GDPR PRIVACY NOTICE FOR JOB APPLICANTS
Data controller (“the Company”): Collinson plc, Riverside Industrial Park, Tan Yard Road,
Catterall, Preston, Lancashire, PR3 0HP
Data compliance officer Steve Mooring- Business Systems Manager, Collinson plc.
Introduction
As part of any recruitment process, the Company collects and processes personal information,
or personal data, relating to job applicants. This personal information may be held by the
Company on paper or in electronic format.
The Company is committed to being transparent about how it handles your personal information,
to protecting the privacy and security of your personal information and to meeting its data
protection obligations under the General Data Protection Regulation (“GDPR”) and the Data
Protection Act 2018. The purpose of this privacy notice is to make you aware of how and why we
will collect and use your personal information during the recruitment process. We are required
under the GDPR to notify you of the information contained in this privacy notice.
This privacy notice applies to all job applicants, whether they apply for a role directly or indirectly
through an employment agency. It is non-contractual.
The Company has appointed a data compliance manager to oversee compliance with this
privacy notice. If you have any questions about this privacy notice or about how we handle your
personal information, please contact Steve Mooring – [email protected]
Data protection principles
Under the GDPR, there are six data protection principles that the Company must comply with.
These provide that the personal information we hold about you must be:
1. Processed lawfully, fairly and in a transparent manner.
2. Collected only for legitimate purposes that have been clearly explained to you and not further
processed in a way that is incompatible with those purposes.
3. Adequate, relevant and limited to what is necessary in relation to those purposes.
4. Accurate and, where necessary, kept up to date.
5. Kept in a form which permits your identification for no longer than is necessary for those
purposes.
6. Processed in a way that ensures appropriate security of the data.
The Company is responsible for, and must be able to demonstrate compliance with, these
principles. This is called accountability.
What types of personal information do we collect about you?
Personal information is any information about an individual from which that person can be
directly or indirectly identified. It doesn’t include anonymised data, i.e. where all identifying
particulars have been removed. There are also “special categories” of personal information, and