applications and online services you use.

Security

We employ a number of technical, organizational and physical safeguards designed to protect the personal information we collect. However, security risk is inherent in all internet and information technologies and we cannot guarantee the security of your personal information.

International data transfer

We are headquartered in the United States and may use service providers that operate in other countries. Your personal information may be transferred to the United States or other locations where privacy laws may not be as protective as those in your state, province, or country.

Children

The Service is not intended for use by anyone under 18 years of age. If you are a parent or guardian of a child from whom you believe we have collected personal information in a manner prohibited by law, please contact us. If we learn that we have collected personal information through the Service from a child without the consent of the child’s parent or guardian as required by law, we will comply with applicable legal requirements to delete the information.

Changes to this Privacy Policy

We reserve the right to modify this Privacy Policy at any time. If we make material changes to this Privacy Policy, we will notify you by updating the date of this Privacy Policy and posting it on the Service or other appropriate means. Any modifications to this Privacy Policy will be effective upon our posting the modified version (or as otherwise indicated at the time of posting). In all cases, your use of the Service after the effective date of any modified Privacy Policy indicates your acceptance of the modified Privacy Policy.

How to contact us

  • Email: [email protected]
  • Phone: (212) 759-3700
  • Address: 345 Park Avenue, 345 Park Ave 41st Floor, New York, NY 10154

Notice to European Users

The information provided in this “Notice to European users” section applies only to individuals in the United Kingdom, Switzerland, and the European Economic Area (hereafter collectively referred to as “Europe”).

Personal information. References to “personal information” in this Privacy Policy are equivalent to “personal data” governed by European data protection legislation. Essentially, it boils down to information about an individual, from which that individual is either directly identified or can be identified. It does not include ‘anonymous data’ (i.e., information where the identity of individual has been permanently removed).

Controller. Wafra is the controller of your personal information covered by this Privacy Policy for purposes of European data protection legislation. See the Contact Us section above for contact details.

Legal bases for processing. We use your personal information only as permitted by law for the purposes for which we collected it, as listed below. In respect of each of the purposes for which we use your personal information, the European data protection legislation requires us to ensure we have one of the following “legal basis”:

  • Where we need to perform a contract that we are about to enter into, or have entered into, with you (“Contractual Necessity”).
  • Where it is necessary for our legitimate interests and your interests and fundamental rights do not override those interests (“Legitimate Interests”). More detail about the specific legitimate interests pursued in respect of each Purpose we use your personal information for is set out in the table below.
  • Where we need to comply with a legal or regulatory obligation (“Compliance with Law”).
  • Where we have your specific consent to carry out the processing for the Purpose in question (“Consent”). Generally, we do not rely on your Consent as a legal basis for using your personal information other than in the context of direct marketing communications.

Our legal bases for processing the personal information described in this Privacy Policy are described in the table below.

PurposeCategory(ies) of personal information involvedWhy do we do thisOur legal basis for this use of data
Service delivery– Identity information

– Contact information

– Communications data

– Account data

– Other data
– To operate, maintain, administer and improve the Site

– To better understand your needs and interests, and personalize your
experience with the Site

– To respond to your service-related requests, questions and feedback
– Contractual necessity

– Legitimate Interests

We have a legitimate interest in providing you a good Service, with updates on our Sites and related offers where you have purchased or shown interest in similar services from us
Compliance and protection– Contact data

– Government-issued identification numbers
– To keep our website, our services and associated systems operational and secure

– To enforce the terms and conditions that govern the Site
– Legitimate Interests

We have a legitimate interest in ensuring the ongoing security and proper operation of our services, website and associated IT services and networks
Troubleshooting– Account data

– Contact data

– Communications data
– To track issues that might be occurring on our systems, provide support and maintenance for the Site

– To manage and communicate with you regarding your relationship with us, if you have one, including by sending you service announcements, technical notices, updates, security alerts, and support and administrative messages
– Legitimate

Interests
It is in our legitimate interests that we can monitor and ensure the proper operation of our Sites and associated systems and services
Direct marketing– Contact data

– Marketing data

– Account data

– Usage information

– Online activity data
– To form a view on what we think you may want or need, or what may be of interest to you. You will have the ability to opt out of such communications. If you have consented to receive marketing communications from our third-party partners, you may withdraw your consent by contacting those partners directly.– Consent
To manage our recruiting and process employment applications– Contact data

– Job application data
– To manage our recruiting and process employment applications

– To facilitate our recruitment activities and process employment applications, such as by evaluating a job candidate for an employment activity, and monitoring recruitment statistics
– Legitimate Interests

We have a legitimate interest in considering your job application

Use for new purposes. We may use your personal information for reasons not described in this Privacy Policy where permitted by law and the reason is compatible with the purpose for which we collected it. If we need to use your personal information for an unrelated purpose, we will notify you and explain the applicable legal basis.

Sensitive personal information. We ask that you not provide us with any sensitive personal information (e.g., information related to racial or ethnic origin, political opinions, religion or other beliefs, health, biometrics or genetic characteristics, criminal background or trade union membership) on or through the Service, or otherwise to us. If you provide us with any sensitive personal information to us when you use the Service, you must consent to our processing and use of such sensitive personal information in accordance with this Privacy Policy. If you do not consent to our processing and use of such sensitive personal information, you must not submit such sensitive personal information through our Service.

Retention. We retain personal information for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements, to establish or defend legal claims, or for fraud prevention purposes.

To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of your personal information, the purposes for which we process your personal information and whether we can achieve those purposes through other means, and the applicable legal requirements.

When we no longer require the personal information we have collected about you, we will either delete or anonymize it or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible. If we anonymize your personal information (so that it can no longer be associated with you), we may use this information indefinitely without further notice to you.

Your rights. European data protection laws give you certain rights regarding your personal information. If you are located within the European Union, you may ask us to take the following actions in relation to your personal information that we hold:

  • Access. Provide you with information about our processing of your personal information and give you access to your personal information.
  • Correct. Update or correct inaccuracies in your personal information.
  • Delete. Delete your personal information.
  • Data portability. Transfer a machine-readable copy of your personal information to you or a third party of your choice.
  • Restrict. Restrict the processing of your personal information.
  • Object. Object to our reliance on our legitimate interests as the basis of our processing of your personal information that impacts your rights.

You may submit these requests by email to [email protected]. We may request specific information from you to help us confirm your identity and process your request. Applicable law may require or permit us to decline your request. If we decline your request, we will tell you why, subject to legal restrictions. If you would like to submit a complaint about our use of your personal information or our response to your requests regarding your personal information, you may contact us or submit a complaint to the data protection regulator in your jurisdiction. If you are based in Europe, you can find your data protection regulator here. If you are based in the UK, you can make a complaint directly to the Information Commissioner’s Office.

Cross-Border Data Transfer. If we transfer your personal information out of Europe or the UK to a country, like the United States of America, that it is not considered by the European Commission, and the UK Government respectively, to offer an equivalent level of protection of privacy to the one applicable in the EEA and the UK, the transfer will be performed:

  • Pursuant to the recipient’s compliance with standard contractual clauses, or Binding Corporate Rules
  • Pursuant to the consent of the individual to whom the personal information pertains
  • As otherwise permitted by applicable European requirements.

You may contact us if you want further information on the specific mechanism used by us when transferring your personal information out of Europe.

Cookie Policy

This Cookie Policy explains how Wafra Inc. (“Wafra”, “we”, “us” or “our”) uses cookies and similar technologies in connection with the https://www.wafra.com/ website and any other website that we own or control and which posts or links to this Cookie Policy (collectively, the “Sites”)

What are cookies?

Cookies are small data files that are placed on your computer or mobile device when you visit a website. Cookies serve different purposes, like helping us understand how a site is being used, letting you navigate between pages efficiently, remembering your preferences, and generally improving your browsing experience.

Our Sites may use both session cookies (which expire once you close your web browser) and persistent cookies (which stay on your computer or mobile device until you delete them).

We use two broad categories of cookies: (1) first party cookies, served directly by us to your computer or mobile device, which we use to recognize your computer or mobile device when it revisits our Sites; and (2) third-party cookies, which are served by service providers or business partners on our Sites, and can be used by these parties to recognize your computer or mobile device when it visits other websites. Third-party cookies can be used for a variety of purposes, including site analytics, advertising, and social media features.

What types of cookies and similar tracking technologies does Wafra use on the Sites?

On the Sites, we use cookies and other tracking technologies in the following categories described in the table below.

This website uses cookies. We use cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners who may combine it with other information that you’ve provided to them or that they’ve collected from your use of their services.

Cookies are small text files that can be used by websites to make a user’s experience more efficient.

The law states that we can store cookies on your device if they are strictly necessary for the operation of this site. For all other types of cookies we need your permission.

This site uses different types of cookies. Some cookies are placed by third party services that appear on our pages.

You can at any time change or withdraw your consent from the Cookie Declaration on our website.

Learn more about who we are, how you can contact us and how we process personal data in our Privacy Policy.

Please state your consent ID and date when you contact us regarding your consent.

Your consent applies to the following domains: www.wafra.com

Cookie declaration last updated on 8/14/23 by Cookiebot:

Necessary (5)

Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

NameProviderPurposeExpiryType
__cf_bm [x2]
Cision
Vimeo
This cookie is used to distinguish between humans and bots. This is beneficial for the website, in order to make valid reports on the use of their website.1 dayHTTP Cookie
CONSENT [x2]YouTube
Used to detect if the visitor has accepted the marketing category in the cookie banner. This cookie is necessary for GDPR-compliance of the website.
2 years
HTTP Cookie
CookieConsentwww.wafra.comStores the user’s cookie consent state for the current domain1 yearHTTP Cookie

Statistics (6)

Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.

NameProviderPurposeExpiryType
_ga

Google
Registers a unique ID that is used to generate statistical data on how the visitor uses the website.2 yearsHTTP Cookie
ga#
Google

Used by Google Analytics to collect data on the number of times a user has visited the website as well as dates for the first and most recent visit.
2 years
HTTP Cookie
_gat
Google
Used by Google Analytics to throttle request rate.1 dayHTTP Cookie
_gid
Google
Registers a unique ID that is used to generate statistical data on how the visitor uses the website.1 dayHTTP Cookie
collect
Google
Used to send data to Google Analytics about the visitor’s device and behavior. Tracks the visitor across devices and marketing channels.SessionPixel Tracker
td
Google

Registers statistical data on users’ behaviour on the website. Used for internal analytics by the website operator.
SessionPixel Tracker

Marketing (13)

Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third party advertisers.

NameProviderPurposeExpiryType
LAST_RESULT_ENTRY_KEY

YouTube
Used to track user’s interaction with embedded content.SessionHTTP Cookie
nextId
YouTube

Used to track user’s interaction with embedded content.
Session
HTTP Cookie
requests
YouTube
Used to track user’s interaction with embedded content.SessionHTTP Cookie
VISITOR_INFO1_LIVE
YouTube
Tries to estimate the users’ bandwidth on pages with integrated YouTube videos.180 daysHTTP Cookie
YSC
YouTube
Registers a unique ID to keep statistics of what videos from YouTube the user has seen.SessionHTTP Cookie
YtIdbMeta#databases
YouTube


Used to track user’s interaction with embedded content.
PersistentIndexed DB
yt-remote-cast-availableYouTubeStores the user’s video player preferences using embedded YouTube videoSessionHTML Local Storage
yt-remote-cast-installedYouTubeStores the user’s video player preferences using embedded YouTube videoSessionHTML Local Storage
yt-remote-connected-devicesYouTubeStores the user’s video player preferences using embedded YouTube videoPersistentHTML Local Storage
yt-remote-device-idYouTubeStores the user’s video player preferences using embedded YouTube videoPersistentHTML Local Storage
yt-remote-fast-check-periodYouTubeStores the user’s video player preferences using embedded YouTube videoSessionHTML Local Storage
yt-remote-session-appYouTubeStores the user’s video player preferences using embedded YouTube videoSessionHTML Local Storage
yt-remote-session-nameYouTubeStores the user’s video player preferences using embedded YouTube videoSessionHTML Local Storage

Other technologies. In addition to cookies, our Sites may use other technologies, such as Flash technology to pixel tags to collect information automatically.

Browser Web Storage

We may use browser web storage (including via HTML5), also known as locally stored objects (“LSOs”), for similar purposes as cookies. Browser web storage enables the storage of a larger amount of data than cookies. Your web browser may provide functionality to clear your browser web storage.

Flash Technology

We may use Flash cookies (which are also known as Flash Local Shared Object (“Flash LSOs”)) on our Sites to collect and store information about your use of our Sites. Unlike other cookies, Flash cookies cannot be removed or rejected via your browser settings. If you do not want Flash LSOs stored on your computer or mobile device, you can adjust the settings of your Flash player to block Flash LSO storage using the tools contained in the Website Storage Settings Panel. You can also control Flash LSOs by going to the Global Storage Settings Panel and following the instructions. Please note that setting the Flash Player to restrict or limit acceptance of Flash LSOs may reduce or impede the functionality of some Flash applications, including, potentially, Flash applications used in connection with our Sites.

Web Beacons

We may also use web beacons (which are also known as pixel tags and clear GIFs) on our Sites and in our HTML formatted emails to track the actions of users on our Sites and interactions with our emails. Unlike cookies, which are stored on the hard drive of your computer or mobile device by a website, pixel tags are embedded invisibly on webpages or within HTML formatted emails. Pixel tags are used to demonstrate that a webpage was accessed or that certain content was viewed, typically to measure the success of our marketing campaigns or engagement with our emails and to compile statistics about usage of the Sites, so that we can manage our content more effectively.

Your choices. Your options for controlling what information cookies and similar technologies collect about you include:

  • Blocking cookies in your browser. Most browsers let you remove or reject cookies. To do this, follow the instructions in your browser settings. Many browsers accept cookies by default until you change your settings. Please note that if you set your browser to disable cookies, the Sites may not work properly. For more information about cookies, including how to see what cookies have been set on your device and how to manage and delete them, visit www.allaboutcookies.org. If you do not accept our cookies, you may experience some inconvenience in your use of our Sites. For example, we may not be able to recognize your computer or mobile device and you may need to log in every time you visit our Sites.
  • Third-party opt-out option. You can opt-out of interest-based advertising through some of the third parties listed in the chart above by using the corresponding third-party opt-out tool provided in the chart.
  • Industry association opt-outs. You may opt out of receiving interest-based advertising on websites through members of the Network Advertising Initiative by clicking here or the Digital Advertising Alliance by clicking here. You may opt out of receiving targeted advertising in mobile apps through participating members of the Digital Advertising Alliance by installing the AppChoices mobile app, available here, and selecting the user’s choices. Please note that we also may work with companies that offer their own opt-out mechanisms and may not participate in the opt-out mechanisms linked above.
  • Blocking advertising ID use in your mobile settings. Your mobile device settings may provide functionality to limit use of the advertising ID associated with your mobile device for interest-based advertising purposes.

For more information about cookies, including how to see what cookies have been set on your computer or mobile device and how to manage and delete them, visit www.allaboutcookies.org. If you do not accept our cookies, you may experience some inconvenience in your use of our Sites. For example, we may not be able to recognize your computer or mobile device and you may need to log in every time you visit our Sites.

If you choose to opt-out of targeted advertisements, you will still see advertisements online, but they may not be relevant to you. Even if you do choose to opt out, not all companies that serve online behavioral advertising are included in this list, and so you may still receive some cookies and tailored advertisements from companies that are not listed.

For more information about how we collect, use and share your information, see our Privacy Policy.

Changes. Information about the cookies we use may be updated from time to time, so please check back on a regular basis for any changes.

Questions. If you have any questions about this Cookie Policy, please contact us by email at [email protected].

Last modified January 16, 2023.