This privacy statement sets out how BrightSpark Recruitment complies with UK and European Union data protection requirements, this applies to the entire BirghtSpark website.
BrightSpark Recruitment is committed to protecting the privacy of our users. We will use our best efforts to ensure that the information you give us remains private and that the information is only used for the purposes set out in this policy. For your protection, we are registered under the Data Protection Act 1998 and have given all appropriate notifications to the Information Commissioner.
Collection of personal information
If you contact us via a form on our website your name, email and other personal information will be stored. This information will only be used by BrightSpark Recruitment to contact you and to enable us to assist you efficiently. You may also send us your CV via this website. Your CV will be sent to prospective employers but only where you give your consent. If you wish us to remove any personal details we hold about you, please email us at info@brightspark-recruitment.co.uk. However we are required to retain certain information for a number of years in order to comply with our statutory obligations and to meet DTI requirements. Any personal information you submit to our website, for whatever purpose, is held in the strictest confidence and will not be disclosed to a third party without your express permission, unless legally required.
Data Protection Act 1998 (the Act)
In relation to obtaining information, the first data protection principle states that personal data shall be processed fairly and lawfully and, in particular, shall not be processed unless:
a) at least one of the conditions in Schedule 2 is met, and
b) in the case of sensitive personal data, at least one of the conditions in Schedule 3 is also met.
Part of processing personal data fairly involves providing individuals with certain information about the processing of their personal data. This information, known as fair processing information, should normally be provided or made readily available when the personal data are first obtained and should include:
a) The identity of the data controller,
b) If the data controller has a nominated representative for the purposes of this Act, the identity of that representative,
c) The purpose or purposes for which the personal data are or are intended to be processed, and
d) Any further information which is necessary, having regard to the specific circumstances in which the data are or are to be processed, to enable processing in respect of the individual to be fair.
In deciding whether, and if so, what, further information is necessary to satisfy the point above, data controllers should consider what processing of personal data they will be carrying out once the data have been obtained and consider whether or not individuals are likely to understand the following:
a) the purposes for which their personal data are going to be processed;
b) the likely consequences of such processing such that the individual is able to make a judgement as to the nature and extent of the processing; and
c) whether particular disclosures can be reasonably envisaged.
I hope that this information is helpful for you. If you need any further information, please do not hesitate to contact us at BrightSpark.