Important information and who we are
This website is not intended for children and we do not knowingly collect data relating to children.
What data do we collect about you?
Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).
We may collect, use, store and transfer different kinds of personal data about you as follows:
We may collect, use and/or share Special Categories of Personal Data (or Sensitive Personal Data) about you (which may include information about your health, genetic and biometric data, details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions and/or trade union memberships). Your explicit consent will be obtained by us where any Special Categories of Personal Data is collected, used or shared.
How is your data collected?
We use different methods to collect data from and about you including through:
Direct interactions. You may give us your identity, contact, financial, profile and or marketing and communications data by filling in forms or by corresponding with us by post, phone, email or otherwise. This includes personal data you provide when you:
Automated Technologies or interactions. As you interact with our website (the Interaction), we may collect technical and or usage data about your equipment, browsing actions and patterns via 'cookies'. In order to manage the different cookies that will apply to such Interaction, you can select "Cookies Settings" when you enter our website(s) which will provide you with a number of options.
Third party sources.
We may receive personal data about you from various third parties. For example we may receive technical data when we use a third-party service such as Google Analytics to collect information about how visitors to our website use the site, including collecting information about the country from which you logged in from, which pages you visited and how long you were on our site.
How do we use your data?
We use your information to do the following:
We will rely on one of the following legal grounds (as appropriate) to process your personal data:
Who do we share your data with?
We share information with the following third parties:
Some of these third parties are based outside the European Economic Area (EEA) in, amongst others, the following countries: United States of America, China, Hong Kong, Singapore and Russia.
If we do transfer your information from the EEA to a jurisdiction outside the EEA, we will take appropriate steps to protect that information, which includes the following: (i) Entering into an agreement with the third party which includes clauses that the EU Commission has determined offer adequate protection for your information, a template copy of which is available at: https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/model-contracts-transfer-personal-data-third-countries_en; or (ii) Otherwise ensuring that information would only be transferred to third parties in jurisdictions that the EU Commission has determined offers adequate protection for your personal information.
What are your legal rights in relation to our use of your data?
You have legal rights under data protection law in relation to our use of your personal data, which include the following:
If you have subscribed to us or agreed to be on a contact list to receive information from us, you can ask to be removed at any time by using the unsubscribe link included in any e-communications, or by emailing email@example.com.
If you have any questions about these rights, or you would like to exercise any of them, please contact us by submitting a request to firstname.lastname@example.org – additional details of how to get in touch are set out in section 10 below.
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
As part of the security measures, you should not share your username and password with other people. If a username/password is forgotten, you will receive guidance on how to reset your username and/or password to a validated email address.
How long do we keep your data for?
We retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.
Our policy is to destroy employment applications one year after their submission if they have not led to an offer of employment, unless during the submission process you agreed to a longer retention period on the basis of being considered for future work opportunities we may have. If you are engaged with us ‘to perform a contract,’ then local market data retention legislation may apply to elements of the information you supply to us.
Any other information obtained as set out in section 2 above will be kept for no longer than is necessary and will be determined with reference to applicable statutory limitation periods in your jurisdiction, or otherwise as agreed between us.
We will keep our data retention policy under review to ensure that your data is not stored for longer than is strictly necessary.
How to contact us?
If you have any questions about this privacy notice or the information we hold about you, or if you would like to contact the DPO, you can contact us in the following ways:
Enquiries from outside the European Union can still be made via the above email or postal route.
You have the right to make a complaint to a data protection authority such as the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.
Changes to this Privacy Notice and your duty to inform us of changes
We keep this Privacy Notice under regular review and we will place any updates on this webpage.
It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.
This Privacy Notice was last updated on 3 June 2021.