We are committed to protecting the privacy of our customers and the information we hold about them. We hold information about our customers in order for us to provide our products and services, which may involve, for example:
As our customer, you are entitled to know whether we hold personal data about you and, if we do, to have access to that personal data and request that it be corrected if it is inaccurate.
You can also choose to manage any marketing communications you receive by following the opt-out instructions contained in emails that we send to you. In such cases, we will retain the minimum personal data necessary to record that you opted out, in order to avoid contacting you again.
If we hold personal information about you, and you wish us to stop using it for the purposes submitted, please contact firstname.lastname@example.org
We collect information about you in various ways:
The information we might collect and process about you includes:
We may use your personal information in the following ways:
We collect and use your personal information for the legitimate business purposes of communicating with you to deal with your enquiries, fulfilling your requests for products, services and information, sending you communications which you have requested, notifying you of changes to our services, processing payment from you where applicable and monitoring behaviour on our website to improve your browsing experience, help us to improve our website and make our content more relevant.
We may also use your personal information where you give us your express consent, for example when you provide consent to receive marketing materials.
You have a right to object to us processing your personal information, and if you wish to object please contact email@example.com.
We will not share your personal information with any third party that intends to use it for direct marketing purposes, unless we have specifically informed you and you have given us specific permission to do this.
We may use third parties, such as service providers, agents or contractors to provide us with administration systems, such as those used to provide customer relationship management services, software support services, finance and billing services, software development tracking services, training programmes, event registration services, and online advertisements.
These third parties may come into contact with your personal information in the course of providing their services to us. They must provide equivalent levels of security for your personal information as Heywood and, where required, be bound by a legal agreement to keep your personal information private, secure and to process it only at our specific instruction.
Certain third-party suppliers that we use may store certain personal information in the United States, in accordance with the EU-US Privacy Shield. However, most of our systems that would store your information are based in the UK or the European Economic Area. If we need to transfer your personal data to countries outside the European Economic Area, we will ensure that such transfers are compliant with the GDPR and DPA 2018.
We will ensure that appropriate measures are in place to keep your personal data secure.
We have a Data Retention Policy which mandates how long records, including personal data, are retained. Retention periods are determined by legislation and our business requirements. In most cases we will hold your data for up to three years after last contact, unless we have a legitimate business need or regulatory obligation which requires that we hold this data for a longer period of time.
All information will be stored securely on our systems. All personal data will be held in accordance with our Data Retention policy, which is available upon request via firstname.lastname@example.org.
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.
Heywood is certified to ISO 27001, an independent security standard which sets a framework for establishing, operating, reviewing and improving Information Security Management. Protecting our customers’ information is vital, and achieving the high standards required for ISO 27001 reaffirms our commitment to do so.
We may use Google Analytics to collect information about visitor behaviour on our website. This stores information about what pages you visit, how long you are on the site, how you got here and what you click on. This data does not contain personally identifiable information and so you cannot be identified from it.
You can choose to opt-out of Google Analytics by notifying us using the ‘Contact Us’ form on our website.
If you have any concerns or complaints regarding the processing of your personal data, or our compliance with the GDPR and DPA 2018, you should contact our Head of Information Security and Quality via email@example.com.
You also have the right to lodge a complaint with the Information Commissioner’s Office. Their contact details are:
We may change this notice from time to time.
This Privacy Notice is effective from July 2020.
Aquila Heywood is the data controller for the information you provide during the process, unless otherwise stated. If you have any queries about the process or how we handle your information, please contact us at firstname.lastname@example.org.
All the information you provide during the process will be used only for the purpose of progressing your application, or to fulfil legal or regulatory requirements, if necessary.
We will not share any of the information you provide during the recruitment process with any third parties for marketing purposes, or store any of your information outside the European Economic Area. The information you provide will be held securely by us and/or our data processors, whether the information is in electronic or physical format.
We will use the contact details you provide to us to contact you to progress your application. We will use the other information you provide to assess your suitability for the role for which you have applied.
We do not collect more information than we need to fulfil our stated purposes and will not retain it for longer than is necessary.
The information we request is used to assess your suitability for employment. You need not provide the information that we request, but it might affect your application if you do not.
If you use our online application system, this will be collected by a data processor on our behalf, as outlined in our website's Privacy Notice.
We ask you for your personal details, including name and contact details. We will also ask you about your previous experience, education, referees and for answers to questions relevant to the role for which you have applied. Our recruitment team will have access to all of this information.
You will also be asked to provide equal opportunities information. This is not mandatory information – if you do not provide it, it will not affect your application. This information will not be made available to any staff outside of our recruitment team, including hiring managers, in a way which can identify you. Any information you do provide, will be used only to produce and monitor equal opportunities statistics.
We might ask you to: complete tests or occupational personality profile questionnaires; and/or to attend an interview – or a combination of these. Information will be generated by you and by us. For example, you might complete a written test, or we might take interview notes. This information is held by Aquila Heywood.
If you are unsuccessful following assessment for the position for which you have applied, we may ask if you would like your details to be retained in our talent pool for a period of six months. If you say yes, we would proactively contact you, should any further suitable vacancies arise.
If we make a conditional offer of employment, we will ask you for information so that we can carry out pre-employment checks. You must successfully complete pre-employment checks to progress to a final offer. We are required to confirm the identity of our staff, their right to work in the United Kingdom and seek assurance as to their trustworthiness, integrity and reliability.
Data processors are third parties who provide elements of our recruitment service for us. We have contracts in place with our data processors. This means that they cannot do anything with your personal information, unless we have instructed them to do it. They will not share your personal information with any organisation apart from us. They will hold it securely and retain it for the period we instruct.
We use job websites to advertise our vacancies. We have contracts in place with these websites, which govern our use of your data. Any applications made by you through these websites are governed by those websites' privacy notices and the terms and conditions as specified on those websites.
When someone visits our site, we use a third-party service, Google Analytics, to collect standard Internet log information and details of visitor behaviour patterns. We do this to find out things such as the number of visitors to the various parts of the site. This information is processed only in a way that does not identify anyone. We do not make, and do not allow Google to make, any attempt to find out the identities of those visiting our website.
If you use our online application system, you will provide the requested information to Indeed, who provide this online service for us. Once you click 'apply now', you will be taken to Indeed's website and they will hold the information you submit, but Aquila Heywood will have access to it.
Here is a link to Indeed's Privacy Notice
Our website includes links to other websites whose privacy practices may differ from those of Aquila Heywood. If you submit personal information to any of those websites, your information is governed by their privacy statements. We encourage you to read carefully the privacy statement of any website you visit.
If you contact us, we will store your personal information in order for us to respond to your email. We will not use these details supplied through our website for other purposes, and these will not be shared outside our organisation and subsidiaries.
We use Transport Layer Security (TLS) to encrypt and protect email traffic in line with government. If your email service does not support TLS, you should be aware that any emails we send or receive may not be protected in transit.
We will also monitor any emails sent to us, including file attachments, for viruses or malicious software. Please be aware that you have a responsibility to ensure that any email you send is within the bounds of the law.
We may update this Privacy Statement to reflect changes to our information practices. If we make any material changes, we will notify you by email (sent to the email address specified in your account) or by means of a notice on this website prior to the change becoming effective. We encourage you to review this page periodically for the latest information on our privacy practices.
+44 (0)161 643 4200