Innovia uses personal data
From 25 May 2018, the EU General Data Protection Regulation 2016/679 (“GDPR”) governs the processing of personal data in the EU. Innovia Technology Ltd, of St Andrew’s House, St Andrew’s Road, Cambridge, CB4 1DL, UK (“Innovia”) is a data controller.
More information about Innovia Technology is available at www.innoviatech.com.
Its representative for data protection issues is Julian Scarfe. It is not required to have a Data Protection Officer. For correspondence on data protection issues, please email firstname.lastname@example.org
Innovia processes (i.e. acquires, stores and uses etc.) personal information on employees, suppliers and other parties (including clients and potential clients) with whom it interacts.
Innovia’s promise to you
Innovia undertakes to process personal data lawfully, accurately and securely.
The data Innovia may use
The information we hold about you may include:
– Contact details (e.g. your name, address telephone number and email address).
– Role information (e.g. your job title and company, as well as information about your past roles in which Innovia has interacted with you).
– Any curriculum vitae and associated documents you have submitted to us.
– Our reviewers’ notes on your curriculum vitae and associated correspondence.
– Notes on meetings (e.g. interview notes) and phone calls involving you.
– Emails, messages and records of other communications to you.
– Any contracts you have entered with Innovia.
– Information about your communication preferences.
– Details of anything that Innovia has offered to do for you or follow up, e.g. that Innovia will send information on a topic.
– Logistics information to enable Innovia to set up meetings, e.g. your stated availability on particular dates.
How we use your personal information
We use this information:
– to make decisions about your suitability for interview and potentially employment at Innovia, or
– to let you know about events you might be interested in attending, or
– to inform you of potential vacancies where you have expressed an interest in a particular role, or
– to improve our recruitment events and processes, and associated training.
Innovia’s legal basis for processing this data
This information may be necessary in order to take steps at your request prior to entering into a contract (such as a contract of employment). In some cases, we may also ask for your explicit consent, for example to receive our newsletter, or to be notified of vacancies for roles. Otherwise, it is necessary for the purposes of the legitimate interests pursued by Innovia, where these are not overridden by your interests or fundamental rights and freedoms.
Innovia’s data retention policy
Innovia retains data until either (a) we delete it in response to a request by you or (b) a review of personal data indicates that it is no longer useful in fulfilling its original purpose.
How and when we share the information with third parties
Innovia may share your information with suppliers if we arrange a service for you at your request (for example, we may give your contact details to a taxi company we have arranged to pick you up from an airport).
If you would like more information on the way we use your personal data, or do not want us to process your personal data, or wish us to stop using it in a particular way, please let us know. We will review the information we hold about you, and the legal basis for processing it. We may not always be able to accede to your request, for example if we need the data to meet our legal obligations to your employer.
You also have the:
– Right to restrict processing
– Right of rectification
– Right to erasure (Right to be forgotten)
– Right to object to processing
– Right to withdraw consent
How to get further information
If you have questions about why it is necessary to process particular types of data, please do not hesitate to contact the Data Protection Representative. You may make a complaint to the Data Protection Representative. You also have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues.