PMC365 IT PROJECT MANAGEMENT CONSULTANTS
(Version 1 updated May 2018)
This statement will be updated from time to time and the most current version will always be available on our website ('our site').
Who are we?
We are PMC365 Ltd and this privacy statement applies to our company in the UK and internationally. For the purpose of the General Data Protection Regulation (Regulation (EU) 2016/679) (the GDPR), the data controller is PMC365 Ltd or the relevant subsidiary as detailed above.
What is the purpose of this statement?
We are committed to protecting the privacy and security of your personal information.
This privacy statement describes how we collect and use personal information about you during and after your working relationship with us, in accordance with the General Data Protection Regulation (GDPR) as updated from time to time. It applies to all clients, candidates and contractors. Employees of PMC365 Ltd should refer to the Employee Privacy Statement.
We will comply with data protection law. This says that the personal information we hold about you must be:
Our legal basis for using your personal data
For prospective clients, suppliers and contractors, we will only collect, store, use, process, transfer and disclose personal data in so far as it is necessary for our legitimate interests in that we need the information in order to assess suitability for potential opportunities, to find potential candidates and to contact clients and suppliers. For clients we may also rely on the need for us to perform a contract for you, for example in contacting you to discuss relevant vacancies and suitable candidates.
In the event that we need to collect and hold special category personal data about you such as health information that you or others provide about you we always ask for your consent before undertaking such processing, please see below.
What personal data will we collect from you?
We may collect, store and process the following categories of personal data:
1. Personal data you give us
You may give us personal data by filling in forms on our site or by corresponding with us by phone, e-mail or otherwise. This includes information you provide when you register to use our support portal, subscribe to our services, submit your CV to us and when you report a problem with our site.
Here are some examples of the type of personal data you may give us:
2. Special category personal data
We may collect and process special category or more sensitive personal data only so far as is necessary to ensure we conform to legal or contractual requirements, such as equal opportunities laws or obligations imposed upon us by our clients (to enable them to comply with their own legal requirements). We must have your explicit consent to collect and store such data. Special category data is any of the following:
3. Information automatically collected
We may also collect the following type of personal data when you visit our site(s):
4. Personal data we receive from other sources
We use LinkedIn and job boards and their affiliate partners as publicly available sources of personal data for opportunity and recruitment purposes. We may also receive information about you by word of mouth, for example by a recommendation from a friend, former or current employer(s) or former or current colleague(s).
How will we use your personal data?
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
How will we share or disclose your personal data?
We will not share your data to other parties without your consent unless done so in the line of business operations such as when interacting with a supplier or third party who needs to liaise with you directly. In this case only the relevant, required data will be shared
Additionally, we may share your personal data with selected third parties including:
Where is your personal data stored?
All information you provide to us is stored on our secure servers.
We will do our best to protect your personal data, although as the transmission of information via the internet is not completely secure we cannot guarantee the security of your data transmitted to us; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access, misuse or loss.
If you suspect any unauthorised access to or misuse or loss of your data, please contact us immediately using our contact details within the 'Contact us?' section lower down on this web page.
How long do we keep your personal data?
We keep your personal data in accordance with the following data retention periods:
Client personal data – 5 years since the last contact with you, where contact means addition of your personal data to our database or there is a record of verbal or written communication with you.
Contractor financial data – 7 years following the last payment made. Contractors includes any 3rd party who we have made a payment to.
We will endeavour to permanently erase your personal data once it reaches the end of its retention period or where we receive a valid request from you to do so. However some of your data may still exist within our systems. For our purposes, this data will be put beyond use, meaning that while it still exists on a system, it cannot be readily accessed by operational systems, processes or staff.
Transfer of data outside of the EEA
Your personal data may be transferred internationally in the following circumstances:
We want to make sure that your personal data is stored and transferred in a way which is secure. We will therefore only transfer data outside of the EEA where it is compliant with data protection legislation and the means of transfer provides adequate safeguards in relation to your data, for example:
Access to and correction of your information
Your duty to inform us of changes
It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal information changes during your working relationship with us.
Your rights in connection with personal data
Under certain circumstances, by law you have the right to:
If you want to verify, correct or request erasure of your personal information, object to the processing of your personal data, or request that we transfer a copy of your personal data to another party, please contact us using the details in the 'Contact us?' section lower down on this web page in writing.
You also have the right to:
We will confirm with you what the response date will be, which will usually be within one month. We are entitled to refuse the request if it is deemed excessive or a repetition of a previous request.
Changes to our privacy statement
Any changes we may make to our privacy statement in the future will be posted on this page and, where appropriate, notified to you by e-mail. Please check back frequently to see any updates or changes to our privacy statement.
Links to other sites
Our site may, from time to time, contain links to and from the sites of our partner networks, advertisers and affiliates. If you follow a link to any of these sites, please note that these sites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these sites.
Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
How will we contact you?
We may contact you by phone or email.
You can update your contact preferences for PMC365 Ltd by email or telephone.
Any changes to your preferences will be updated within 30 days of your request.
How can you contact us?
To contact us with any queries around data or this privacy statement, you can contact us in the following ways:
Post: PMC365 Ltd Featherstone House High St Rochester ME1 1DA
Please note we may keep a record of your communications to help us resolve any issues which you raise.
How can you contact the supervisory authority?
The supervisory authority in the UK is the Information Commissioner's Office (ICO). You can contact them in the following ways:
Phone: 0303 123 1113
Post: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF