Privacy Policy

Privacy Policy

 

Who are we?

The Data Controller is Bates & Bradshaw Ltd, based at Biz Hub, Melton Court, Gibson Lane, Melton, HU14 3HH.  We provide permanent and temporary recruitment services to clients looking to recruit personnel for their businesses.  We also provide payroll services for contractors.

Who does this Privacy Policy apply to?

This Privacy Policy applies to the personal data of our Website Users, Candidates, Clients, Suppliers, and other people whom we may contact to find out more about our Candidates.

It is important to point out that we may amend this Privacy Policy from time to time.  Please just visit this page if you want to stay up to date, as we will post any changes on here.

If you are dissatisfied with any aspect of our Privacy Policy, you may have legal rights and, where relevant, we have described these as well.

What does this Policy cover?

We at Bates & Bradshaw Ltd take your personal data seriously.  This policy:

  • Sets out the types of personal data that we collect about you
  • Explains how and why we collect and use your personal data
  • Explains how long we keep your personal data for
  • Explains when, why and with who we will share your personal data
  • Sets out the legal basis we have for using your personal data
  • Explains the effect of refusing to provide the personal data requested
  • Explains the different rights and choices you have when it comes to your personal data; and
  • Explains how we may contact you and how you can contact us.

What personal data do we collect about you?

Candidates; We collect and use only the information necessary to be able to find the best available opportunities and any further information needed to assess your eligibility through the different stages of recruitment.  This information includes CV’s, identification documents, educational records, work history, employment and references and financial information.

We may also collect sensitive personal data about you, related to your health, diversity information or details of any criminal convictions of.  We only collect sensitive personal data from you, and further process this data, where you have given your explicit consent.

Clients; We collect and use only the information necessary to provide you, or people in your organisation with services such as finding the best available candidates for your opportunities.

Other data subjects; We collect and use only the information necessary to be able to contact you and pay you for the services you provide.

Website Users; We collect and use only the information necessary to improve your experience when using our website.  This may include how, when, and how often you visit us.

Where do we collect personal data about you from?

The following are the different sources we may collect personal data about you from:

  • Directly from you. This is information you provide while searching for a new opportunity and / or during the different recruitment stages, or during our work with you to ensure that our relationship runs efficiently.
  • From an agent / third party acting on your behalf e.g. A Contractor’s Limited Company.
  • Through publicly available sources. For example:
  • LinkedIn
  • Job Boards
  • By Reference or word of mouth. For example, you may be recommended by a friend, a former employer, a former colleague or even a present employer.

How do we use your personal data?

Candidates; We use your personal data to match your skills and experience with a potential employer.  We will initially collect basic information on you such as contact details, job role and experience and then pass this on to the client in search of personnel.  If you are chosen by the client and go through to the next stage, we will then be collecting more information from you at the interview (or equivalent) stage and onwards in that manner.  We may use your data to send you information that you may find interesting such as suggesting other jobs to you.

Clients; We use your personal data to ensure that we can find the right candidates for the opportunities that you may have or for contractual obligations.

Suppliers; We use your personal data to ensure that we can contact you and for contractual obligations.

How long do we keep your personal data for?

We will only retain your information for as long as necessary for us to use your information as described above or to comply with our legal obligations.  However, we may retain some of your information after you cease to use our services, if we believe in good faith that it is necessary to meet our legal obligations, such as retaining the information for tax and accounting purposes.

When determining the relevant retention periods, we will consider factors including:

  • Our contractual obligations and rights in relation to the information involved;
  • Legal obligation (s) under applicable law to retain data for a certain time-period;
  • Statute of limitation under applicable law (s);
  • (potential) disputes;
  • If you have made a request to have your information deleted; and
  • Guidelines issued by relevant data protection authorities.

Otherwise, we securely erase your information once this is no longer needed.

Who do we share your personal data with?

Candidates; We share your personal data with the clients who has a position to fill, in order to determine with the client whether you are a good fit for the available position.

We may also conduct checks on you to verify the information you have provided and where we do this we share your information with our appointed background checking company.

Unless you specify otherwise we may share your data with any of our associated third parties – for example our payroll and pension provider – to provide you with the best possible service.

Clients; We share your data with candidates during the course of providing recruitment services to you, and with third parties as part of our contractual relationship.

Suppliers; We share your data with third parties as part of our contractual relationship.

What legal basis do we have for using your information?

For prospective candidates, contractors, referees and clients, our processing is necessary for our legitimate interests – we need this information in order to be able to assess stability for potential roles, to find potential candidates and to contact clients and referees, and suppliers.

If you are interviewed and submitted as a candidate, then this may involve the processing of more detailed personal data including sensitive data such as health information that you or others provide about you.  In that case we always ask for your consent before undertaking such processing.

Where we need to consent for some activities such as contacting candidates about other recruitment related services we will ask for it.  We rely on soft opt-in consent for these activities where you have previously engaged with us by submitting a CV, applying for a job, or registering on our website.  This means we take your consent as given unless or until you opt-out.  For other types of e-marketing we require your explicit consent.

What happens if you do not provide us with the information we request or ask that we stop processing your information?

If you do not provide the personal data necessary or withdraw your consent for the processing of your personal data, we may not be able to match you with available job opportunities.

Do we make automated decisions concerning you?

We may make automated decisions about you during the assessment stage of the recruitment process.  We put assessment candidates through a structured screen process to assess whether each candidate meets the specific criteria for a particular position.  These assessments may be fully automated e.g. online pre-screening tests.  As these assessments may result in a candidate being deemed as not suitable for a position by means of solely automated assessment, we only undertake this activity with the candidate’s explicit consent.  We also carry out personality profiling on candidates with the candidate’s consent.

Do we transfer your data outside the EEA?

No, we do not transfer personal data out of the EEA.

How do we safeguard your personal data?

We take the security of your data very seriously and have put in place appropriate measures that are designed to prevent unauthorised access to or misuse of your personal data.

What rights do you have in relation to the data we hold on you?

By law, you have a number of rights when it comes to your personal data.  Further information and advice about your rights can be obtained from the data protection regulator.

  1. The Right to be Informed

You have the right to be provided with clear, transparent, and easily understandable information about how we use your information and your rights.  Therefore, we are providing you with the information in this Policy.

  1. The Right of Access

You have the right to obtain access to your information (if we’re processing it), and certain other information (similar to that provided in this Privacy Policy).  This is so you’re aware and can check that we’re using your information in accordance with data protection law.

  1. The Right to Rectification

You are entitled to have your information corrected if it’s inaccurate or incomplete.

  1. The Right to Erasure

This is also known as ‘the right to be forgotten’ and, in simple terms, enables you to request the deletion or removal of your information where there’s no compelling reason for to keep using it.  This is not a general right to erasure; there are exceptions.

  1. The Right to Restrict Processing

You have rights to ‘block’ or suppress further use of your information.  When processing is restricted, we can still store your information, but may not use if further.  We keep lists of people who have asked for further use of their information to be ‘blocked’ to make sure the restriction is respected in future.

  1. The Right to Data Portability

You have rights to obtain and reuse your personal data for your own purposes across different services.  For example, if you decide to switch to a new provider, this enables you to move, copy or transfer your information easily between our IT systems and theirs safely and securely, without affecting its usability.

  1. The Right to Object to Processing

You have the right to object to certain types of processing, including processing for direct marketing.

  1. The Right to Lodge a Complaint

You have the right to lodge a complaint about the way we handle or process your personal data with your national data protection regulator.

  1. The Right to Withdraw Consent

If you have given your consent to anything we do with your personal data, you have the right to withdraw your consent at any time (although if you do so, it does not mean that anything we have done with your personal data with your consent up to that point is unlawful).  This includes your right to withdraw consent to us using your personal data for marketing purposes.

We usually act on requests and a fee of £10.00 may be charged to cover out administrative costs of providing information for:

  • Baseless or excessive / repeated requests, or
  • Further copies of the same information.

Alternatively, we may be entitled to refuse to act on the request.

Please consider your request responsibly before submitting it.  We’ll respond as soon as we can.  Generally, this will be within one month from when we receive your request but, if the request is going to take longer to deal with, we’ll come back to you and let you know.

We may contact you by phone, email, or social media.  If you prefer a particular contact means over another, please just let us know.

How can you contact us?

If you are unhappy with how we’ve handled your information, or have further questions on the processing of your personal data, contact here: