The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a new regulation which replaces the Data Protection Directive (Directive 95/46/EC)
The General Data Protection Regulation builds on previous legislation but enhances privacy rights for individuals. The GDPR will apply in the UK from 25th May 2018.
Despite the UK’s intention to leave the European Union in March 2019 the GDPR will still apply in accordance with the Information Commissioner’s Office (ICO) guidance to continue a similar level of regulation post March 2019 together with a new Data Protection Act.
Your GDPR specific rights will come into effect once the GDPR becomes law on 25th May 2018. Credo Consultancy Limited is registered as a Data Controller with the Information Commissioner’s Office. Certificate number A8235024.
In general, you can visit Credo Consultancy Ltd www.credoconsultancy.co.uk and the client on-line password protected portal Credo Anywhere www.credo-anywhere.co.uk web pages without telling us who you are or revealing any Personal Information about yourself. If you choose to provide us with your Personal Information on Credo-Anywhere, we may transfer that Personal Information within Credo Consultancy Ltd as necessary.
Credo Consultancy Ltd strives to comply with all applicable UK laws that are designed to protect your privacy.
Information we collect
We may collect the following information:
name & surname
contact information including postal address, email address and telephone number
other information relevant to CV preparation
Use of Information
We collect this information for Credo internal purposes only. We do not sell or share information with any third parties.
Our main legal basis for the processing of personal data is our legitimate business interests:
To provide career coaching, career workshops, outplacement and online career services to individuals and corporate clients
To manage employee and contractor relationships
To manage our corporate rights and obligation although we will also rely on contract, legal obligation, and consent for specific uses of data.
We will rely on contract if we are negotiating or have entered into an agreement with your organisation or any other contract to provide services to you or receive services from you or your organisation.
We will rely on legal obligation if we are legally required to hold information on to you to fulfil our legal obligation, for example, our statutory obligation as an employer.
Where Credo Consultancy Ltd collects Personal Information on the web, we intend to post a purpose statement that explains why Personal Information will be collected and whether we plan to share such Personal Information outside of Credo Consultancy Ltd or those working on Credo Consultancy Ltd’s behalf. Credo Consultancy Ltd does not intend to transfer Personal Information without your consent to third parties who are not bound to act on Credo Consultancy Ltd behalf unless such transfer is legally required.
You may choose whether or not to provide Personal Information to Credo Consultancy Ltd. The notice we intend to provide where Credo Consultancy Ltd collects Personal Information on the Web should help you to make this choice. If you choose not to provide the Personal Information we request, you can still visit Credo Consultancy Ltd Web sites, but you may be unable to access certain options, offers, and services that we may provide going forward.
All information you provide to us is stored on our secure servers with a Firewall and high level anti-virus two layered protection. Wherever your Personal Information may be held within Credo Consultancy Ltd or on its behalf, we are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online and hold electronically.
Where we have given you a password which enables you to access our on-line portal Credo-Anywhere, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
To the extent that you do provide us with Personal Information, Credo Consultancy Ltd wishes to maintain accurate Personal Information. Where we collect Personal Information from you on the Web, our goal is to provide a means of contacting Credo Consultancy Ltd should you need to update or correct that Information. If for any reason those means are unavailable or inaccessible, you may send updates and corrections about your Personal Information to firstname.lastname@example.org and we will make reasonable efforts to incorporate the changes in your Personal Information that we hold as soon as practicable.
You may request details of the Personal Information which we hold about you under the The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679). If you would like a copy of the Personal Information held on you please write to us at email@example.com. You will be required to provide proof of identity and your data will be returned within 30 days of receiving the request. All personal data is accurate at the time of collection and kept accurate and up to date while it is being held and/or processed.
You also have the right to the following:
The right to prevent data being processed for direct marketing;
The right to have inaccurate personal data rectified, erased, or destroyed
You have the right to make a complaint to a supervisory body, which in the United Kingdom is the Information Commissioner’s Office. The ICO can be contacted through this link: https://ico.org.uk/concerns
Credo Consultancy Ltd and Credo-Anywhere.co.uk are not structured to attract children. Accordingly, we do not intend to collect Personal Information from anyone we know to be under 16 years of age.
A cookie is a small file which asks permission to be placed on your computer's hard drive. Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.
We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.
Overall, cookies help us provide you with a better website, by enabling us to monitor which pages you find useful and which you do not. A cookie does not give us access to your computer or any information about you, other than the data you choose to share with us.
You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.
Links to other websites
Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.
Personal data is only collected to the extent that is necessary to fulfil the purpose(s) for which it is required. No personal data is held for any longer than necessary in light of the purpose(s) for which it is required. Unwanted copies of Personal Information are disposed of securely. Any printed copies are confidentially shredded and electronic file copies are deleted after 12 months. If you wish for your data to be disposed of outside of the 12 months, you should request this in writing to firstname.lastname@example.org