As your potential employer, Cendyn needs to keep and process information about you for normal employment purposes. The information we hold and process will be used for our management and administrative use only. We will keep and use it to enable us to run the business and manage our relationship with you effectively, lawfully and appropriately, during the recruitment process, whilst you are working for us, at the time when your employment ends and after you have left. This includes using information to enable us to comply with the employment contract, to comply with any legal requirements, pursue the legitimate interests of the Company and protect our legal position in the event of legal proceedings. If you do not provide this data, we may be unable in some circumstances to comply with our obligations and we will tell you about the implications of that decision.
As a company pursuing software development and digital marketing services, we may sometimes need to process your data to pursue our legitimate business interests, for example to prevent fraud, administrative purposes or reporting potential crimes. We will never process your data where these interests are overridden by your own interests.
Much of the information we hold will have been provided by you, but some may come from other internal sources, in case you have been referred by a current Cendyn employee, or in some cases, external sources, such as external referees.
The sort of information we hold includes your application form and references, your CV, correspondence with or about you and other information may be needed to make a hiring decision.
You may, of course, inevitably be referred to in many company documents and records that are produced by you and our hiring team during the recruitment process.
Where we process special categories of information relating to your racial or ethnic origin, political opinions, religious and philosophical beliefs, trade union membership, biometric data or sexual orientation, we will always obtain your explicit consent to those activities unless this is not required by law or the information is required to protect your health in an emergency. Where we are processing data based on your consent, you have the right to withdraw that consent at any time.
Other than as mentioned below, we will only disclose information about you to third parties if we are legally obliged to do so or where we need to comply with our contractual duties to you, for instance we may need to pass on certain information to our external payroll provider, pension or health insurance schemes.
We may transfer information about you to other group companies for purposes connected with your employment or the management of the company’s business.
In limited and necessary circumstances, your information may be transferred outside of the EEA or to an international Headquarters or organization to comply with our legal or contractual requirements. We have in place safeguards including to ensure the security of your data. We regulate that only authorized personnel/HR has access to your personal records and we only communicate via GDPR compliant secure channels when information need to be shared.
Your personal data gathered during the recruitment process will be stored for a period of your employment or as any legal compliance requires.
If in the future we intend to process your personal data for a purpose other than that which it was collected we will provide you with information on that purpose and any other relevant information.
Under the General Data Protection Regulation (GDPR) and The Data Protection Act 2018 (DPA), UK you have a number of rights with regard to your personal data. You have the right to request from us access to and rectification or erasure of your personal data, the right to restrict processing, object to processing as well as in certain circumstances the right to data portability.
If you have provided consent for the processing of your data you have the right (in certain circumstances) to withdraw that consent at any time which will not affect the lawfulness of the processing before your consent was withdrawn.
You have the right to lodge a complaint to the designated data protection officer, e.g. Information Commissioners’ Office in the UK, if you believe that we have not complied with the requirements of the GDPR or DPA 18, UK with regard to your personal data. Identity and contact details of controller and data protection officer
Cendyn is the controller and processor of data for the purposes of the DPA 18 UK and GDPR.
If you have any concerns as to how your data is processed you can contact: Data Protection Officer: DPO@cendyn.com EU Representative: EURep@cendyn.com Human Resources: HR@cendyn.com