General Data Protection Regulation (GDPR) Policy for RECRUITMENT CHIEF

Introduction

At RECRUITMENT CHIEF, we are committed to protecting the privacy and personal data of our clients, candidates, employees, and other stakeholders in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws in the United Kingdom (UK). This policy outlines our commitment to GDPR compliance and sets out the principles and procedures we follow to ensure the lawful and transparent processing of personal data.

Scope

This policy applies to all personal data processed by RECRUITMENT CHIEF, whether it is collected online, through our website, by email, over the phone, or in person. It covers data pertaining to clients, candidates, employees, suppliers, and other individuals with whom we interact during our business operations.

Principles of Data Protection

RECRUITMENT CHIEF adheres to the following principles when processing personal data:

– Lawfulness, fairness, and transparency: We process personal data lawfully, fairly, and in a transparent manner.

– Purpose limitation: We collect personal data for specified, explicit, and legitimate purposes and do not process it in a manner incompatible with those purposes.

– Data minimisation: We only collect and process personal data that is adequate, relevant, and limited to what is necessary for the purposes for which it is processed.

– Accuracy: We take reasonable steps to ensure that personal data is accurate and kept up to date. We also rectify or erase inaccurate or incomplete data without delay.

– Storage limitation: We store personal data for no longer than is necessary for the purposes for which it is processed.

– Integrity and confidentiality: We ensure the security of personal data through appropriate technical and organisational measures, protecting it against unauthorised or unlawful processing and accidental loss, destruction, or damage.

Data Collection and Processing

– We collect personal data directly from individuals or from third parties with their consent.

– We only collect personal data that is necessary for the provision of our recruitment services or as required by law.

– Personal data may include, but is not limited to, names, contact information, employment history, qualifications, and other relevant information related to recruitment.

– We process personal data for recruitment purposes, including sourcing candidates, assessing their suitability for positions, and facilitating employment placements.

– We may also process personal data for administrative and business purposes, such as invoicing, accounting, and compliance with legal obligations.

Data Subject Rights

RECRUITMENT CHIEF respects the rights of data subjects under the GDPR, including:

– The right to be informed about the processing of their personal data.

– The right of access to their personal data and information about how it is processed.

– The right to rectification of inaccurate or incomplete personal data.

– The right to erasure of personal data (“right to be forgotten”) under certain circumstances.

– The right to restrict processing of personal data under certain circumstances.

– The right to data portability, allowing individuals to obtain and reuse their personal data for their own purposes across different services.

– The right to object to the processing of their personal data in certain situations, such as direct marketing.

– Rights related to automated decision making and profiling.

Data Security

– We implement appropriate technical and organisational measures to ensure the security of personal data against unauthorised or unlawful processing, accidental loss, destruction, or damage.

– Access to personal data is restricted to authorised personnel who require it for legitimate business purposes.

– We regularly review and update our security measures to ensure they remain effective and aligned with industry best practices.

Data Sharing and Transfers

– We may share personal data with third parties, such as clients, employers, and service providers, only when necessary for the provision of our recruitment services or as required by law.

– Before sharing personal data with third parties, we ensure that appropriate safeguards are in place to protect the confidentiality and security of the data.

– Personal data may be transferred to countries outside the European Economic Area (EEA) only if adequate safeguards are in place to ensure an adequate level of protection for the rights and freedoms of data subjects.

Data Breach Notification

In the event of a personal data breach, RECRUITMENT CHIEF will promptly assess the severity of the breach and, if necessary, notify the Information Commissioner’s Office (ICO) and affected data subjects in accordance with our obligations under the GDPR.

Data Protection Officer

RECRUITMENT CHIEF has appointed a Data Protection Officer (DPO) who is responsible for overseeing compliance with data protection laws and this policy. The DPO can be contacted at hello@recruitmentchief.co.uk / 07471 426422.

Policy Review

This GDPR policy is reviewed regularly to ensure its ongoing relevance and effectiveness. Any updates or changes to the policy will be communicated to relevant stakeholders as appropriate.

Compliance

Failure to comply with this GDPR policy may result in disciplinary action, up to and including termination of employment or contract, and may also lead to legal penalties for non-compliance.

Conclusion

RECRUITMENT CHIEF is committed to upholding the highest standards of data protection and privacy. By adhering to the principles and procedures outlined in this GDPR policy, we strive to ensure the lawful, fair, and transparent processing of personal data and maintain the trust and confidence of our clients, candidates, employees, and other stakeholders.