Polices & Procedures

This page contains important legal information regarding the site.

About Us

The McCarthy Recruitment website is operated by McCarthy Recruitment Limited, which is the Data Controller for the purposes of the Data Protection Act 1998.

The registered office is Carlyle House, 78 Chorley New Road, Bolton, Lancashire, BL1 4BY.

Out VAT number is GB 860 7880 94

Privacy Policy & Cookies

This page contains important legal information regarding the site.

Cookies Policy

How we use Cookies

We use cookies on our website for a variety of reasons which you can learn about below. The cookies we use do not store personally identifiable information nor can they harm your computer. We want our website to be informative, personal, and as user friendly as possible and cookies help us to achieve that goal.

By using our website, you agree to the use of cookies and other technologies as set out in this policy. We appreciate some users may like more individual control over their visit to our website and can adjust their settings accordingly. You can read all about this in the section below "How to control and delete cookies". If you do not agree to such use, please refrain from using the website.

What are Cookies?

A cookie is a small file and holds a certain amount of data, which our website can send to your browser. It may then be stored on your computer's hard drive and can be accessed by our web server. This cookie data can then be retrieved and can allow us to customise our web pages and services accordingly, for instance, by setting a cookie on our site, the user would not have to log in a password more than once. It's important to clarify that cookies do not collect any personal data stored on your hard drive or computer.

To find out more about cookies, visit www.allaboutcookies.org

How does McCarthy Recruitment use Cookies?

Our website uses Session & Performance Cookies.

Session cookies are used in order to allow customers to carry information across pages of the website, without having to re-enter such information. These cookies delete themselves automatically when you leave a website and go to another, or when you shut down your browser.

Performance cookies collect information about how visitors use a website, for instance which pages visitors go to most often. We use this information to improve our websites and to aid us in investigating problems raised by visitors. These cookies do not collect information that identifies a visitor.

How to control & delete Cookies

McCarthy Recruitment will not use cookies to collect personally identifiable information about you. However, should you choose to disable, reject or block our cookies, some parts of our website will not function fully, or in some cases, our website will not be accessible at all.

For more information on how to control your cookie settings and browser settings, or how to delete cookies on your hard drive, please visit www.aboutcookies.org.

Information Security & Data Privacy Policy (GDPR)

As a recruitment company McCarthy Recruitment processes personal data in relation to it own staff, candidates and individual client contacts. It is vitally important that we abide by the principles of the General Data Protection Regulations set out below.

McCarthy Recruitment holds data on individuals for the following general purposes:

  • Staff administration
  • Accounts and records
  • Administration and processing of candidate & client personal data for the purposes of work finding services
  • To fulfil contractual obligations with 3rd parties

 

The General Data Protection Regulations require McCarthy Recruitment as a data controller to process data in accordance with the principles of data protection. These require that the data shall be:

  • Processed lawfully, fairly and in a transparent manner in relation to individuals
  • Collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes; further processing for archiving purposes shall not be considered to be incompatible with the initial purposes
  • Accurate and where necessary kept up to date. Every reasonable step must be taken to ensure that the personal data that is inaccurate is erased or rectified without delay
  • Kept in a form which permits identification of a data subject for no longer than is necessary for the purposes for which the personal data is processed. Personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest or statistical purposes in order to safeguard the rights and freedoms of individuals
  • Processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or lawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures

“Personal data” means data relating to a living individual who can be identified from the data, or from the data in combination with other freely available information.

“Processing” is defined as obtaining, recording or holding the data or carrying out and operation or set of operations on the data. It includes organising, adapting or amending the date. All of the data within McCarthy Recruitment will have been processed in order to be added to the database or computer network. Data processing can happen on any type of computer or digital device, this includes but is not limited to Desktop PC’s, Laptops, Tablets & Smart Phones.

Data should be reviewed on a regular basis to ensure that it is accurate, relevant and up to date and those people listed in the appendix shall be responsible for doing this.

Data may only be processed if it falls into the 2 lawful basis for processing personal data for McCarthy Recruitment these are;

  • Explicit Consent

Explicit Consent will apply to all marketing activity sent to you through our web database

  • Legitimate Business Interests

Legitimate Business Interests will apply to all recruitment & employee activity

However, caution should be exercised before forwarding personal details of any individuals on which the data is held to any third party such as past, current or prospective employers; suppliers; customers and clients or any other third party. You must ensure you have either the candidate, client or employee’s consent before forwarding personal data out of the business.

As a recruitment business we are bound by Regulation 28 of the Conduct of Employment Agencies and Employment Business Regulations 2003 to obtain the prior consent of an individual before disclosing any information relating to them other than for the purposes of finding them work, or in relation to legal proceedings or to a professional body where they are a member. Prior explicit consent must be obtained before disclosing any information relating to an individual work seeker to their current employer.

Data in respect of the following is “sensitive personal data” and any information held on any of these matters MUST not be passed on to any third party without the express written consent of the individual:

  • Any offence committed or alleged to be committed by them
  • Proceedings in relation to any offence and any sentence passed
  • Physical or mental health or condition
  • Racial or ethnic origins
  • Sexual life or origins
  • Political opinions
  • Religious beliefs or beliefs of a similar nature

All employees should ensure that adequate safety measures are in place. For example:

  • Computer screens and PC’s should not be left unlocked by individuals who have access to personal data
  • Passwords should not be shared or disclosed
  • Emails should be used and sent with care
  • Personnel files and other personal data should be stored in a place in which any unauthorised attempts to access them will be noticed. They should not be removed from their usual place of storage without good reason
  • Personnel files should be locked away when not in use and when in use should not be left unattended
  • Any breaches of security should be reported to the Data Protection Officer and may be treated as a disciplinary issue
  • Care should be taken when sending personal data in internal or external mail
  • Destroying or disposing of personal data counts as processing. Therefore care should taken in the disposal of any personal data to ensure that it is appropriate. All hard copies of personal data must be shredded prior to disposal

It should be remembered that incorrect processing of personal data may give rise to a breach of contract and/or negligence leading to a claim against McCarthy Recruitment. A failure to observe the contents of this policy will be treated as a disciplinary offence.

Data subjects are entitled to obtain access to their data on request and after payment of a processing fee. All requests to access data by data subjects should be referred to the DPO.

Any requests for access to a reference given by a third party must be referred to your line manager and should be treated with caution if the reference was given in relation to the individual making the request. This is because the person writing the reference also has a right to have their personal details protected in line with the GDPR and not disclosed without their consent.

Finally it should be remembered that all individuals have the following rights under the Human Rights Act 1988 and in dealing with personal data these should be respected at all times:

  • Right to respect for private and family life (Article 8)
  • Freedom of thought, conscience and religion (Article 9)
  • Freedom of expression (Article 10)
  • Freedom of assembly and association (Article 11)
  • Freedom from discrimination (Article 14)

McCarthy Recruitment recognises the importance of Information Security to ensure business continuity and minimize business damage by preventing and reducing the impact of security breaches.

This policy is raised by the Managing Director to protect the company’s information assets from all threats whether internal or external, deliberate or accidental.

It is the policy of the company to ensure that:

  • Information will be protected against unauthorised access
  • Confidentiality of information will be assured
  • Integrity of information will be maintained
  • Information will be available as required by the business processes
  • Regulatory, legislative and contractual security requirements will be met
  • Information security training will be available to staff

All breaches of security, whether actual or suspected, will be reported to, and investigated by the DPO.

It is the responsibility of the DPO to provide guidance on the implementation of this policy.

It is the responsibility of all staff to adhere to this policy

This policy does not constitute a contract and McCarthy Recruitment reserves the right to change its terms at any time. Failure to comply with this policy may lead to disciplinary action up to and including dismissal.

Data Policies

This page contains important legal information regarding the site.

Data Confidentiality Policy

At McCarthy Recruitment, we are committed to maintaining the trust and confidence of our candidates and clients, therefore it is our obligation to ensure we protect and safeguard their personal information.

The purpose of this Confidentiality Policy is to clarify the principles that must be observed by all employees of McCarthy Recruitment who have access to confidential information and sensitive personal data. All employees must be aware of their responsibilities for ensuring the safeguarding and preservation of information security.

All employees of McCarthy Recruitment shall be bound by a legal duty of confidence to protect any personal or confidential information that they may come into contact with whilst in employment. This is not solely a requirement of the employees’ contractual responsibility within this Policy, but also a legal requirement within the Data Protection Act 1998 and in order to comply with the GDPR.

This Confidentiality Policy states the requirements placed on all employees of McCarthy Recruitment regarding sharing information within the company and with our partnering organisations.

In this Policy, the term ‘Confidential Information’ refers to any information which the employee is informed or ought reasonably to know is confidential or which is marked as confidential, including but not limited to:

  • Person-identifiable information, e.g. names, addresses, postcodes, dates of birth, NI numbers, medical history, bank account details of any employee, candidate or client
  • Private information that is not public knowledge or information that an individual would not expect to be shared
  • Information relating to the Employer’s business methods, corporate plans, management systems, finances, maturing new business opportunities or research and development projects of the Employer
  • Information relating to the marketing or sales of any past, present or future product of the Employer including, without limitation, sales targets and statistics, market share and pricing statistics, marketing surveys and plans, market research reports, sales techniques, price lists, discount structures, advertising and potential material, the names, addresses, telephone numbers, contact numbers and identities of customers and potential customers of and suppliers and potential suppliers to the Employer, the nature of their business operations, their requirements for any product or service sold to or purchased by the Employer all confidential aspects of their business relationship with the Employer
  • Any trade secrets, secret formulae, processes, inventions, designs, know-how, discoveries, technical specifications and other technical information relating to the creation, production or supply of any past, present or future product or service of the Employer

Except as required in the proper performance of his or her duties, the Employee shall not either during their employment or at any time after its termination, use for his or her own purposes or directly or indirectly for the purposes of any other person, or disclose to any person, company, business entity or other organisation, or cause any unauthorised disclosure of any Confidential Information.

Except in the proper performance of his or her duties, the Employee shall not, during their employment or at any time after its termination, make any note, record or memorandum of any Confidential Information, and any such note, record or memorandum made by the Employee shall be and remain the property of the Employer.

The Employee must agree to return upon request and, in any event, upon termination of their employment all documents, computer disks, USB Pens, recorded data and other carriers of information (and any copies of the same) containing Confidential Information or which otherwise relate to the business of the Employer.

The Employee must acknowledge that the Employer requires the restrictions in this policy to apply to non-exclusive and/or contingent business on an equal basis as they apply to exclusive and/or non-contingent business on the terms set out in the schedule for the purpose of protecting the above interests, the goodwill and the stable, trained workforce of the Employer.

Legal grounds for sharing confidential information

Employees may disclose information when it complies with one of the following lawful grounds under the GDPR.

  • When the information is required by law or under a court order. In this situation employees must discuss with the Office Manager or the Managing Director before disclosing
  • When you have obtained written consent from the individual.

If an employee has any concerns about whether they can legally disclose information they must discuss this with the Office Manager or Managing Director.

Working Away from the Office Environment

McCarthy Recruitment understands that there may be times when employees will need to work from another location in the event of sickness or travel. Therefore, employees may need to take company information outside of the office to carry out their duties e.g. on company laptops. However, in order to comply with the new GDPR legislations there are a few of the following restrictions in place;

  • Taking home/removing paper documents that contain person-identifiable or confidential information from McCarthy Recruitment is strictly prohibited.
  • Attempting to transfer person-identifiable or confidential information from a company computer onto a USB stick, CD-ROM or floppy disk is strictly prohibited.

If an employee is required to work from a company laptop outside the office environment then they must ensure that it is kept on their person at all times and stored in a secure location if taken home. Confidential information must be safeguarded at all times and kept in lockable locations.

When working away from the office, employees must ensure that their working practice complies with McCarthy Recruitment policies and procedures.

If it is paramount for an employee to take home personal-identifiable or confidential information on a company laptop then they have personal responsibility to ensure the information is kept secure and confidential. This means that other members of their family and or/their friends/colleagues must not be able to see the content or have any access to the information.

It is strictly prohibited for employees to forward any person-identifiable or confidential information via email to their personal email account. Furthermore, Employees must not use or store person-identifiable or confidential information on a personal computer or device.

Failure to comply with these regulations may lead to the employee being held personally liable for a breach of confidence. Employees have a legal obligation to ensure confidential information is not divulged accidentally and must not;

  • Discuss any person-identifiable or confidential information in public places where the information could be overheard
  • Leave any confidential or person-identifiable unattended where they are freely accessible to others. This includes without limitation; confidential documents, telephone messages, unattended logged-on computer systems or devices, faxes or computer print outs
  • Disclose any company passwords to unauthorised third-party members. Employees are strictly prohibited to use a colleague’s log-in details to access information without authorisation or consent. This constitutes as a severe disciplinary offence and may result in the dismissal of the employee
  • Divulge any personal or confidential information to a third party if they do not have a legitimate or lawful reason to obtain it.

The continued compliance of this policy and others relating to the safeguard of personal and confidential data will be monitored by the Office Manager and Managing Director on a regular basis.

Any suspected breaches of confidentiality need to be immediately reported to the Office Manager or Managing Director.

This policy does not constitute a contract and McCarthy Recruitment reserves the right to change its terms at any time. Failure to comply with this policy may lead to disciplinary action up to and including dismissal.

Data Privacy Notice

This data privacy notice explains how we use your information. For the purposes of the GDPR we are a data controller

What sort of information do you hold about me?

In order to provide you with our services we may collect the following data

  • Personal Information

This includes but is not limited to contact details, work history, salary details and any previous correspondence we have had with you as a business

  • Call Recordings

All our inbound & outbound calls are recorded for training and monitoring purposes, this is stated clearly on our website, email signatures and candidates are notified of this as part of our automated phone answering system

  • Video Interview Recordings

We have the ability to record any video interviews completed on our online platform, prior to any recording taking place your consultant will gain your explicit consent for the recording to take place and be submitted to a client

  • Email Correspondence

All e-mail and SMS correspondence between McCarthy and candidates is facilitated through our database, which automatically tracks, processes & stores correspondence

  • Eligibility to Work Documents

Where needed we collect information regarding your right to work within the EU, this includes but is not limited to identification such as a passport, birth certificate and national insurance details

  • Equality & Diversity

We are committed to being an equal opportunities employer, in order to ensure this is the case we hold data which includes but is not limited to gender, marital status, ethnic origin, date of birth, disabilities and unspent or pending criminal convictions

  • IT & Website Data

Our Website uses both session and performance cookies, as well as heatmaps

How do we use your information?

We process the data listed in this policy as it is vital to the recruitment process. Without processing this data, we are unable to provide you with the primary service we offer as a business as a recruitment agency. The data we collect helps us understand both your personal and professional circumstances, enabling us to facilitate future employment opportunities. The information is held, used and disclosed by us as follows:

  1. To provide our services to you
  2. To maintain a business relationship, where you are a user of our website, a client, candidate or employee
  3. To enable you to submit your CV to job applications
  4. To match your details with job vacancies & assist us in finding a position that is suitable to you and send your personal details to clients after we have gained your explicit consent
  5. To answer your queries
  6. To offer direct market services, advise you of news and industry updates, events and other information. Where we do this you will be able to unsubscribe from these marketing communications
  7. To fulfil contractual obligations with our clients
  8. To third parties who perform functions on our behalf and who also provide services to us, such as IT consultants carrying out testing and development work on our business technology systems and our website provider. These third parties comply with similar undertakings of privacy and confidentiality as McCarthy Recruitment
  9. We may also be asked to release personal information to regulatory or law enforcement agencies if they require us to do so
  10. Our website may also use a website recording service which can record mouse clicks & movement, page scrolling and keyed text. Data collected from this service is used to improve our website usability and is used for aggregated and statistical reporting.

Who we share your information with

We will only share your information;

  • When we have your permission
  • Where we have to do so, or where we are allowed to do so by law
  • With regulatory bodies and authorities
  • With other companies that help us to provide our services
  • With our clients in order to provide job matching services

How will you use my information to contact me?

If you provide us with an email address or mobile phone number, we may send you emails or text messages about your employment search. As text and emails can be intercepted, we keep all confidential information to a minimum and you should never send us any confidential information via text or email.

Will you send me marketing information?

We will send you tailored marketing information via email if you have given us explicit consent to do so via our website. We will only send you information that we think you would like to hear about, based on the preferences you have set. You can opt out of email marketing at any time by either using the unsubscribe options listed at the bottom of each email, or by emailing us at GDPR@mccarthyrecruitment.com with a written request to adjust your marketing preferences.

How long will you keep my information?

We keep your information for as long as we need to for legitimate business purposes and for legal and regulatory reasons.

What will happen if you change how my information is used?

We may do this from time to time. If we think you would not expect this change, we will write and tell you about it. If we don’t hear from you within 60 days we will assume you agree to this change.

Can I see you information you hold about me, or find out more about how you use my information?

Yes, you can access all the data we hold on you by submitting a written request to:

The Data Protection Officer

McCarthy Recruitment

12a Olympic Way

Birchwood

Warrington

WA2 0YL

Or emailing us at:

GDPR@McCarthyRecruitment.com

Once we have received a written request, we will ensure that you are responded to within 30 days

GDPR

This page contains important legal information regarding the site.

GDPR – Client Policy

What is GDPR?

The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a regulation by which the European Parliament, the Council of the European Union, and the European Commission intend to strengthen and unify data protection for all individuals within the European Union (EU).

The GDPR aims to give control back to residents over their personal data and simplify and consolidate the existing Data Protection Regulations.

The GDPR comes into force across the EU on 25th May 2018

What data do we collect?

In order to provide you with our services we may collect the following data

  • Personal Information

This includes but is not limited to contact details any previous correspondence we have had with you as a business

  • Call Recordings

All our inbound & outbound calls are recorded for training and monitoring purposes, this is stated clearly on our website and candidates are notified of this as part of our automated phone answering system

  • Email Correspondence

All e-mail and SMS correspondence between McCarthy and Clients is facilitated through our database, which automatically tracks, processes & stores correspondence

  • Public Profiles

Any information or profiles which are in the public domain, such as Linked In or Facebook profiles may be collected & stored on our database

  • IT & Website Data

Our Website uses both session and performance cookies, as well as heatmaps

Why we collect & process your data

We process the data listed in this policy as it is vital to the recruitment process. Without processing this data, we are unable to provide you with the primary service we offer as a business as a recruitment agency. The data we collect helps us understand your role within the business you work for, to ensure we are offering you relevant recruitment services. The information is held, used and disclosed by us as follows:

  1. To provide our services to you
  2. To maintain a business relationship, where you are a user of our website, a client, candidate or employee
  3. To enable us to send candidate CV’s to you with the view of filling vacancies you have in the business
  4. To answer your queries
  5. To direct market services, advise you of news and industry updates, events and other information. Where we do this, you will be able to unsubscribe from these marketing communications
  6. To fulfil contractual obligations with our clients
  7. To third parties who perform functions on our behalf and who also provide services to us, such as IT consultants carrying out testing and development work on our business technology systems and our website provider. These third parties comply with similar undertakings of privacy and confidentiality as McCarthy Recruitment
  8. We may also be asked to release personal information to regulatory or law enforcement agencies if they require us to do so
  9. Our website may also use a website recording service which can record mouse clicks & movement, page scrolling and keyed text. Data collected from this service is used to improve our website usability and is used for aggregated and statistical reporting.

Our lawful basis for processing your data

After discussion with the ICO we believe that 2 of the lawful basis for data processing apply to McCarthy Recruitment, these are;

  • Explicit Consent

Explicit Consent will apply to all marketing activity sent to you through our web database

  • Legitimate Business Interests

Legitimate Business Interests will apply to all recruitment activity

How long we store your data for

We are required by law to hold your information for 5 years from the end of the tax year your data relates to, this is in order to comply with HMRC regulations.

Data Security

The company believes in the importance of responsible handling of information and the confidentiality of its employees’ and other individuals’ personal information. The Company holds and processes information about its individuals for various purposes previously outlined within this document. To view our full Data Protection Policy, please click here.

Your rights as a Client:

The GDPR provides the following rights for individuals:

  1. The right to be informed

The right to be informed encompasses McCarthy Recruitment’s obligation to provide fair processing information typically through a privacy notice. It emphasises the need for transparency over how we process personal data.

  1. The right of access

Under the GDPR, individuals have the right to obtain confirmation that their data is being processed and access to copies of their personal data. All access requests will be responded to within a calendar month.

  1. The right to rectification

Under the GDPR, individuals have the right to have their personal data rectified if it is inaccurate or incomplete. All rectification requests will be responded to within a calendar month.

  1. The right to erasure

Under the GDPR, individuals are able to request the deletion or removal of personal data where there is no compelling reason for its continued processing. The right to erasure applies in the following circumstances;

  • When the personal data is no longer necessary in relation to the purpose for which it is originally collected
  • When the individual withdraws consent
  • When the individual objects to the processing and there is no overriding legitimate interest for continuing the processing
  • The personal data has to be erased in order to comply with legal obligations
  • The personal data was unlawfully processed
  1. The right to restrict processing

Individuals have the right to restrict the processing of their personal data. When this happens, McCarthy Recruitment are permitted to store personal data but not process it further, and ensure the restriction is respected in the future. The right to restrict processing applies in the following circumstances;

  • When the individual contests the accuracy of the personal data the processing of the data will be restricted until McCarthy have verified the accuracy of the data
  • When an individual has objected to the processing and McCarthy are considering whether our legitimate business interests override those of you as an individual
  • When processing is unlawful, and the individual opposes erasure and requests restrictions instead
  • When McCarthy no longer need the personal data but the individual required the data to establish, exercise of defend a legal claim
  1. The right to data portability

The right to data portability allows individuals to obtain and reuse their personal data for their own purposes across different services. It allows them to move, copy or transfer personal data from one IT environment o another in a safe and secure way

  1. The right to object

Individuals have the right to object to processing based on legitimate interest, direct marketing and processing for purposes of scientific or historical research and statistics.

  1. Rights in relation to automated decision making and profiling

The GDPR also have provisions on automated data profiling and decision-making. McCarthy Recruitment do not employ any automated data profiling and decision-making systems.

Contact

If you have any enquiries relating to GDPR, you can contact us at GDPR@McCarthyRecruitment.com or by writing to us at:

Kate McCarthy

Data Protection Officer

McCarthy Recruitment

12a Olympic Way

Olympic Park

Birchwood

WA2 0YL

GDPR - Candidate Policy

What is GDPR?

The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a regulation by which the European Parliament, the Council of the European Union, and the European Commission intend to strengthen and unify data protection for all individuals within the European Union (EU).

The GDPR aims to give control back to residents over their personal data and simplify and consolidate the existing Data Protection Regulations.

The GDPR comes into force across the EU on 25th May 2018

What data do we collect?

In order to provide you with our services we may collect the following data

  • Personal Information

This includes but is not limited to contact details any previous correspondence we have had with you as a business

  • Call Recordings

All our inbound & outbound calls are recorded for training and monitoring purposes, this is stated clearly on our website and candidates are notified of this as part of our automated phone answering system

  • Email Correspondence

All e-mail and SMS correspondence between McCarthy and Clients is facilitated through our database, which automatically tracks, processes & stores correspondence

  • Public Profiles

Any information or profiles which are in the public domain, such as Linked In or Facebook profiles may be collected & stored on our database

  • IT & Website Data

Our Website uses both session and performance cookies, as well as heatmaps

Why we collect & process your data

We process the data listed in this policy as it is vital to the recruitment process. Without processing this data, we are unable to provide you with the primary service we offer as a business as a recruitment agency. The data we collect helps us understand your role within the business you work for, to ensure we are offering you relevant recruitment services. The information is held, used and disclosed by us as follows:

  1. To provide our services to you
  2. To maintain a business relationship, where you are a user of our website, a client, candidate or employee
  3. To enable us to send candidate CV’s to you with the view of filling vacancies you have in the business
  4. To answer your queries
  5. To direct market services, advise you of news and industry updates, events and other information. Where we do this, you will be able to unsubscribe from these marketing communications
  6. To fulfil contractual obligations with our clients
  7. To third parties who perform functions on our behalf and who also provide services to us, such as IT consultants carrying out testing and development work on our business technology systems and our website provider. These third parties comply with similar undertakings of privacy and confidentiality as McCarthy Recruitment
  8. We may also be asked to release personal information to regulatory or law enforcement agencies if they require us to do so
  9. Our website may also use a website recording service which can record mouse clicks & movement, page scrolling and keyed text. Data collected from this service is used to improve our website usability and is used for aggregated and statistical reporting.

Our lawful basis for processing your data

After discussion with the ICO we believe that 2 of the lawful basis for data processing apply to McCarthy Recruitment, these are;

  • Explicit Consent

Explicit Consent will apply to all marketing activity sent to you through our web database

  • Legitimate Business Interests

Legitimate Business Interests will apply to all recruitment activity

How long we store your data for

We are required by law to hold your information for 5 years from the end of the tax year your data relates to, this is in order to comply with HMRC regulations.

Data Security

The company believes in the importance of responsible handling of information and the confidentiality of its employees’ and other individuals’ personal information. The Company holds and processes information about its individuals for various purposes previously outlined within this document. To view our full Data Protection Policy, please click the link below

INSERT LINK TO NEW POLICY HERE

Your rights as a Client:

The GDPR provides the following rights for individuals:

  1. The right to be informed

The right to be informed encompasses McCarthy Recruitment’s obligation to provide fair processing information typically through a privacy notice. It emphasises the need for transparency over how we process personal data.

  1. The right of access

Under the GDPR, individuals have the right to obtain confirmation that their data is being processed and access to copies of their personal data. All access requests will be responded to within a calendar month.

  1. The right to rectification

Under the GDPR, individuals have the right to have their personal data rectified if it is inaccurate or incomplete. All rectification requests will be responded to within a calendar month.

  1. The right to erasure

Under the GDPR, individuals are able to request the deletion or removal of personal data where there is no compelling reason for its continued processing. The right to erasure applies in the following circumstances;

  • When the personal data is no longer necessary in relation to the purpose for which it is originally collected
  • When the individual withdraws consent
  • When the individual objects to the processing and there is no overriding legitimate interest for continuing the processing
  • The personal data has to be erased in order to comply with legal obligations
  • The personal data was unlawfully processed
  1. The right to restrict processing

Individuals have the right to restrict the processing of their personal data. When this happens, McCarthy Recruitment are permitted to store personal data but not process it further, and ensure the restriction is respected in the future. The right to restrict processing applies in the following circumstances;

  • When the individual contests the accuracy of the personal data the processing of the data will be restricted until McCarthy have verified the accuracy of the data
  • When an individual has objected to the processing and McCarthy are considering whether our legitimate business interests override those of you as an individual
  • When processing is unlawful, and the individual opposes erasure and requests restrictions instead
  • When McCarthy no longer need the personal data but the individual required the data to establish, exercise of defend a legal claim
  1. The right to data portability

The right to data portability allows individuals to obtain and reuse their personal data for their own purposes across different services. It allows them to move, copy or transfer personal data from one IT environment o another in a safe and secure way

  1. The right to object

Individuals have the right to object to processing based on legitimate interest, direct marketing and processing for purposes of scientific or historical research and statistics.

  1. Rights in relation to automated decision making and profiling

The GDPR also have provisions on automated data profiling and decision-making. McCarthy Recruitment do not employ any automated data profiling and decision-making systems.

Contact

If you have any enquiries relating to GDPR, you can contact us at GDPR@McCarthyRecruitment.com or by writing to us at:

Kate McCarthy

Data Protection Officer

McCarthy Recruitment

12a Olympic Way

Olympic Park

Birchwood

WA2 0YL

Our Divisions:     Retail Stores   |   Executive   |   HR   |   Head Office  |  Hospitality   |   New Stores                Our awards and achievements