We are fully registered with the Information Commissioners Office for the Data Protection Regulations. Reference ZB967571
USE of DATA
The core service we offer to our candidates and clients is the introduction of candidates to our clients for the purpose of temporary or permanent engagement. However, our service expands to supporting individuals throughout their career and to supporting businesses’ resourcing needs and strategies.
COMMUNICATION
From time to time we may contact you with a job opportunity, if you are a Candidate. If you are a Client, to ascertain if you have any recruitment requirements.
THE RIGHT to be INFORMED
For full details of our obligation to process information fairly, please see our Privacy Notice below.
THE RIGHT of ACCESS
You have the right to access what data is being processed on your behalf and this can be accessed by making a Subject Access Request (SAR) at andrea@lennardbusinessservices.co.uk
DATA ACCESS REQUESTS
There is no charge to request a copy of your data and we can usually provide this within 30 days of the request.
THE RIGHT to RECTIFICATION
If the data we hold is inaccurate, you have the right to request this to be corrected.
THE RIGHT to WITHDRAW CONSENT
You have the right to withdraw your consent at any time, by sending a request to andrea@lennardbusinessservices.co.uk
THE RIGHT to ERASURE
Should you wish for your data to be erased completely, this can be done by email to andrea@lennardbusinessservices.co.uk
We will only retain data that we are legally obliged to or if there is a business legitimate reason.
THE RIGHT to RESTRICT PROCESSING
You have the right to block, object or suppress any of your personal data, via andrea@lennardbusinessservices.co.uk
THE RIGHT to DATA PORTABILITY
You have the right to request a copy of your data, for you to transfer it to another service, andrea@lennardbusinessservices.co.uk
THE RIGHT to OBJECT
Although we may be lawfully allowed to process your data, you can to object to the processing of that data, andrea@lennardbusinessservices.co.uk
RIGHTS to AUTOMATED DECISION MAKING PROFILING
You have the right to request a non-automated, i.e. without human intervention, processing of your data. andrea@lennardbusinessservices.co.uk
RETENTION POLICY
The default standard retention period for data is 6 years plus current, otherwise known as 6 years + 1. This is defined as 6 years after the last entry in a record followed by first review and/or destruction to be carried out in the additional current (+ 1) accounting year. Records must only be retained beyond the default retention period if their retention can be justified for statutory, regulatory, legal or security reasons or for their historic value.
SECURITY and DATA PROCESSING
Your data will be held on our Client Record Management (CRM) System, which is stored on our Server and backed up to a UK based secure cloud service.
DATA BREACH
In the unlikely event that your data has been obtained by a third party without our consent, and leads to the destruction, loss, alteration, unauthorised disclosure of, or access to, personal data.
We will notify the relevant supervisory authority, within 72 hours, of a breach where it is likely to result in a risk to the rights and freedoms of individuals such as discrimination, damage to reputation, financial loss, loss of confidentiality or any other significant economic or social disadvantage.
Where a breach is likely to result in a high risk to the rights and freedoms of individuals, we will notify those concerned directly. A ‘high risk’ means the threshold for notifying individuals is higher than for notifying the relevant supervisory authority. For example, if workers bank details are accessed or stolen.
LEGITIMATE INTEREST
We believe we have a Legitimate Interest; If an individual publicises their CV on a CV Database (CVDB) and this is available to view by us, the Customer of the CVDB, for us to consider them for job opportunities. The individual responds to an advertisement for a job opportunity. This is in the open domain and thus enables us as a recruiter to access their CV and data as a subscriber to that job board. We will only contact individuals with a specific job opportunity, if you are a Candidate. If you are a Client, we will contact you to ascertain your recruitment requirements.
Lennard Business Services Ltd (”We”) are committed to protecting and respecting your privacy.
The information you give us or we collect about you may include your name, address, private and corporate e-mail address and phone number, financial information, national insurance number, compliance documentation such as passports and share codes and references verifying your qualifications and experience and your right to work in the United Kingdom, curriculum vitae and photograph, links to your professional profiles available in the public domain e.g. LinkedIn, CV Library, Indeed or similar corporate websites.
ACCEPTABLE USE POLICY
The Acceptable Use Policy (AUP) aims to protect all users of Lennard Business Services Ltd equipment and data and minimise risk by providing clarity on the behaviours expected and required by our employees, Agents, Service Providers, Contractors and Consultants. It sets a framework on how to conduct our business to meet legal, contractual and regulatory requirements and defines how individuals must behave in order to comply with this policy.
To ensure that individuals understand their responsibilities for the appropriate use of our information technology resources. Understanding what is expected will help individuals to protect themselves, and our equipment, information and reputation and ensure that there is clear accountability. Our Security and Data Protection Team will regularly assess for compliance with this policy and may need to inspect physical locations, technology systems, design and processes and speak to people to facilitate this. Our IT Services will use software filters to block access to some online websites and services. Lennard Business Services Ltd accepts no responsibility or liability for any data losses, breaches or IT malware issues arising from outside parties linking to our website. We are fully covered by our IT protection software McAfee Professional and also internal protection provided by our website provider, GoDaddy Airo.