Data Privacy Statement

Context and Overview

Key Details

  • Policy Prepared By: Marc Rayner
  • Approved by: Kevin Fasting
  • Policy became operational on: May 2018
  • Next review date: May 2019
  • GDPR Officer – Marc Rayner – contact@crp-group.co.uk

Introduction

The privacy policy describes how CRP Group protects and makes use of the information you give the company when engaging for the provision of service.

CRP Group gathers and uses certain information about individuals in order to provide recruitment services to our clients and to those individuals.

What data we gather

CRP Group may collect the following information:-

  • Name and Job title
  • Demographic information
  • Contact information including email address
  • Experience and skills
  • Qualifications
  • Professional memberships
  • References
  • Salary details
  • Other information relevant to client enquiries

Where we gather data from

CRP Group uses a number of external sources to help gather personal data, including:-

  • Online job boards such as Jobsite, Total Jobs, CV Library and Reed
  • Online candidate sourcing & data management solution Broadbean
  • Online business networking site LinkedIn
  • A former or current employer
  • A former or current colleague
  • A referee who’s details you have previously provided to us
  • Online market intelligence provider ZoomInfo

How we use this data

Collecting this data helps CRP Group understand and align candidate suitability on behalf of clients, and to enable the placement of said candidates into vacant roles within the client organisation, upon completion of the recruitment process.

CRP Group will only share personal data with third parties who are involved in the recruitment process; we do not share or sell personal data to any third parties not involved in the recruitment process.

Lawful basis for gathering personal data

CRP Group have identified ‘Legitimate Interests’ as the main lawful basis for collecting and processing an individual’s personal data.

The legitimate interests refer to the commercial interests of CRP Group or of third parties that CRP Group have a commercial relationship with.

CRP Group will retain personal data for an indefinite period of time, for the purpose of ongoing commercial Legitimate interests. However, individuals have the right to request the removal and deletion of their personal data at any time.

Security

CRP Group will always hold information securely and:

  • Comply with the data protection law and follow good practice
  • Protect the rights of staff, clients and partners
  • Will be open about how it stores and processes individuals data
  • Protect itself from the risks of a data breach

To prevent unauthorised disclosure or access to client’s information, CRP Group has implemented strong physical and electronic security safeguards. CRP Group also follows stringent procedures to ensure that working with all personal data is in line with the Data Protection Act 1998 and General Data Protection Regulation (GDPR) 2016.

If you have any queries relating to data protection within CRP Group or would like to request the removal of your personal data, please send your enquiry to contact@crp-group.co.uk.