RFC as a Data Controller
Use and Collection of your Personal Data
We collect this information so that we may provide you with a reliable and efficient recruitment service in assisting you in your job search and to enable us to contact you accordingly. This may include evaluating your details against suitable job opportunities, storing your data on file for future interactions, sending your information to clients once you confirm you would like to be represented for a role, providing career guidance and support, ongoing interactions, and with your permission engaging with third parties where we or our client require it to deliver requested services such as reference checks, qualifications, and psychometric evaluation or skills tests. In the case of the last point you will be notified prior to us completing these, and you have the option to decline.
Who can access your data
Your information, in the furtherance of us providing you with an efficient service, will be reviewed and shared by consultants working within the RFC. We may from time to time be required to pass on your personal information to third parties as part of the recruitment process but will only do so where you have agreed that we can share this information. We will never share your information with any client without your consent. This passing of information is done with your express advance approval. Your personal data is wholly stored and processed within the European Economic Area.
Existing Data Information within RFC
We will use our best endeavours to guarantee that all Personal Data that you have submitted to us is maintained and up to date. However, it is your responsibility to inform us of any changes to your Personal Data to ensure that it is up to date. We retain information regarding candidates, clients, and recruitment activity for the duration of individuals’ careers and this can be for up to 40 years. The data that we hold is reviewed at least every 5 years and we are in regular communications with all of our contacts within our specialist area. We will also get in touch with you periodically in order to ensure the data we have is up to date. Where we hold information about you, you have the right to request access to your data in a clear and readable format; and to rectify, modify, update, or erase your data.
We will provide you with a copy of all personal information we hold about you within a month of such a request and in accordance with the relevant Data Protection legislation. All such deletions and data updates should be sent to firstname.lastname@example.org as the Data Representative for RFC. We may only refuse your request where we are legally obliged to do so. Where your request has been refused we will provide you with reasons for this refusal. We will then hold such data for only as long as it is necessarily required by law. In the case of data deletions, we have a deletions policy. Please note that all data access requests will be subject to identity checks for security reasons to safeguard against inappropriate data disclosures.
Security of your Personal Information
We are committed to the protection of Personal Information submitted to us. Privacy and security are of utmost importance to RFC and we have put in place suitable control measures to protect against potential threats to your data. These include physical and electronic procedures along with periodic managerial reviews in order to maintain data privacy standards. We use a variety of security technologies and procedures to help protect your personal information from unauthorised access, use, or disclosure. While RFC takes all due care in ensuring the privacy and integrity of the information that you provide, we recognise that no data transmission over the Internet can be guaranteed to be 100% secure. The possibility exists that this information could be unlawfully observed by a third party while in transit over the Internet. RFC accepts no liability should this occur.
RFC also gathers information on all our users of our website on an aggregated basis. This information is used to analyse what the total usage levels are for the site, what areas of the site are most popular, and what times of the day are most popular for using the site. This information is used to determine what improvements we can make going forward. This information is not passed to our clients and the data is used for internal purposes only. As we deal with specialist sectors, we also periodically conduct marketing activities. Our marketing activities include email campaigns to those registered on our database and we use a GDPR certified compliant third-party email marketing provider for this. This data is not passed on to any external parties and the sole purpose is for maintaining engagement with our contacts.
Changes to this Privacy Statement