GDPR

SUPPLIER PRIVACY NOTICE

This notice applies to you if we process your personal information and you are not an employee or worker of ours, a prospective candidate employee or worker, a candidate we are looking to place into a job or an individual to whom we have provided a specific privacy notice. You may be, for example, an individual that works at a supplier or customer or another organisation that we deal with, an attendee at one of our marketing events, a user of our website or someone else who is affected by our activities.

References to you, your and yourself in this privacy notice are to either you as an individual or any organisation that you work for.

References to we, our or us in this privacy notice are to Mint Resourcing Corporation Limited, a limited company incorporated in England and Wales. Registered Number: 08025791 Address: Aldwych House, 71-91 Aldwych, London WC2B 4HN.

This privacy notice also covers any joint venture companies, bodies or organisation that we have an
interest in and to which you are seconded, carrying out activities on behalf of or are appointed as one
of its officers or representatives.

We have not appointed a Data Protection Officer to oversee our compliance with data protection laws as we not required to do so, but our Data Protection Compliance Team has overall responsibility for data protection compliance in our organisation. Contact details are set out in the “Contacting us” section at the end of this privacy notice.

We are committed to respecting your privacy. This notice is to explain how we may use personal information we collect before, during and after your relationship with us. This notice explains how we comply with the law on data protection and what your rights are.

For the purposes of data protection we will be the controller of any of your personal information.

1. PERSONAL INFORMATION WE COLLECT

We may collect the following types of personal information about you:

  • Contact details: information that allows us to identify and contact you directly such as your name, address email address, telephone number and addresses.
  • Identification information: passport and other official identification details, information from a third party money laundering check provider, Companies House information, national insurance number, membership of relevant schemes.
  • Details of your work history: This may include positions, roles, responsibilities, professional qualifications.
  • Personal history and information: This includes hobbies, interests, marital status, family details and dietary requirements.
  • Advisors appointed by you: including, lawyers, financial advisors, surveyors.
  • Business information: including property owned by you, transactions, amounts paid or owed and tenants.
  • Responses to surveys, competitions and promotions: we keep records of any surveys you respond to or your entry into [any competition] or promotion we run.
  • Creditworthiness: We may undertake investigations into your creditworthiness in order to establish whether to enter into or continue a business relationship with you or the organisation you work for.
  • Details of your performance: when working with or for us or in relation to any project or work we are engaged in.
  • How you use our website: we collect information about the pages you look at and how you use them, usernames and passwords.
  • Videos, photographs and audio recordings: which you or other people take and provide to us or we take ourselves.
  • Your usage of the IT systems we make available to visitors to our premises: for example our client internet and Wi-Fi facilities.
  • Details of the correspondence (including e-mail correspondence) you send and receive from us and details of any claims: this includes letters and emails, SMS, MMS and other electronic communication and may in some cases include audio recording of telephone conversations.
  • Subscription information: for example when you subscribe to one of our, newsletters or other materials.
  • IP address information: your computer’s IP address allows us to track your usage of our website.

2. SPECIAL CATEGORIES OF PERSONAL INFORMATION

We do not collect, store and use the following “special categories” of more sensitive personal information regarding you:

  • information about your race or ethnicity, religious beliefs, sexual orientation and political opinions;
  • information about your trade union memberships;
  • information about your health, including any medical condition, health and sickness records, medical records and health professional information; and
  • biometric information about you, for example fingerprints, retina scans. If we do collect any special category personal information, we do not currently rely on consent as a basis for processing special category personal information. We will also not collect, store and use any criminal records information in relation to you. If we do collect any criminal records information, we do not currently rely on consent as a basis for processing criminal records information.

3. SOURCES WE COLLECT YOUR PERSONAL INFORMATION FROM

We will collect personal information from a number of sources. These may include the following:

  • Directly from you: when you indicate that you may wish to attend an event, complete forms we provide to you, use our website, [enter our competitions and promotions], make a claim, make a complaint, provide money laundering information to us contact us by phone, email or communicate with us directly in some other way.
  • From referrals and recommendations: usually given by other people who know you or have a working relationship with you.
  • Our website: provides us with information about how you use it and the devices that you use to connect to our website.
  • Providers of information: which may include professional bodies or trade associations, credit reference agencies, money laundering check provider, Companies House, the Land Registry, LinkedIn and other web platforms.
  • Journalists or other investigators: they may provide us with details or make enquires about you or matters concerning you or ourselves.
  • Your employer or the organisation you work for: they may provide us with your name, position contact details and background information about you.
  • Our professional advisors: such as lawyers, accountants, financial advisors, consultants and other advisors.
  • Your professional advisors: such as lawyers, accountants, financial advisors, consultants and other advisors.
  • The Government, local authorities or relevant regulators: to assist with investigations,for example the Information Commissioner’s Office or HMRC.

We will also collect additional personal information throughout the period of our relationship with you.

If you are providing information regarding other individuals to us, it is your responsibility to ensure that you have the right to provide the information to us.

If you are providing us with details about other individuals they have a right to know and to be aware of what personal information we hold about them, how we collect it and how we use and may share that information. Please share this privacy notice with those of them whom you feel are sufficiently mature to understand it. They also have the same rights as set out in the “Your rights in relation to personal information” section below.

4. WHAT WE USE YOUR PERSONAL INFORMATION FOR

The table below describes the main purposes for which we process your personal information, the categories of your information involved and our lawful basis for being able to do this. Which will apply will depend upon the nature of your relationship and interactions with us.

Enter into and perform contracts, where we may be supplying services to you and/or you may be supplying products/services to us or we may be involved in similar arrangements with third partiesAll the personal information we collectTo enter into and perform contracts with either yourself or the organisation that you represent
We have a legitimate to properly perform contracts with third parties

Purpose Personal information used Lawful basis
Carrying out identity and credit checks Contact details and payment information We may have a legal obligation to undertake identification
We also have a legitimate interest in knowing your identity and carrying out money laundering checks and ensuring that we are likely to be paid
Anti-money laundering checks We may have a legal obligation to undertake anti-money laundering checks
Deal with your queries or complaints, claims, legal disputes or raise queries, claims, legal disputes or complaints with you or the organisation you work for All the personal information we collect This may be necessary to perform a contract with you or the organisation that you represent
We have a legitimate interest to improve the services and/orproducts we provide
To defend, bring or establish legal claims
Maintain and improve our services All the personal information we collect We have a legitimate interest to improve the services and/or products we provide
Data analytics, statistical analysis and other research to help us improve our online services How you use our website We have a legitimate interest to improve the online services we provide and user experience
Security of our IT systems All the personal information we collect We have a legitimate interest in ensuring the security of our IT systems
Staff training All the personal information we collect We have a legitimate interest to improve the products and services we provide
Direct marketing Contact details and services and products that we have determined may be of interest to you or your organisation and/or which you or your organisation has purchased in the past We may ask for your consent to process your data for this purpose, you may revoke your consent at any point.
Alternatively if you or your organisation have purchased similar services from us previously we may market similar products or services as a legitimate interest in developing our business. You have the right to opt out from such marketing at any time
Holding events Your contact details, details of attendance, your comments in response forms and dietary requirements We have a legitimate interest in holding events and tracking attendance and providing appropriate food and drinks at events
We may also have a legal obligation to comply with health and safety requirements
To comply with our legal obligations All the personal information we collect To comply with any legal obligations or requirements
To manage our relationship with you or the organisation you work for and to operate and manage our business and internal reporting All the personal information we collect We have a legitimate interest to operate our business in an efficient way and to expand our business
To enter into and perform contracts with either yourself or the organisation that you represent
Storage of records relating to you and also records relating to our business All the personal information we collect To be able to manage and fulfil any contract with you, we may have a legal obligation to do so and we also have a legitimate interest to keep proper records

For some of your personal information you may have a legal, contractual or other requirement or obligation for you to provide us with your personal information. If you do not provide us with the requested personal information we may not be able to properly perform our contract with you or the organisation you represent or comply with legal obligations and we may have to terminate our
relationship.

For other personal information you may not be under an obligation to provide it to us, but if you do not provide it then we may not be able to properly perform our arrangements with you or the organisation you represent.

Where you have given us your consent to use your personal information in a particular manner, you have the right to withdraw this consent at any time, which you may do by contacting us as described in the “Contacting us” section below. We will generally only ask for your consent for direct marketing.

Please note however that the withdrawal of your consent will not affect any use of the data made before you withdrew your consent and we may still be entitled to hold and process the relevant personal information to the extent that we are entitled to do so on bases other than your consent.

Withdrawing consent may also have the same effects as not providing the information in the first
place, for example we may no longer be able to provide marketing information to you.

We may anonymise and aggregate any of the personal information we hold (so that it does not directly identify you). We may use anonymised and aggregated information for purposes that include testing our IT systems, research, data analysis, improving our site and services.

5. WHO WE SHARE YOUR PERSONAL INFORMATION WITH

We may share personal information with the following parties:

  • Other companies in our supply chain: so that they can contact you about any issues in the supply chain or where your personal information is relevant to a subcontractor or party above us in the supply chain.
  • Credit reference and other identification agencies: so that we can assess your creditworthiness and to verify your identity. These agencies may retain a footprint that a search has been undertaken.
  • Third parties who ask for or want referrals: we may provide your details to a third party who is seeking services/products which are the same or similar to those that you provide.
  • Marketing and public relations companies: to help us to develop, carry out and assess marketing and PR campaigns
  • Other service providers and advisors to us: such as companies that support our IT, help us analyse the data we hold, process payments, send communications to our customers, provide us with legal, property or financial advice and generally help us deliver our services to you or the organisation that you represent or for us to purchase them from you or the organisation you represent.
  • Information providers: which may include credit reference agencies, money laundering check provider, Companies House, the Land Registry.
  • Purchasers of our business: buyers or perspective buyers to whom we sell or negotiate to sell our business.
  • The Government, local authorities, planning authorities or relevant regulators: where we are required to do so by law or to assist with their investigations, for example the Information Commissioner’s Office.
  • Police, law enforcement agencies and security services: to assist with the investigation and prevention of crime and the protection of national security. We also use Google Analytics which sets cookies to collect information about how visitors use our website. We use the information to compile reports and to help us improve the website. The cookies collect information in an anonymous form, including the number of visitors to the website and blog, where visitors have come to the website from and the pages they visited. To opt out of being tracked by Google Analytics across all websites visit http://tools.google.com/dlpage/gaoptout. We may provide third parties with aggregate statistical information and analytics about users of our products and services but we will make sure no one can be identified from this information before we disclose it.

We do not disclose personal information to anyone else except as set out above unless we have your consent or we are legally obliged to do so. We do not sell, rent or trade your data.

6. DIRECT MARKETING

Email, post and SMS marketing: from time to time, we may contact you by email, post or SMS with information about products or services we believe you may be interested in.

We will only send marketing messages to you in accordance with the marketing preferences you set
when you create your account or that you tell us afterwards you are happy to receive or where you or
the organisation you represent have purchased similar services or goods from us previously.
You can then let us know at any time that you do not wish to receive marketing messages by sending
an email to us at gdpr@cyberteam.co.uk or by using the by using the details set out in the
“Contacting us” section below. You can also unsubscribe from our marketing by clicking on the
unsubscribe link in any marketing messages we send to you.

Third Party Processors
Our carefully selected partners and service providers may process personal information about you on our behalf as described below:
“Digital Marketing Service Providers
We periodically appoint digital marketing agents to conduct marketing activity on our behalf,
such activity may result in the compliant processing of personal information. Our appointed data processors include:
(i)Prospect Global Ltd (trading as Sopro) Reg. UK Co. 09648733. You can contact Sopro and view their privacy policy here: http://sopro.io.
Sopro are registered with the ICO Reg: ZA346877 their Data Protection Officer can be emailed at: dpo@sopro.io.”

7. TRANSFERRING YOUR PERSONAL INFORMATION INTERNATIONALLY
The personal information we collect about you is not transferred to or stored in countries outside of the
UK or European Union except as set out in this section.

Our directors and other individuals working for us may in limited circumstances access personal
information outside of the UK and European Union if they are on holiday abroad outside of the UK or
European Union. If they do so they will be using our security measures and will be subject to their
arrangements with us which are subject to English Law and the same legal protections that would
apply to accessing personal data within the UK.

In limited circumstances the people to whom we may disclose personal information as mentioned in
the “Who we share your personal information with” section above may be located outside of the
UK and European Union. In these cases we will impose any legally required protections to the
personal information as required by law before it is disclosed.

If you require more details on the arrangements for any of the above then please contact us using the
details in the “Contacting us” section below.

8. HOW LONG DO WE KEEP PERSONAL INFORMATION FOR

We will keep your personal information for as long as is necessary for the purpose for which it has
been obtained and then for as long as there is any risk of a potential claim, which will be dependent
upon the limitation period for the particular type of claim. Generally, where there is no legal
requirement, we retain all physical and electronic records for a period of approximately 6 years after
your last contact with us.

Where we are only engaged in marketing to you, we will retain your details for a period of 3 years
since our last interaction, unless you or the organisation you work for later becomes a client.
It is important to ensure that the personal information we hold about you is accurate and up-to-date,
and you should let us know if anything changes, for example if you move position or work for a
different organisation or change your phone number or email address. you can contact us by using the
details set out in the “Contacting us” section below.

9. SECURITY

We have numerous security measures in place to protect the loss, misuse and alteration of
information under our control, such as passwords and firewalls. We cannot, however, guarantee that
these measures are, or will remain, adequate. We do, however, take data security very seriously and
will use all reasonable endeavours to protect the integrity and security of the personal information we
collect about you.

10. YOUR RIGHTS IN RELATION TO YOUR PERSONAL INFORMATION

You have the following rights in relation to your personal information:

  • the right to be informed about how your personal information is being used;
  • the right to access the personal information we hold about you;
  • the right to request the correction of inaccurate personal information we hold about you;
  • the right to request the erasure of your personal information in certain limited circumstances;
  • the right to restrict processing of your personal information where certain requirements are met;
  • the right to object to the processing of your personal information;
  • the right to request that we transfer elements of your data either to you or another service provider; and
  • the right to object to certain automated decision making processes using your personal information.

You should note that some of these rights, for example the right to require us to transfer your data to
another service provider or the right to object to automated decision making, may not apply as they
have specific requirements and exemptions which apply to them and they may not apply to personal
information recorded and stored by us. For example we do not use automated decision making in
relation to your personal data. However some have no conditions attached, so your right to withdraw
consent or object to processing for direct marketing are absolute rights.
We may need to request specific information from you to help us confirm your identity and ensure your
right to access the information (or to exercise any of your other rights). This is another appropriate
security measure to ensure that personal information is not disclosed to any person who has no right
to receive it.
Whilst this privacy notice sets out a general summary of your legal rights in respect of personal
information, this is a very complex area of law. More information about your legal rights can be found
on the Information Commissioner’s website at https://ico.org.uk/for-the-public/.
To exercise any of the above rights, or if you have any questions relating to your rights, please contact
us by using the details set out in the “Contacting us” section below.
If you are unhappy with the way we are using your personal information you can also complain to the
UK Information Commissioner’s Office or your local data protection regulator. We are here to help and
encourage you to contact us to resolve your complaint first.
11. CHANGES TO THIS NOTICE
We may update this privacy notice from time to time. When we change this notice in a material way,
we will update the version date at the bottom of this notice. For significant changes to this notice we
will try to give you reasonable notice unless we are prevented from doing so. Where required by law
we will seek your consent to changes in the way we use your personal information.
12. CONTACTING US
In the event of any query or complaint in connection with the information we hold about you, please
email gdpr@cyberteam.co.uk or write to us at GDPR Compliance Team, Aldwych House, 71-91 Aldwych, London WC2B 4HN.

CLIENT PRIVACY NOTICE

This notice applies to you if we process your personal information and you are not an employee or worker of ours, a prospective candidate employee or worker, a candidate we are looking to place into a job or an individual to whom we have provided a specific privacy notice. You may be, for example, an individual that works at a supplier or customer or another organisation that we deal with, an attendee at one of our marketing events, a user of our website or someone else who is affected by our activities.

References to we, our or us in this privacy notice are to Mint Resourcing Corporation Limited, a limited company incorporated in England and Wales. Registered Number: 08025791 Address: Aldwych House, 71-91 Aldwych, London WC2B 4HN.

This privacy notice also covers any joint venture companies, bodies or organisation that we have an interest in and to which you are seconded, carrying out activities on behalf of or are appointed as one of its officers or representatives.

We have not appointed a Data Protection Officer to oversee our compliance with data protection laws as we not required to do so, but our Data Protection Compliance Team has overall responsibility for data protection compliance in our organisation. Contact details are set out in the “Contacting us” section at the end of this privacy notice.

We are committed to respecting your privacy. This notice is to explain how we may use personal information we collect before, during and after your relationship with us. This notice explains how we comply with the law on data protection and what your rights are.

For the purposes of data protection we will be the controller of any of your personal information.

1. PERSONAL INFORMATION WE COLLECT

We may collect the following types of personal information about you:

  • Contact details: information that allows us to identify and contact you directly such as your name, address email address, telephone number and addresses.
  • Identification information: passport and other official identification details, information from a third party money laundering check provider, Companies House information, national insurance number, membership of relevant schemes.
  • Details of your work history: This may include positions, roles, responsibilities, professional qualifications.
  • Personal history and information: This includes hobbies, interests, marital status, family details and dietary requirements.
  • Advisors appointed by you: including, lawyers, financial advisors, surveyors.
  • Business information: including property owned by you, transactions, amounts paid or owed and tenants.
  • Responses to surveys, competitions and promotions: we keep records of any surveys you respond to or your entry into [any competition] or promotion we run.
  • Creditworthiness: We may undertake investigations into your creditworthiness in order to establish whether to enter into or continue a business relationship with you or the organisation you work for.
  • Details of your performance: when working with or for us or in relation to any project or work we are engaged in.
  • How you use our website: we collect information about the pages you look at and how you use them, usernames and passwords.
  • Videos, photographs and audio recordings: which you or other people take and provide to us or we take ourselves.
  • Your usage of the IT systems we make available to visitors to our premises: for example our client internet and Wi-Fi facilities.
  • Details of the correspondence (including e-mail correspondence) you send and receive from us and details of any claims: this includes letters and emails, SMS, MMS and other electronic communication and may in some cases include audio recording of telephone conversations.
  • Subscription information: for example when you subscribe to one of our, newsletters or other materials.
  • IP address information: your computer’s IP address allows us to track your usage of our website.

2. SPECIAL CATEGORIES OF PERSONAL INFORMATION

We do not collect, store and use the following “special categories” of more sensitive personal information regarding you:

  • information about your race or ethnicity, religious beliefs, sexual orientation and political opinions;
  • information about your trade union memberships;
  • information about your health, including any medical condition, health and sickness records, medical records and health professional information; and
  • biometric information about you, for example fingerprints, retina scans.

If we do collect any special category personal information, we do not currently rely on consent as a basis for processing special category personal information. We will also not collect, store and use any criminal records information in relation to you. If we do collect any criminal records information, we do not currently rely on consent as a basis for processing criminal records information.

3. SOURCES WE COLLECT YOUR PERSONAL INFORMATION FROM

We will collect personal information from a number of sources. These may include the following:

    • Directly from you: when you indicate that you may wish to attend an event, complete forms we provide to you, use our website, [enter our competitions and promotions], make a claim, make a complaint, provide money laundering information to us contact us by phone, email or communicate with us directly in some other way.
    • From referrals and recommendations: usually given by other people who know you or have a working relationship with you.
    • Our website: provides us with information about how you use it and the devices that you

use to connect to our website.

  • Providers of information: which may include professional bodies or trade associations, credit reference agencies, money laundering check provider, Companies House, the Land Registry, LinkedIn and other web platforms.
  • Journalists or other investigators: they may provide us with details or make enquires about you or matters concerning you or ourselves.
  • Your employer or the organisation you work for: they may provide us with your name, position contact details and background information about you.
  • Our professional advisors: such as lawyers, accountants, financial advisors, consultants and other advisors.
  • Your professional advisors: such as lawyers, accountants, financial advisors, consultants and other advisors.
  • The Government, local authorities or relevant regulators: to assist with investigations, for example the Information Commissioner’s Office or HMRC.

We will also collect additional personal information throughout the period of our relationship with you. If you are providing information regarding other individuals to us, it is your responsibility to ensure that you have the right to provide the information to us.
If you are providing us with details about other individuals they have a right to know and to be aware of what personal information we hold about them, how we collect it and how we use and may share that information.

Please share this privacy notice with those of them whom you feel are sufficiently mature to understand it. They also have the same rights as set out in the “Your rights in relation to personal information” section below.

4. WHAT WE USE YOUR PERSONAL INFORMATION FOR

The table below describes the main purposes for which we process your personal information, the
categories of your information involved and our lawful basis for being able to do this. Which will apply
will depend upon the nature of your relationship and interactions with us.

Purpose Personal information used Lawful basis
Carrying out identity and credit checks Contact details and payment information We may have a legal obligation to undertake identification
We also have a legitimate interest in knowing your identity and carrying out moneylaundering checks and ensuring that we are likely to be paid
Anti-money laundering checks We may have a legal obligation to undertake anti-money laundering checks
Enter into and perform contracts, where we may be supplying services to you and/or you may be supplying products/services to us or we may be involved in similar arrangements with third parties All the personal information we collect To enter into and perform contracts with either yourself or the organisation that you represent
We have a legitimate to properly perform contracts with third parties
Deal with your queries or complaints, claims, legal disputes or raise queries, claims, legal disputes or complaints with you or the organisation you work for All the personal information we collect This may be necessary to perform a contract with you or the organisation that you represent
We have a legitimate interest to improve the services and/or products we provide
To defend, bring or establish legal claims
Maintain and improve our services All the personal information we collect We have a legitimate interest to improve the services and/or products we provide
Data analytics, statistical analysis and other How you use our website We have a legitimate interest to improve the online services we research to help usimprove our online services provide and user experience
Security of our IT systems All the personal information we collect We have a legitimate interest in ensuring the security of our IT systems
Staff training All the personal information we collect We have a legitimate interest to improve the products and services we provide
Direct marketing Contact details and services and products that we have determined may be of interest to you or your organisation and/or which you or your organisation has purchased in the past We may ask for your consent to process your data for this purpose, you may revoke your consent at any point. Alternatively if you or your organisation have purchased similar services from us previously we may market similar products or services as a legitimate interest in developing our business. You have the right to opt out from such marketing at any time
Holding events Your contact details, details of attendance, your comments in response forms and dietary requirements We have a legitimate interest in holding events and tracking attendance and providing appropriate food and drinks at events. We may also have a legal obligation to comply with health and safety requirements.
To comply with our legal obligations All the personal information we collect To comply with any legal obligations or requirements
To manage our relationship with you or the organisation you work for and to operate and manage our business and internal reporting All the personal information we collect We have a legitimate interest to operate our business in an efficient way and to expand our business
To enter into and perform contracts with either yourself or the organisation that you represent
Storage of records relating to you and also records relating to our business All the personal information we collect To be able to manage and fulfil any contract with you, we may have a legal obligation to do so and we also have a legitimate interest to keep proper records

For some of your personal information you may have a legal, contractual or other requirement or obligation for you to provide us with your personal information. If you do not provide us with the requested personal information we may not be able to properly perform our contract with you or the organisation you represent or comply with legal obligations and we may have to terminate our relationship. For other personal information you may not be under an obligation to provide it to us, but if you do not provide it then we may not be able to properly perform our arrangements with you or the
organisation you represent.

Where you have given us your consent to use your personal information in a particular manner, you have the right to withdraw this consent at any time, which you may do by contacting us as described in the “Contacting us” section below. We will generally only ask for your consent for direct marketing. Please note however that the withdrawal of your consent will not affect any use of the data made before you withdrew your consent and we may still be entitled to hold and process the relevant personal information to the extent that we are entitled to do so on bases other than your consent.

Withdrawing consent may also have the same effects as not providing the information in the first place, for example we may no longer be able to provide marketing information to you. We may anonymise and aggregate any of the personal information we hold (so that it does not directly identify you). We may use anonymised and aggregated information for purposes that include testing our IT systems, research, data analysis, improving our site and services.

5. WHO WE SHARE YOUR PERSONAL INFORMATION WITH

We may share personal information with the following parties:

  • Other companies in our supply chain: so that they can contact you about any issues in the supply chain or where your personal information is relevant to a subcontractor or party above us in the supply chain.
  • Credit reference and other identification agencies: so that we can assess your creditworthiness and to verify your identity. These agencies may retain a footprint that a search has been undertaken.
  • Third parties who ask for or want referrals: we may provide your details to a third party who is seeking services/products which are the same or similar to those that you provide.
  • Marketing and public relations companies: to help us to develop, carry out and assess marketing and PR campaigns
  • Other service providers and advisors to us: such as companies that support our IT, help us analyse the data we hold, process payments, send communications to our customers, provide us with legal, property or financial advice and generally help us deliver our services to you or the organisation that you represent or for us to purchase them from you or the organisation you represent.
  • Information providers: which may include credit reference agencies, money laundering check provider, Companies House, the Land Registry.
  • Purchasers of our business: buyers or perspective buyers to whom we sell or negotiate to sell our business.
  • The Government, local authorities, planning authorities or relevant regulators: where we are required to do so by law or to assist with their investigations, for example the Information Commissioner’s Office.
  • Police, law enforcement agencies and security services: to assist with the investigation and prevention of crime and the protection of national security. We also use Google Analytics which sets cookies to collect information about how visitors use our website. We use the information to compile reports and to help us improve the website. The cookies collect information in an anonymous form, including the number of visitors to the website and blog, where visitors have come to the website from and the pages they visited. To opt out of being tracked by Google Analytics across all websites visit http://tools.google.com/dlpage/gaoptout. We may provide third parties with aggregate statistical information and analytics about users of our products and services but we will make sure no one can be identified from this information before we disclose it.

We do not disclose personal information to anyone else except as set out above unless we have your consent or we are legally obliged to do so. We do not sell, rent or trade your data.

6. DIRECT MARKETING

Email, post and SMS marketing: from time to time, we may contact you by email, post or SMS with information about products or services we believe you may be interested in. We will only send marketing messages to you in accordance with the marketing preferences you set when you create your account or that you tell us afterwards you are happy to receive or where you or the organisation you represent have purchased similar services or goods from us previously. You can then let us know at any time that you do not wish to receive marketing messages by sending an email to us at gdpr@cyberteam.co.uk or by using the by using the details set out in the “Contacting us” section below. You can also unsubscribe from our marketing by clicking on the unsubscribe link in any marketing messages we send to you.

Third Party Processors
Our carefully selected partners and service providers may process personal information about you on our behalf as described below:
“Digital Marketing Service Providers
We periodically appoint digital marketing agents to conduct marketing activity on our behalf,
such activity may result in the compliant processing of personal information. Our appointed data processors include:
(i)Prospect Global Ltd (trading as Sopro) Reg. UK Co. 09648733. You can contact Sopro and view their privacy policy here: http://sopro.io.
Sopro are registered with the ICO Reg: ZA346877 their Data Protection Officer can be emailed at: dpo@sopro.io.”

7. TRANSFERRING YOUR PERSONAL INFORMATION INTERNATIONALLY

The personal information we collect about you is not transferred to or stored in countries outside of the UK or European Union except as set out in this section.

Our directors and other individuals working for us may in limited circumstances access personal information outside of the UK and European Union if they are on holiday abroad outside of the UK or European Union. If they do so they will be using our security measures and will be subject to their arrangements with us which are subject to English Law and the same legal protections that would apply to accessing personal data within the UK.

In limited circumstances the people to whom we may disclose personal information as mentioned in the “Who we share your personal information with” section above may be located outside of the UK and European Union. In these cases we will impose any legally required protections to the personal information as required by law before it is disclosed.

If you require more details on the arrangements for any of the above then please contact us using the details in the “Contacting us” section below.

8. HOW LONG DO WE KEEP PERSONAL INFORMATION FOR

We will keep your personal information for as long as is necessary for the purpose for which it has been obtained and then for as long as there is any risk of a potential claim, which will be dependent upon the limitation period for the particular type of claim. Generally, where there is no legal requirement, we retain all physical and electronic records for a period of approximately 6 years after your last contact with us.

Where we are only engaged in marketing to you, we will retain your details for a period of 3 years since our last interaction, unless you or the organisation you work for later becomes a client.

It is important to ensure that the personal information we hold about you is accurate and up-to-date, and you should let us know if anything changes, for example if you move position or work for a different organisation or change your phone number or email address. you can contact us by using the details set out in the “Contacting us” section below.

9. SECURITY

We have numerous security measures in place to protect the loss, misuse and alteration of information under our control, such as passwords and firewalls. We cannot, however, guarantee that these measures are, or will remain, adequate. We do, however, take data security very seriously and will use all reasonable endeavours to protect the integrity and security of the personal information we collect about you.

10. YOUR RIGHTS IN RELATION TO YOUR PERSONAL INFORMATION

You have the following rights in relation to your personal information:

  • the right to be informed about how your personal information is being used;
  • the right to access the personal information we hold about you;
  • the right to request the correction of inaccurate personal information we hold about you;
  • the right to request the erasure of your personal information in certain limited circumstances;
  • the right to restrict processing of your personal information where certain requirements are met;
  • the right to object to the processing of your personal information;
  • the right to request that we transfer elements of your data either to you or another service provider; and
  • the right to object to certain automated decision making processes using your personal information.

You should note that some of these rights, for example the right to require us to transfer your data to another service provider or the right to object to automated decision making, may not apply as they have specific requirements and exemptions which apply to them and they may not apply to personal information recorded and stored by us. For example we do not use automated decision making in relation to your personal data. However some have no conditions attached, so your right to withdraw consent or object to processing for direct marketing are absolute rights.

We may need to request specific information from you to help us confirm your identity and ensure your right to access the information (or to exercise any of your other rights). This is another appropriate security measure to ensure that personal information is not disclosed to any person who has no right to receive it.

Whilst this privacy notice sets out a general summary of your legal rights in respect of personal information, this is a very complex area of law. More information about your legal rights can be found on the Information Commissioner’s website at https://ico.org.uk/for-the-public/.

To exercise any of the above rights, or if you have any questions relating to your rights, please contact us by using the details set out in the “Contacting us” section below.

If you are unhappy with the way we are using your personal information you can also complain to the UK Information Commissioner’s Office or your local data protection regulator. We are here to help and
encourage you to contact us to resolve your complaint first.

11. CHANGES TO THIS NOTICE

We may update this privacy notice from time to time. When we change this notice in a material way, we will update the version date at the bottom of this notice. For significant changes to this notice we will try to give you reasonable notice unless we are prevented from doing so. Where required by law we will seek your consent to changes in the way we use your personal information.

12. CONTACTING US

In the event of any query or complaint in connection with the information we hold about you, please email gdpr@cyberteam.co.uk or write to us at GDPR Compliance Team, Aldwych House, 71-91 Aldwych, London WC2B 4HN.

PRIVACY NOTICE FOR OUR CANDIDATES

We are committed to respecting your privacy. This notice is to explain how we may use personal information we collect before, during and after your working relationship with us.

This notice applies to current and former candidates, who we have either placed into a role on a permanent or temporary basis (as a non-PAYE interim) or who have contacted us/we have contacted about a prospective job role. This notice does not form part of any contract to provide services and
does not apply to you if you are engaged by us as a PAYE interim.

This privacy notice does not apply to you in your capacity of a client of ours. The notice that applies to our clients can be accessed here https://cyberteam.co.uk/gdpr/

References to we, our or us in this privacy notice are to Mint Resourcing Corporation Limited, a limited company incorporated in England and Wales. Registered Number: 08025791 Address: Aldwych House, 71-91 Aldwych, London WC2B 4HN.

We have not appointed a Data Protection Officer to oversee our compliance with data protection laws as we not required to do so, but our Data Protection Compliance Team has overall responsibility for data protection compliance in our organisation. Contact details are set out in the “Contacting us” section at the end of this privacy notice.

For the purposes of data protection we will be the controller of any of your personal information.

1. PERSONAL INFORMATION

In order to support your career aspirations and source new job opportunities for you, you may provide us with or we may obtain personal information about you, such as information regarding your:

  • personal contact details such as name, title, addresses, telephone numbers and personal email addresses and Skype account contact details;
  • date of birth;
  • gender;
  • identification documents (including passport/driving licence details (including copies where
    we are required to hold such information for identification purposes);
  • employment history and location of current workplace, salary, annual leave, pensions and benefits entitlement;
  • location of employment or workplace;
  • attendance at any events we host or organise;
  • records of your interactions with us such as telephone conversations, emails and other correspondence and your instructions to us;
  • recruitment records including references and other information included in a CV, cover letter or as part of the application process) and activities (including information about interviews,
    jobs applications and offers);
  • details about how you use our website e.g. the pages you look at and how you use them,
    usernames and passwords;
  • images in photographic or video format (where we record any footage of a videoconference between you and a client); andreferee details, next of kin, beneficiaries, details of family members and emergency contacts.

Where you are engaged by us as a non-PAYE interim, and we provide your services to our clients on a contract/service basis, then additionally we may hold the following additional information:

  • financial details such as bank accounts and details of payment transactions with you;
  • national insurance number and other tax or governmental identifiers; and; work records (including timesheets, working hours, details of any new position, start date, leaving date and salary/remuneration).

2. SPECIAL CATEGORIES OF PERSONAL INFORMATION
We do not generally collect, store and use the following “special categories” of more sensitive personal information regarding you:

  • information about your race or ethnicity, religious beliefs, sexual orientation and political opinions;
  • information about your trade union memberships;
  • information about your health, including any medical condition, health and sickness records, medical records and health professional information; and
  • biometric information about you, for example fingerprints, retina scans.

If we do collect any special category personal information, we do not currently rely on consent as a basis for processing special category personal information.

We will also not collect, store and use any criminal records information in relation to you. If we do collect any criminal records information, we do not currently rely on consent as a basis for processing
criminal records information.

3. WHERE WE COLLECT YOUR INFORMATION

We typically collect personal information about candidates when you fill in forms online or upload a CV onto our site at www.cyberteam.co.uk or when you correspond with us by phone, e-mail or otherwise.

We also may collect personal information about candidates through other sources such as LinkedIn, job board websites, online CV libraries, personnel recommendations and referrals, hiring platforms and through the use of business development tools.

Where you are an interim worker we may collect additional information from third parties including the client you are working for and any background check agencies.

If you are providing us with details of referees, next of kin, beneficiaries, family members and emergency contacts they have a right to know and to be aware of how what personal information we hold about them, how we collect it and how we use and may share that information. Please refer
them to our ‘Rest of the World” privacy notice which can be found here https://cyberteam.co.uk/gdpr/.

They also have the same rights as set out in the “Your rights in relation to personal information”
section below.

4. USES MADE OF THE INFORMATION

The table below describes the main purposes for which we process your personal information, the categories of your information involved and our lawful basis for being able to do this.

Purpose Personal information used Lawful basis
Non- ‘special categories’ of Personal Information
To assess your CV and qualifications (where you have provided us with/we have collected your personal information directly from you) All the personal information we collect for the purposes of the recruitment process. We need this information to be able to perform and administer the recruitment process for you.
To provide you with information regarding job opportunities that may be of interest to you based on your CV and qualifications (where you have provided us with/we have collected your personal information directly from you) All the personal information we collect for the purposes of the recruitment process. As above.
To contact you with information regarding job opportunities that may be of interest to you based on your CV and qualifications (where we have obtained your information from a third party source) All contact details and all information contained in any CV (including employment and education history and location of current workplace). Where your personal information has been sourced indirectly from either: (i) a hiring platform; (ii) social media platform where you have selected a function to let recruiters know that you are open to job opportunities; or (iii) a job board onto which you have uploaded your CV we have a legitimate business interest to do so. In all other cases, we will only contact you with information about job opportunities where we have your consent to do.
To manage our relationship with you including dealing with any support enquiries made by you All the personal information we collect for the purposes of the recruitment process. To be able to manage and perform our contract with you and it is also in our legitimate business interest to ensure that all enquiries are managed properly.
To share your CV or details of your qualifications with a client in relation to potential job roles All the personal information we collect for the purposes of the recruitment process. We have a legitimate business interest to do so.
To arrange an interview with/introduction to a prospective employer in relation to a particular job role and managing the introductory process, provided you have indicated that you are happy for an introduction to be arranged All the personal information we collect for the purposes of the recruitment process. We will only do so with your explicit consent.
To check you are legally entitled to work in the UK Personal contact details and identification documents and right to work documentation We have a legal obligation to do so and it is also in our legitimate business interest to ensure that you are suitable for a role.
Storage of records relating to you and also records relating to our business such as your recruitment records and records of your interactions with us All the personal information we collect for the purposes of the recruitment process. To be able to manage and fulfil our contract with you, we may have a legal obligation to do so and we also have a legitimate interest to keep proper records.
Dealing with legal disputes involving you. All the personal information we collect for the purposes of the recruitment process. We have a legitimate interest to ensure that all legal claims are managed effectively.
To send you information we think you might find useful or which you have requested from us, including information about our services and any events we are running, provided you have indicated that you are happy to be contacted for these purposes Personal contact details We may ask for your consent to process your data for this purpose, you may revoke your consent at any point. Alternatively, if you have previously engaged with us (for example by submitting a job application or CV to us) or requested this information from us previously, we may market these other recruitment related activities to you as a legitimate interest in developing our business. You have the right to opt out from such marketing at any time.
To conduct data analytics studies to review and better understand market trends within the recruitment industry Records of your attendance at any events hosted by us. All the personal information we collect for the purposes of the recruitment process. We have a legitimate interest in doing so to ensure that our business is targeted and relevant.
Complying with health and safety obligations Personal identifiers We have a legal obligation to comply with Health and Safety laws.
For the purpose of complying with any legal or regulatory requirements All the personal information we collect about you. We may have a legal obligation to comply with certain requirements and we have a legitimate interest in complying with any regulatory requirements

Interim Workers
Where you are engaged by us as a non-PAYE interim, then additionally we may also use your
information as follows:

Purpose Personal information used Lawful basis
Making a decision about your appointment with our client and managing the process All the personal information we collect for the purposes of the recruitment process. We need this information to beable to perform and administer the recruitment process for you. This is necessary to enter into a contract with you.
To administer the contract we have entered into with you and to facilitate our payroll and invoicing processes Personal identifiers and all the personal information we collect for the purposes of the recruitment process. Working records. All payment and transaction details. We need this information to be able to perform and administer our contract with you.
To administer the contract we have entered into with you and to facilitate our payroll and invoicing processes Personal identifiers and all the personal information we collect for the purposes of the recruitment process. Working records. All payment and transaction details. We need this information to be able to perform and administer our contract with you.
Assessing qualifications for a particular role or job. All the personal information we collect for the purposes of the recruitment process We may be legally obliged to do so. To be able to manage and perform our contract with you. We have a legitimate interest to run and manage our business and to ensure that our interims are suitable for the roles we place them into.

For some of your personal information you will have a legal, contractual or other requirement or
obligation for you to provide us with your personal information. If you do not provide us with the
requested personal information we may not be able to engage your or we may not be able to properly
perform our contract with you or comply with legal obligations and we may have to terminate your
engagement. For other personal information, whilst you may not be under an obligation to provide it
to us, if you do not provide it then we may not be able to properly perform our contract with you.
You should be aware that you are not required under any contract with us to agree to any request for
consent. Where you have given us your consent to use your personal information in a particular
manner, you have the right to withdraw this consent at any time, which you may do by contacting us
as described in the “Contacting us” section below.

Please note however that the withdrawal of your consent will not affect any use of the data made
before you withdrew your consent and we may still be entitled to hold and process the relevant
personal information to the extent that we are entitled to do so on bases other than your consent.
Withdrawing consent may also have the same effects as not providing the information in the first
place, for example we may no longer be able to provide certain services to you.

5. DIRECT MARKETING

Email, post and SMS marketing: from time to time, we may contact you by email, post or
SMS with information about products and services we believe you may be interested in.
We will only send marketing messages to you in accordance with the marketing preferences
you set. You can then let us know at any time that you do not wish to receive marketing
messages by emailing us at gdpr@cyberteam.co.uk . You can also unsubscribe from our
marketing by clicking on the unsubscribe link in the marketing messages we send to you.

Third Party Processors
Our carefully selected partners and service providers may process personal information about you on our behalf as described below:
“Digital Marketing Service Providers
We periodically appoint digital marketing agents to conduct marketing activity on our behalf,
such activity may result in the compliant processing of personal information. Our appointed data processors include:
(i)Prospect Global Ltd (trading as Sopro) Reg. UK Co. 09648733. You can contact Sopro and view their privacy policy here: http://sopro.io.
Sopro are registered with the ICO Reg: ZA346877 their Data Protection Officer can be emailed at: dpo@sopro.io.”

6. DISCLOSURE OF YOUR PERSONAL INFORMATION

We share personal information with the following parties:

  • Any party approved by you.
  • Clients of our business where necessary: For example, (where you are a contractor) the client of ours for whom you are ultimately providing services to.
  • Other service providers to our business and advisors: for example payroll, email marketing specialists, business development tool providers, professional advisors, contractors, and administration and IT services (including CRM, website, video- and teleconference services). All our third-party service providers and other entities in the group are required to take appropriate security measures to protect your personal information.
  • Purchasers of our business: buyers or perspective buyers to whom we sell or negotiate to
    sell our business.
  • Prospective new employers: our clients for the purpose of introducing you as a
    prospective new candidate;
  • The Government or our regulators: where we are required to do so by law or to assist with their investigations or initiatives, for example HMRC or the Information Commissioner’s Office; andPolice, law enforcement and security services: to assist with the investigation andprevention of crime and the protection of national security. We do not disclose personal information to anyone else except as set out above.

7. TRANSFERRING YOUR PERSONAL INFORMATION INTERNATIONALLY

The personal information we collect about you is not transferred to or stored in countries outside of the UK or European Union except as set out in this section.

In limited circumstances the people to whom we may disclose personal information as mentioned in
the “Who we share your personal information with” section above may be located outside of the
UK and European Union. In these cases we will impose any legally required protections to the
personal information as required by law before it is disclosed.

If you require more details on the arrangements for any of the above then please contact us using the
details in the “Contacting us” section below.

8. HOW LONG WE KEEP PERSONAL INFORMATION FOR

The duration for which we retain your personal information will differ depending on the type of
information and the reason why we collected it from you. However, in some cases personal information may be retained on a long term basis: for example, personal information that we need to retain for legal purposes will normally be retained in accordance with usual commercial practice and regulatory requirements. Generally, where there is no legal requirement we retain all physical and electronic records for a period of 6 years following your last contact with us.

It is important to ensure that the personal information we hold about you is accurate and up-to-date, and you should let us know if anything changes, for example if you move home or change your phone number or email address. You can contact us by using the details set out in the “Contacting us” section below.

9. YOUR RIGHTS IN RELATION TO PERSONAL INFORMATION

You have the following rights in relation to your personal information:

  • the right to be informed about how your personal information is being used;
  • the right to access the personal information we hold about you;
  • the right to request the correction of inaccurate personal information we hold about you;
  • the right to request the erasure of your personal information in certain limited circumstances;
  • the right to restrict processing of your personal information where certain requirements are met;
  • the right to object to the processing of your personal information;
  • the right to request that we transfer elements of your data either to you or another service provider; and the right to object to certain automated decision making processes using your personal information.

You should note that some of these rights, for example the right to require us to transfer your data to
another service provider or the right to object to automated decision making, may not apply as they
have specific requirements and exemptions which apply to them and they may not apply to personal
information recorded and stored by us. For example we do not use automated decision making in
relation to your personal data. However some have no conditions attached, so your right to withdraw
consent or object to processing for direct marketing are absolute rights.

Whilst this privacy notice sets out a general summary of your legal rights in respect of personal
information, this is a very complex area of law. More information about your legal rights can be found
on the Information Commissioner’s website at https://ico.org.uk/for-the-public/.

To exercise any of the above rights, or if you have any questions relating to your rights, please
contact us by using the details set out in the “Contacting us” section below.

If you are unhappy with the way we are using your personal information you can also complain to the
UK Information Commissioner’s Office or your local data protection regulator. We are here to help and
encourage you to contact us to resolve your complaint first.

10. CHANGES TO THIS NOTICE

We may update this privacy notice from time to time. When we change this notice in a material way,
we will update the version date at the bottom of this page. For significant changes to this notice we
will try to give you reasonable notice unless we are prevented from doing so. Where required by law
we will seek your consent to changes in the way we use your personal information.

11. CONTACTING US

In the event of any query or complaint in connection with the information we hold about you, please
email gdpr@cyberteam.co.uk or write to us at GDPR Compliance Team, Aldwych House, 71-91 Aldwych, London WC2B 4HN.