|Drax is the “controller” and responsible for your personal data.
We have appointed a data protection officer (DPO) who is responsible for overseeing questions in relation to this privacy notice. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact the DPO using the following details: Mr David Bishop via firstname.lastname@example.org
You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.
|2.||Information We Collect From You|
|We will collect and process the following data about you:|
|4.||Uses Made Of That Information|
|We use information held about you in the following ways:|
|5.||Disclosure Of Your Information|
|You agree that we have the right to share your personal information with:|
|We will disclose your personal information to third parties:|
|We generally do not transfer your personal data outside the European Economic Area (EEA). There are limited situations and certain circumstances that may require your personal data to be transferred outside of the EEA, For example, in relation to our customer relationship management system; the role that you are being considered for may require us to transfer your personal data out of the EEA to the potential employer, or may require us to seek references from previous employers outside of the EEA. In selected services we also offer potential employers a portal access to a secure log in area to post vacancies and review candidates which is hosted via a third party which may be outside of the EEA (at the date of this policy this is current via Amazon). In such circumstances we ensure a similar degree of protection is afforded to your data by ensuring at least one of the following safeguards is implemented:|
|6.||Where We Store Your Personal Data|
All information you provide to us is stored on our secure servers. In order to assist in the performance of our services, the data that we collect from you may also be transferred to, and stored at, a destination outside the EEA as noted above. It will also be processed by staff operating outside the EEA who work for us or for one of our suppliers. This includes staff engaged in, among other things, the fulfilment of services to you and the provision of support services. By submitting your personal data, you agree to this transfer, storing or processing.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
|You have the right to ask us not to process your personal data for marketing purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes. You can also exercise the right at any time by contacting us at email@example.com.
Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
|8.||Access To Information|
|You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.