General Data Protection Regulation

Similar documents
PRIVACY NOTICE RNOH Trust Employees & Temporary workers

Data Protection Employee Privacy Notice

Network Rail internal privacy notice

GDPR P4 Privacy Policy Statement & Guidance for Employees and External Providers

What personal details do we hold

LIFE STYLE CARE PLC. Privacy Statement for Employees. August 2018

Depending on the circumstances, we may collect, store, and use the following categories of personal information about you:

PRIVACY NOTICE FOR JOB APPLICANTS

GDPR DATA PROCESSING NOTICE FOR FS1 RECRUITMENT UK LTD FOR APPLICANTS AND WORKERS

RECRUITMENT PRIVACY NOTICE

GDPR Privacy Notice for Staff

This privacy notice applies to School staff, including employees, workers, secondees and contractors.

DATA PROTECTION POLICY 2018

RECRUITMENT PRIVACY NOTICE

University of Suffolk. Privacy Information Notice for Employees and other Workers

GDPR privacy notice: Applicants to a new role

Workforce Privacy Notice

UoW takes measures to enable data to be restored and accessed in a timely manner in the event of a physical or technical incident.

STAFF PRIVACY NOTICE

Scottish Charity Number SC Dingwall Baptist Church DATA PROTECTION POLICY

You can contact us directly at Dechert LLP, 160 Queen Victoria Street, London, EC4V 4QQ, United Kingdom or by ing

GDPR Policy of Lovedaycare Nursery

Alwoodley Golf Club. Privacy Notice for Employees, Workers, Officers and Consultants

Section a What this Policy is for Policy Statement. 2. Why this policy is important... 3

Privacy Notice. If you wish to know more about our approach to Data Protection please read this Privacy Notice.

NEW LIFE BAPTIST CHURCH NORTHALLERTON DATA PROTECTION POLICY. Adopted: 20 June 2018 To be reviewed: June 2021

Union Employees Privacy Statement

Job applicant privacy notice (compliant with the General Data Protection Regulations (GDPR)

EARLS HALL BAPTIST CHURCH DATA PROTECTION POLICY

We reserve the right to update this privacy notice at any time. Please check our website from time to time for any changes we may make.

CURTIS BANKS LIMITED. Privacy Information Notice (for employees) curtisbanks.co.uk

CURTIS BANKS LIMITED. Privacy Information Notice (for employees) curtisbanks.co.uk

SCHOOLS DATA PROTECTION POLICY. Guidance Notes for Schools

THE COMPETITION AND CONSUMER PROTECTION COMMISSION JOB APPLICANT PRIVACY NOTICE 1. INTRODUCTION... 2

Swansea University Recruitment Privacy Policy

BRADFORD DIOCESAN ACADEMIES TRUST

Privacy Notice for Staff

SAFFRON WALDEN COMMUNITY CHURCH DATA PROTECTION POLICY. Adopted: [ ]

Recruitment/appointment including assessing your job application

Data Protection Policy

DATA PROTECTION POLICY

DATED. 14 th MAY 2018 GDPR PRIVACY NOTICE FOR TRUSTEES, EMPLOYEES, VISITORS, STUDENTS, CHILDREN ATTENDING

DATA PROTECTION POLICY

WORLEYPARSONS RECRUITMENT PRIVACY NOTICE

Guidance and Example of a Privacy Notice Form

Privacy Notice: All staff

The current version (July 2018) is derived from, and supersedes, the version published in February 2017 and earlier versions.

Baptist Union of Scotland DATA PROTECTION POLICY

Processing Your Personal Data - The Headlines

HYDRASUN LTD RECRUITMENT PRIVACY NOTICE

Wesley House data protection statement and privacy notice (staff)

Getting ready for the new data protection laws A guide for small businesses, charities and voluntary organisations

Privacy notice for the school workforce (all staff) The personal data we hold

Privacy Notice Work Force

THE PORTSMOUTH GRAMMAR SCHOOL

The Data Controller for all personal data stored and processed by Horiba MIRA Ltd is:

DATA PROTECTION POLICY

DIGITGAIN LTD. Rectory Road, Padworth Common, West Berkshire, RG7 4JD Tel: DATED GDPR PRIVACY POLICY FOR EMPLOYEES,

TCS Privacy Notice - Staff

Recruitment Privacy Notice

Privacy notice for the school workforce

Severn Trent candidate privacy policy. Updated: July 2018

Wellington College Belfast

DATED: 25/05/2018 GDPR PRIVACY NOTICE FOR HOPES & DREAMS LTD FOR EMPLOYEES, CHILDREN ATTENDING A GROUP NURSERY AND THEIR PARENTS

LPC Law Recruitment Privacy Notice

James Calvert Spence College. Privacy Notice for Staff. Date: 13/01/2019

Data Protection Policy

RECORD OF PROCESSING ACTIVITIES ST CUTHBERT S CATHOLIC HIGH SCHOOL

HR Garda Vetting Privacy Notice. Kerry County Council Comhairle Contae Chiarraí

Privacy Notice. The Kind of Information We Hold About You

Foundation trust membership and GDPR

Trinity is committed to protecting the privacy and security of personal data.

Privacy Notice (How we use school workforce information)

PRIVACY NOTICE FOR STAFF

EDWARDS COMMERCIAL CLEANING SERVICES LTD and EDWARDS COMMERCIAL CLEANING (NORTH) LTD Data Protection Policy for Employees, Workers and Consultants

Search Consultancy Limited Privacy Notice

The Society of St Stephen s House Site Security and Monitoring Privacy Notice

Abercorn Care Limited Employment Application Form

The Heathland School. Privacy notice for staff

INTERNATIONAL WHAT GDPR MEANS FOR RECORDS MANAGEMENT

P Drive_GDPR_Data Protection Policy_May18_V1. Skills Direct Ltd ( the Company ) Data protection. Date: 21 st May Version: Version 1.

GENERAL DATA PROTECTION REGULATION Guidance Notes

LAST UPDATED June 11, 2018 DATA PROTECTION POLICY. International Foundation for Electoral Systems

GDPR for Employers DUBLIN / BELFAST / LONDON / NEW YORK / SAN FRANCISCO / PALO ALTO

Privacy Notice For job applicants and our current and former employees/volunteers.

Employee Privacy Notice

SHAREHOLDERS PRIVACY NOTICE

This privacy notice applies to attendees, organisers and others involved in Merton College s conferences and events

[STAFF DATA PROTECTION NOTICE]

Transcription:

General Data Protection Regulation Draft Privacy Notice for employees November 2017 www.uk.coop/gdprtoolkit

This is a draft document which provides a widely drafted privacy notice to allow data to be processed under a number of grounds and for a number of purposes. It will be reviewed after the Data Protection Bill has been finalised and the ICO has provided interpretation of the GDPR requirements. Privacy Notice How your information will be used 1. As your employer, the Company needs to keep and process information about you for normal employment purposes. The information we hold and process will be used for our management and administrative use only. We will keep and use it to enable us to run the business and manage our relationship with you effectively, lawfully and appropriately, during the recruitment process, whilst you are working for us, at the time when your employment ends and after you have left. This includes using information to enable us to comply with the employment contract, to comply with any legal requirements, pursue the legitimate interests of the Company and protect our legal position in the event of legal proceedings. If you do not provide this data, we may be unable in some circumstances to comply with our obligations and we will tell you about the implications of that decision. 2. As a company pursuing [INCLUDE A STATEMENT ABOUT WHAT YOUR BUSINESS DOES] activities, we may sometimes need to process your data to pursue our legitimate business interests, for example to prevent fraud, administrative purposes or reporting potential crimes. The nature of our legitimate interests are [INSERT HERE]. We will never process your data where these interests are overridden by your own interests. 3. Much of the information we hold will have been provided by you, but some may come from other internal sources, such as your manager, or in some cases, external sources, such as referees. 4. The sort of information we hold includes your application form and references, your contract of employment and any amendments to it; correspondence with or about you, for example letters to you about a pay rise or, at your request, a letter to your mortgage company confirming your salary; information needed for payroll, benefits and expenses purposes; contact and emergency contact details; records of holiday, sickness and other absence; information needed for equal opportunities monitoring policy; and records relating to your career history, such as training records, appraisals, other performance measures and, where appropriate, disciplinary and grievance records [INSERT ANY FURTHER CATEGORIES HERE]. 5. You will, of course, inevitably be referred to in many company documents and records that are produced by you and your colleagues in the course of carrying out your duties and the business of the company. You should refer to the Data Protection Policy which is available on the intranet or in paper format from [ADDRESS]. 6. Where necessary, we may keep information relating to your health, which could include reasons for absence and GP reports and notes. This information will be used in order to comply with our health and safety and occupational health obligations to consider how your health affects your ability to do your job and whether any adjustments to your job might be appropriate. We will also need this data to administer and manage statutory and company sick pay, [ADD BENEFITS e.g. health insurance or life insurance policies]. 7. Where we process special categories of information relating to your racial or ethnic origin, political opinions, religious and philosophical beliefs, trade union membership, biometric data or sexual orientation, we will always obtain your explicit consent to those activities unless this is not required by law or the information is required to protect your health in an emergency. 1

Where we are processing data based on your consent, you have the right to withdraw that consent at any time. 8. In addition, we monitor computer [and telephone/mobile telephone] use, as detailed in our Computer/telephone/electronic communications/expenses policy, available [in the company handbook/on the intranet].[we also keep records of your hours of work by way of our clocking on and off system, as detailed in the company handbook/intranet]. 9. Other than as mentioned below, we will only disclose information about you to third parties if we are legally obliged to do so or where we need to comply with our contractual duties to you, for instance we may need to pass on certain information to [our external payroll provider], pension or health insurance schemes. 10. We may transfer information about you to other group companies for purposes connected with your employment or the management of the company s business. 11. In limited and necessary circumstances, your information may be transferred outside of the EEA or to an international organisation to comply with our legal or contractual requirements. We have in place safeguards including [LIST OF SAFEGUARDS] to ensure the security of your data. A copy of the safeguards can be obtained from [INSERT HERE]. 12. We do use automated decision making (including profiling) in limited circumstances including to [INSERT DETAILS]. [INCLUDE INFORMATION ABOUT THE LOGIC INVOLVED, THE SIGNIFICANCE AND ENVISAGED CONSEQUENCES OF THAT PROCESSING]. 13. Your personal data will be stored for a period of [INSERT PERIOD HERE] or the criteria used for determining how long your data will be stored for is [INSERT CRITERIA HERE]. 14. If in the future we intend to process your personal data for a purpose other than that which it was collected we will provide you with information on that purpose and any other relevant information. Your rights 15. Under the General Data Protection Regulation (GDPR) and The Data Protection Act 2018 (DPA) you have a number of rights with regard to your personal data. You have the right to request from us access to and rectification or erasure of your personal data, the right to restrict processing, object to processing as well as in certain circumstances the right to data portability. 16. If you have provided consent for the processing of your data you have the right (in certain circumstances) to withdraw that consent at any time which will not affect the lawfulness of the processing before your consent was withdrawn. 17. You have the right to lodge a complaint to the Information Commissioners Office if you believe that we have not complied with the requirements of the GDPR or DPA 18 with regard to your personal data. Identity and contact details of controller and data protection officer 18. [NAME OF COMPANY] is the controller [and processor] of data for the purposes of the DPA 18 and GDPR. 2

19. If you have any concerns as to how your data is processed you can contact: [[NAME] Data Protection Offer at [EMAIL ADDRESS]] [NAME] [JOB TITLE] at [EMAIL ADDRESS] or you can write to these individuals using the address of [ ]. 3

Co-operatives UK is the network for Britain s thousands of co-operatives. We work together to promote, develop and unite member-owned businesses across the economy. From high street retailers to community owned pubs, fan-owned football clubs to farmed controlled businesses, co-operatives are everywhere and together they are worth 36 billion to the British economy. www.uk.coop/hrservices Contact our advice team to discuss how it could benefit your co-op. T: 0161 214 1750 E: advice@uk.coop 4

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback