1. | Controller |
| Drax is the “controller” and responsible for your personal data. We have appointed a data protection officer (DPO) who is responsible for overseeing questions in relation to this privacy notice. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact the DPO using the following details: Mr David Bishop via drb@draxexecutive.com You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance. |
2. | Information We Collect From You |
| We will collect and process the following data about you: |
| 2.1. | Information you give us. This is information about you that you give us by filling in forms on our site or by corresponding with us by phone, e-mail or otherwise. It includes information you provide when you register to use our site, subscribe to our service, and when you report a problem with our site. The information you give us may include your name, address, e-mail address and phone number, personal description and photograph, work history, medical conditions, family circumstances, leisure pursuits, remuneration details and other general information which you might provide. | 2.2. | Information we collect about you. With regard to each of your visits to our site we will automatically collect the following information: | | 2.2.1. | technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, and the operating system and platform; | 2.2.2. | information about your visit, including the full Uniform Resource Locators (URL), clickstream to, through and from our site (including date and time), products you viewed or searched for’ page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), methods used to browse away from the page, and any phone number used to call our customer service number. |
| 2.3. | Information we receive from other sources. This is information we receive about you if you use any of the other websites we operate or the other services we provide – this may also include references received from previous employers, reference agencies or other third parties. We are working closely with third parties who may supply additional information to us including, for example, potential employers, business partners, advertising networks, analytics providers, and search information providers. |
|
3. | Cookies |
| Our website uses cookies to distinguish you from other users of our website. This helps us to provide you with a good experience when you browse our website and also allows us to improve our site. For detailed information on the cookies we use and the purposes for which we use them see our Cookie policy https://www.draxexecutive.com/EUCookieLaw.aspx. |
4. | Uses Made Of That Information |
| We use information held about you in the following ways: |
| 4.1. | Information you give to us. We will use this information: | | 4.1.1. | to carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products and services that you request from us; | 4.1.2. | to provide you with information about other goods and services we offer that are similar to those that we have already provided or that have enquired about; | 4.1.3. | to notify you about changes to our services; | 4.1.4. | to ensure that content from our site is presented in the most effective manner for you and for your computer. |
| 4.2. | Information we collect about you. We will use this information: | | 4.2.1. | In the same manner as described above under the “Information you give us” section; | 4.2.2. | to administer our site and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes; | 4.2.3. | to improve our site and services; | 4.2.4. | to allow you to participate in interactive features of our service, when you choose to do so; | 4.2.5. | as part of our efforts to keep our site and services safe and secure; | 4.2.6. | to measure or understand the effectiveness of content we serve to you and others, and to deliver relevant content to you; | 4.2.7. | to make suggestions and recommendations to you and other users of our site about services that may interest you or them. |
| 4.3. | Information we receive from other sources. We will combine this information with information you give to us and information we collect about you. We will use this information and the combined information for the purposes set out above (depending on the types of information we receive). | 4.4. | Marketing. We strive to provide you with choices regarding certain personal data uses, particularly around marketing and advertising. We have established the following personal data control mechanisms: | | Promotional offers from us | We may use your identity, contact information, technical data, and other profile data that we collect to form a view on what we think you may want or need, or what may be of interest to you. This is how we decide which products, services and offers may be relevant for you (we call this marketing). | Third-party marketing | We will get your express opt-in consent before we share your personal data with any company outside the Drax group of companies for marketing purposes. | Opting out | You can ask us or third parties to stop sending you marketing messages at any time by contacting us to adjust your marketing preferences or by following the opt-out links on any marketing message sent to you or by contacting us at any time. Where you opt out of receiving these marketing messages, this will not apply to personal data provided to us as a result of our provision of services to you. |
|
|
5. | Disclosure Of Your Information |
| You agree that we have the right to share your personal information with: |
| 5.1. | Any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006. | 5.2. | Selected third parties including: | | 5.2.1. | where you are a candidate, previous employers in relation to possible references and potential employers as part of our services to you; | 5.2.2. | business partners, suppliers and sub-contractors for the performance of any contract we enter into with them or you; and | 5.2.3. | analytics and search engine providers that assist us in the improvement and optimisation of our site. |
|
|
| We will disclose your personal information to third parties: |
| 5.3. | In the event that we sell or buy any business or assets, in which case we will disclose your personal data to the prospective seller or buyer of such business or assets. | 5.4. | If Drax Executive Limited or substantially all of its assets are acquired by a third party, in which case personal data held by it about its clients, contacts, candidates etc. will be one of the transferred assets. | 5.5. | If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our terms of use https://www.draxexecutive.com/TermsAndConditions and other agreements; or to protect the rights, property, or safety of Drax Executive Limited, our clients, contacts, candidates, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction. |
|
| We generally do not transfer your personal data outside the European Economic Area (EEA). There are limited situations and certain circumstances that may require your personal data to be transferred outside of the EEA, For example, in relation to our customer relationship management system; the role that you are being considered for may require us to transfer your personal data out of the EEA to the potential employer, or may require us to seek references from previous employers outside of the EEA. In selected services we also offer potential employers a portal access to a secure log in area to post vacancies and review candidates which is hosted via a third party which may be outside of the EEA (at the date of this policy this is current via Amazon). In such circumstances we ensure a similar degree of protection is afforded to your data by ensuring at least one of the following safeguards is implemented: |
| 5.6. | we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe; or | 5.7. | where the relevant party is located within the US, we may transfer data to them if they are part of the Privacy Shield which requires them to provide similar protection to personal data shared between the Europe and the US. |
|
6. | Where We Store Your Personal Data |
| We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this privacy policy. All information you provide to us is stored on our secure servers. In order to assist in the performance of our services, the data that we collect from you may also be transferred to, and stored at, a destination outside the EEA as noted above. It will also be processed by staff operating outside the EEA who work for us or for one of our suppliers. This includes staff engaged in, among other things, the fulfilment of services to you and the provision of support services. By submitting your personal data, you agree to this transfer, storing or processing. Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access. |
7. | Your Rights |
| You have the right to ask us not to process your personal data for marketing purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes. You can also exercise the right at any time by contacting us at consult@draxexecutive.com. Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites. |
8. | Access To Information |
| You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances. We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response. We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated. |
9. | Changes To Our Privacy Policy |
| Any changes we make to our privacy policy in the future will be posted on this page and, where appropriate, notified to you by e-mail. Please check back frequently to see any updates or changes to our privacy policy. |
10. | Contact |
| Questions, comments and requests regarding this privacy policy are welcomed and should be addressed to The Data Protection Officer, Drax Executive Limited, Savoy Hill House, 7-10 Savoy Hill, London WC2R 0BU or contact@draxexecutive.com. |
