Data controller: Emma Jenkinson, HR Advisor
During the recruitment process, Valley CiDS (the Company) collects and processes personal data relating to job applicants.
The Company is committed to being clear and transparent about how it collects and uses that data to meet its data protection obligations. Valley CiDS provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, colour, religion, sex, national origin, age, disability or genetics.
What information does the Company collect and process?
The Company collects and processes a range of personal information (personal data) about you. Personal data means any information about an individual from which the person can be identified. This includes:
The Company collects this information in a variety of ways during the application and recruitment process. For example, data may be contained in paper application forms and CVs, online application form, obtained from identity documents, such as your passport and collected through interviews and assessment tests.
In some cases, the Company collects personal data about you from third parties, such as references supplied by former employers, information from employment background check providers and information from criminal records checks permitted by law.
Data is stored in a range of different places, including on your application record, in the Company’s HR management systems and in other IT systems (including the Company’s email system).
Why does the Company process personal data?
The Company needs to process data prior to entering into a contract with you. We also need to process data to enter into an employment contract with you and to meet our obligations under that employment contract.
In addition, the Company needs to process data to ensure that we are complying with our legal obligations. For example, we are required to check an employee’s entitlement to work in the UK before employment begins.
The Company is using the lawful basis of entering into a contract by processing personal data during the recruitment process and in keeping records of that process. Processing such data from job applicants enables the Company to manage the recruitment process, assess the suitability of candidates and make an informed decision as to whom we wish to employ. The Company may also have to process data from job applicants in order to defend legal claims.
The Company processes health information if we need to make reasonable adjustments to the recruitment process for candidates with a disability.
For certain positions, it is necessary to carry out criminal records checks to ensure that individuals are permitted to undertake a particular role.
If you fail to provide personal information
You are under no obligation to provide the Company with data during the recruitment process. However, if you do not prove certain information when requested, the Company may not be able to process your application for employment properly or at all.
Our employment decisions are not based solely on automated decision-making.
For how long do you keep data?
The Company will only hold your personal data for as long as is necessary to fulfil the purposes for which we collected it. If your application for employment is unsuccessful, the Company will hold your data on file for 3 months after the end of the recruitment process. At the end of that period, your data is deleted or destroyed.
Who has access to data?
Your information will be shared internally for the purposes of the recruitment process, including with members of the HR Team and Interviewers.
The Company will not share your data with third parties unless we make you an offer of employment. In those circumstances, the Company shall share your data with third parties where required by law and where it is necessary in order to administer the working relationship with you or where we have another lawful basis in doing so. The Company will then share your data with former employers to obtain references for you.
The Company will not transfer your data to countries outside the European Economic Area.
How does the Company protect data?
The Company takes the security of your data seriously. The Company has internal policies and controls in place to prevent your data being lost, accidentally destroyed, misused or disclosed, and is not accessed except by its employees in the performance of their duties.
As a data subject, you have a number of rights. You can:
If you would like to exercise any of these rights, or you have any questions about the privacy notice, please contact Emma Jenkinson, HR Advisor.
If you believe that the Company has not complied with your data protection rights, you have the right to make a complaint to the Information Commissioner’s Office.