This policy details how personal data is used, handled, and stored by all personnel associated with Skills Provision Limited.

Our procedures

Fair and lawful processing

Skills Provision must process all personal data fairly and lawfully, in accordance with an individual’s and company’s rights. Data processing is restricted to procedures related to international recruitment and job posting.

The Data Protection Officer’s responsibilities include:

• Review all data protection procedures and policies
• Arrange and manage data protection training
• Answer all questions relating to data protection
• Respond to individuals such as clients, post a job customers and job seekers who wish to know what data is being held on them
• Check associated parties to make sure their work is compliant
• Ensure all systems, services, software and equipment meet acceptable security standards
• Approve data protection statements attached to emails and other marketing material
• Address data protection queries from staff, partners, contractors, and associates
• Host external audit teams
• Carry out internal audits
• Represent the CEO of Skills Provision Limited on subjects related to data protection

The processing of all data must be:

• Necessary to deliver international recruitment and job posting services
• Legally compliant
• Ethically sound

Accuracy and relevancy

Skills Provision will endeavour to ensure all personal and corporate data is accurate, adequate, relevant and not excessive.

Personal information is used to produce Employment Profiles but no confidential information is displayed openly.

Your personal data

You must take reasonable steps to ensure the data we hold on your behalf is accurate. For example, if your personal or corporate circumstances change, please inform the DPO so our records can be updated.

Newsletters

Occasionally, Skills Provision transmits email newsletters to database members. Anyone wishing to be removed from our mailing list can use the unsubscribe link at the bottom of an email.

Candidate Registration and Premium Services

Personal information, documentation and media added by those registering on the Skills Provision website and using Premium Services is uploaded at the registrant’s own risk.

Skills Provision pledges to store all information, documents and media in a secure manner.

Skills Provision pledges to only use uploaded information, documents and media for the purpose of sourcing international employment.

By registering on the Skills Provision website and using the premium services system, job seekers empower Skills Provision to use the uploaded information, documents and media for the sole purpose of sourcing international employment.

All registrants can close an account via their user dashboard; on closure, all uploaded information, documents and media is permanently removed.

Job Posting Service 

Skills Provision pledges to treat all data and confidential information emanating from the international job posting system in a professional, ethical and legally compliant manner.

All data will be securely stored and not distributed to third parties.

Skills Provision will not use any supplied information for internal marketing purposes.

Removal of personal information and data can be actioned by emailing the Data Protection Officer at dpo@skills-provision.com

Data Security

Storage

• Where data is produced on printed paper, it should be kept in a secure place
• Printed data should be shredded when no longer required
• Data stored on computers should be protected by strong passwords that are changed regularly.
• Data stored on CDs or memory sticks must be locked away securely when not in use
• The DPO must approve any cloud system used for data storage
• The DPO must check and sanction the use of all 3rd party payment systems
• Data should be regularly backed up
• All servers containing sensitive data must be approved and protected by security software and strong firewalls.
• Data related declarations should be securely stored

Data retention

Skills Provision will retain personal and corporate data for a period of 7 years.

Transferring data internationally

The team at Skills Provision, including associates, retain and share, private and confidential information.

A tightly managed system is utilised for the sharing of candidate information, this is only carried out for the purpose of international recruitment and job posting. When private and confidential data is no longer required, it is removed from all machines and devices, no matter which source. The DPO controls this system and disciplinary action can be taken where mis-management or abuse occurs.

Training

New members of staff or partners will receive training as part of their induction process.

Training will be provided by the DPO

It will cover:

• The law relating to data protection
• Data protection, policies and procedures
• Skills Provision and data control control/management

Attending training is compulsory.

Conditions for processing

All staff/partners are aware, personal and corporate data from other sources is only to be used or shared for the purpose of international recruitment and job posting.

Consent

Skills Provision has the consent from all parties to use personal data for the task of international recruitment and job posting.

Criminal record checks

Criminal record checks may be carried out as a means of validating the suitability of a candidate. Where criminal record checks are carried out, the processes adhered to will be within the framework of the law.

Data portability

Upon request, a data subject or company should have the right to receive a copy of their data in a structured format. These requests should be processed within one month, provided there is no undue burden and it does not compromise the privacy of other individuals or businesses. A data subject or company may also request that their data is removed or transferred directly to another system.

Right to be forgotten

A data subject or company may request that any information held on them is deleted or removed, and any third party who process or use that data must also comply with the request.

International data transfers

The DPO is to be made aware of all international data transfers

Data audits

If deemed necessary, the DPO is to carry out documented data protection audits.

Reporting breaches

All members of staff have an obligation to report actual or potential data protection compliance failures. This allows Skills Provision to:

• Investigate the failure and take remedial steps if necessary
• Maintain a register of compliance failures

Monitoring

The DPO has overall responsibility for this policy. He will monitor it regularly to make sure it is constantly relevant.