top of page

Privacy Policy

Genesys Consultancy Ltd

Introduction

​

Genesys Consultancy Ltd. ("we," "us," or "our") is committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, and protect your personal data in compliance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable data protection laws in the United Kingdom. Your privacy is of utmost importance to us, and we are dedicated to safeguarding your personal information.

​

Scope

​

This Privacy Policy applies to the personal data of the following categories of individuals:

​

  • Candidates: Individuals who apply for roles or whose information we receive in connection with our recruitment services.

  • Clients: Organizations or individuals who engage our recruitment services.

  • Suppliers and Third Parties: Individuals from whom we collect personal data in the course of providing our services, such as referees and emergency contacts.

  • Website Users: Individuals who access our website.

​

Data Collection

​

We may collect and process the following personal data:

​

  • Candidates: Name, contact details, date of birth, gender, employment history, education details, qualifications, identification documents, right to work information, and any other information included in a CV or cover letter.

  • Clients: Name, contact details, job title, company information, and correspondence records.

  • Suppliers and Third Parties: Name, contact details, and professional information.

  • Website Users: IP address, browser type, operating system, and information about your visit obtained through cookies and similar technologies.

​

Use of Personal Data

​

We use personal data for the following purposes:

​

  • Candidates: To provide recruitment services, match your skills with job vacancies, communicate about job opportunities, process applications, conduct assessments, verify information, comply with legal obligations, and improve our services.

  • Clients: To provide recruitment services, communicate about candidates and job requirements, manage contracts, process payments, and maintain our business relationship.

  • Suppliers and Third Parties: To manage our relationships, procure services, make payments, and comply with legal obligations.

  • Website Users: To improve user experience, analyze website usage, administer the website, ensure website security, and provide tailored content.

​

Legal Basis for Processing

​

Our processing of personal data is based on the following legal grounds:

​

  • Consent: Where you have given explicit consent for specific processing activities.

  • Performance of a Contract: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.

  • Legal Obligations: Where processing is necessary to comply with legal obligations, such as employment laws, tax regulations, or regulatory requirements.

  • Legitimate Interests: Where processing is necessary for our legitimate interests or those of a third party, provided these interests are not overridden by your rights and interests. Our legitimate interests include providing and improving our services, managing relationships, and ensuring the security of our systems.

​

Data Sharing

​

We may share your personal data with the following parties:

​

  • Clients: For the purpose of recruitment services, we may share candidate information with potential employers.

  • Third-Party Service Providers: Who perform functions on our behalf, such as IT services, data storage, payroll processing, background checks, and marketing services. These providers are contractually obligated to protect your data and process it only in accordance with our instructions.

  • Regulatory and Legal Authorities: Where required by law, regulation, or legal process, we may disclose data to law enforcement agencies, courts, or regulatory bodies.

  • Business Transfers: In the event of a merger, acquisition, or sale of assets, personal data may be transferred to the involved third parties as part of the transaction, subject to confidentiality agreements.

​

International Data Transfers

​

Your personal data may be transferred to and processed in countries outside the United Kingdom. Where such transfers occur, we will ensure that appropriate safeguards are in place to protect your data, such as:

​

  • Adequacy Decisions: Transferring data to countries that have been deemed to provide an adequate level of data protection by the UK government.

  • Standard Contractual Clauses: Implementing standard data protection clauses approved by relevant authorities to ensure appropriate data protection measures.

  • Binding Corporate Rules: Where applicable, utilizing binding corporate rules approved by data protection authorities.

  • You may request further information about the safeguards we have in place for international data transfers by contacting us using the details provided in Section 12.

​

Data Retention

​

We will retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including satisfying any legal, accounting, or reporting requirements. Specific retention periods are determined based on:

​

  • Legal and Regulatory Requirements: Compliance with laws and regulations that set mandatory retention periods for certain types of data.

  • Contractual Obligations: Fulfillment of obligations under contracts and agreements.

  • Business Needs: Operational considerations, such as maintaining accurate business and financial records.

  • Once the retention period expires, we will securely delete or anonymize your personal data, unless further retention is required by law or justified by a legitimate interest.

​

Data Security

​

We have implemented appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

​

  • Access Controls: Restricting access to personal data to authorized personnel only.

  • Encryption: Using encryption technologies to protect data.

  • Data Minimization: Ensuring we only collect and retain the necessary data for specified purposes.

  • Regular Security Audits: Conducting periodic assessments to maintain security compliance.

​

Your Rights

Under UK GDPR, you have the right to:

 

  • Request access to your personal data.

  • Request correction of inaccurate data.

  • Request deletion of your personal data, subject to legal requirements.

  • Restrict processing under certain conditions.

  • Object to processing based on legitimate interests.

  • Request data portability to another service provider.

​

Contact Us

​

For any privacy-related inquiries, please contact:

​

Genesys Consultancy Ltd. Email: info@genesysconsultancy.co.uk

​

Changes to This Policy

​

We may update this Privacy Policy periodically. Any changes will be posted on this page, and where appropriate, notified to you by email.

​

Last Updated: 19 March 2025

bottom of page