Privacy policy

1.   WHO WE ARE

For the purposes of data protection legislation Computer Resources Group (UK) Limited is the data controller and we will process your personal data in accordance with the General Data Protection Regulation (EU) 2016/679 and national laws which relate to the processing of personal data. .

2.   HOW WE COLLECT INFORMATION

2.1   Visitors to our website

We may collect and process personal data about you:

2.1.1   when you complete forms on our website including your name, email address, contact telephone number which is provided at the time of registering to use our website, subscribing to our services, requesting further services;

2.1.2   whenever you provide information when reporting a problem with our website, making a complaint, making an enquiry or contacting us for any other reason.

2.1.3   details of your visits to our website including, but not limited to, traffic data, location data, weblogs and other communication data, whether this is required for our own purposes or otherwise, and the resources that you access (see section 2.2.2 on Cookies below)

2.1.4   whenever you disclose your information to us, or we collect information from you in any other way, through our website.

2.2   We may also collect data in the following ways:

2.2.1   IP Address   We may collect information about your device, including where available your Internet Protocol address for fraud protection. We may also collect information about your device’s operating system and browser type, for system administration and to report aggregate information. This is statistical data about our users' browsing actions and patterns, and does not identify any individual.

2.2.2   Cookies   Our Site uses cookies to distinguish you from other users of our website. This helps us to provide you with a good experience when you browse our website and also allows us to improve our website. For detailed information on the cookies we use and the purposes for which we use them see our Cookie Policy.

2.2.3   Website Links   Our website may contain links to and from the websites of third parties. If you follow a link to any of these websites, such websites will apply different terms to the collection and privacy of your personal data and we do not accept any responsibility or liability for these policies. Please check before you submit your information to these websites.

3.   CUSTOMERS

3.1       We will collect details such as your name, email address, contact telephone number, address, bank details when you order services from us either via our website, by email, facsimile, post, by telephone (we may also record the conversation), if you complete an order form or send us a request. We will use this information to process your order and comply with our contractual obligations.

3.2       In order to perform our contract with you, we may also need to share personal data with third parties such as payment providers, sub-contractors, suppliers and postal service organisations to assist in the delivery or performance of services you have ordered;

3.3       We may also advertise your feedback on our website and marketing materials (subject to obtaining your prior consent where necessary);

3.4       We may use your personal data in an anonymous form to analyse our client, customer or candidate profiles and for statistical purposes. We may share this anonymised statistical information with third parties as part of market research purposes.

3.5       We will retain your information as long as we require this to provide you with the services ordered from us and for a period of 7 years afterwards, subject to an annual review. Where you have subscribed to receive marketing correspondence from us we will keep personal data until you unsubscribe from receiving such correspondence from us.

4.   SUPPLIERS

We will collect details such as your name, email address, contact telephone number, address, and bank details in order to contact you about goods or services ordered with you and to place further orders. We will keep the personal data for 7 years further to being provided with the goods/services, subject to an annual review.

5.   HOW WE USE YOUR INFORMATION

5.1   Legal Basis for Processing your Personal Data

We process your personal data for the following reasons:

5.1.1   for performance of a contract we enter into with you;

5.1.2   where necessary for compliance with a legal obligation we are subject to; and

5.1.3   for our legitimate interests (as described within this policy).

 

5.2   Legitimate Interests

We may use your personal data for the legitimate interests of Computer Resources Group (UK) Limited in order to:

5.2.1   provide you with information or services that you requested from us;

5.2.2   perform contractual obligations to which you are party;

5.2.3   fulfil any legal obligations we are subject to;

5.2.4   allow you to participate in interactive features of our website, when you choose to do so;

5.2.5   ensure that content from our website is presented in the most effective manner for you and for your device;

5.2.6   improve our website and services;

5.2.7   process and deal with any complaints or enquiries made by you;

5.2.8   contact you for marketing purposes where you have signed up for these (see section 6 for further details).

5.3   Automated Processing

We may use information regarding past purchasing patterns in order for us to tailor our marketing material to your specific behaviour and activities.

6.   MARKETING

6.1      In addition to the uses described in sections 2-4 above, we may use Customer personal data for our legitimate interests in order to provide you with details about our services, business updates and events which we think may be of interest.

6.2      If you are not an existing client, candidate or customer but you invite us to provide information about our services, we may collect your email address, name, contact telephone number and address for the purposes of providing you with information about our goods and services or offers. We will retain such data for a period of 3 years from the point at which you provide us with your data, unless you place an order with us in which case 3.5 above will apply.

6.3     You have the right to opt-out of receiving the information detailed in section 6.1 at any time. To opt-out of receiving such information you can:

6.3.1   tick the relevant box situated in the form on which we collect your information;

6.3.2   click the unsubscribe button contained in any such communication received;

6.3.3   email us at unsubscribe@crg.co.uk providing us with your name and contact details.

7.   SHARING YOUR INFORMATION WITH THIRD PARTIES

7.1     We may disclose your information to third parties for the following legitimate interests:

7.1.1  to staff members, professional advisers, suppliers and contractors to facilitate the provision of services or information to you;

7.1.2   to our affiliated entities to support internal administration;

7.1.3   IT software providers that host our website and store data on our behalf;

7.1.4   to a prospective buyer of some or all of our business or assets, in which case personal data including personal data will also be one of the transferred assets.

7.2     We may disclose personal data to the police, regulatory bodies, legal advisors or similar third parties where we are under a legal duty to disclose or share personal data in order to comply with any legal obligation, or in order to enforce or apply our website terms and conditions and other agreements; or to protect our rights, property, or safety of our candidates, clients, customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.

7.3     We will not sell or distribute personal data to other organisations without your approval.

8.   TRANSFERS OUTSIDE OF THE EUROPEAN ECONOMIC AREA

8.1     Where permitted we may transfer your personal data to the United States and other jurisdictions outside the European Economic Area (‘EEA’) for the purposes set out in this privacy policy.

8.2     We take steps to ensure that where your information is transferred outside of the EEA, appropriate measures and controls in place to protect that information in accordance with applicable data protection laws and regulations.

8.3     By using our website or services or by interacting with us in the ways described in this privacy policy, you consent to the transfer of your information outside the EEA in the circumstances set out in this privacy policy.

9.   SECURITY AND STORAGE OF INFORMATION

9.1     Where we have given you (or where you have chosen) a password which enables you to access certain parts of our website, you are responsible for keeping this password confidential. It should not be shared with anyone.

9.2     The transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your information transmitted to our Site; any transmission is at your own risk.

9.3     Information you provide to us is shared on our secure servers. We have implemented appropriate physical, technical and organisational measures designed to secure your information against accidental loss and unauthorised access, use, alteration or disclosure. In addition, we limit access to personal data to those employees, agents, contractors and other third parties that have a legitimate business need for such access.

10.   YOUR INFORMATION AND YOUR RIGHTS

10.1     It is important that the personal data we hold about you is accurate and current. Please keep us informed if the personal data we hold about you changes.

10.2     Data protection legislation gives you the right to object to the processing of your personal data in certain circumstances or withdraw your consent to the processing of your personal data where this has been provided. You also have the right to access information held about you and for this to be provided in an intelligible form. If you would like a copy of some or all of your personal information, please send an email to dataprotection@crg.co.uk . In certain circumstances we reserve the right to charge a reasonable fee to comply with your request.

10.3     You can also ask us to undertake the following:

10.3.1   update or amend your personal data if you feel this is inaccurate;

10.3.2   remove your personal data from our database;

10.3.3   send you copies of your personal data in a commonly used format and transfer your information to another entity where you have supplied this to us, and we process this electronically with your consent or where necessary for the performance of a contract; or

10.3.4   restrict the use of your personal data.

10.4      We may request specific information from you to help us confirm your identity and your right to access, and to provide you with the personal data that we hold about you or make your requested changes. Data protection legislation may allow or require us to refuse to provide you with access to some or all the personal data that we hold about you or to comply with any requests made in accordance with your rights. If we cannot provide you with access to your personal data, or process any other request we receive, we will inform you of the reasons why, subject to any legal or regulatory restrictions.

10.5      Please send any requests relating to the above to our Data Controller at  dataprotection@crg.co.uk specifying your name and the action you would like us to take.

11.   RIGHT TO WITHDRAW CONSENT

Where you have provided your consent to the collection, processing and transfer of your personal data, you have the legal right to withdraw your consent under certain circumstances. To withdraw your consent, if applicable, please contact us at dataprotection@crg.co.uk .

12.   CHANGES TO OUR PRIVACY POLICY

We reserve the right to update this privacy policy at any time, and any changes we make to our privacy policy will be posted on this page. If we would like to use your previously collected personal data for different purposes than those we notified you about at the time of collection, we will provide you with notice and, where required by law, seek your consent, before using your personal data for a new or unrelated purpose. We may process your personal data without your knowledge or consent where required by applicable law or regulation.

13.   CONTACT US

We have appointed a Data Controller to oversee compliance with this privacy policy. If you have any questions, comments or requests regarding this policy or how we use your personal data please contact our Data Lead at; dataprotection@crg.co.uk.  This is in addition to your right to contact the Information Commissioners Office if you are unsatisfied with our response to any issues you raise at https://ico.org.uk/global/contact-us/

Last updated: 24 May 2018