Technology Talent Privacy Policy

The Client, Associates and Voyage shall comply in all respects with the Data Protection Act 2018 and the General Data Protection Regulations 2016 (together “GDPR”) in connection with all Candidate personal data and other Candidate information we supply to you, whether when we are the data controller (or data processor) of the Data or whether the Client or the Associate is data controller or data processor. The Client shall:

(a) Process any personal data of a Candidate only for the purposes of considering such Candidate’s suitability to be Engaged in a specific Role in relation to which Voyage has submitted the Data to the Client or Associate and for the recruitment process.

(b) Ensure that any of its or its Associates’ employees or agents who have access to Data shall be required to have access to it and to use it only for the Purpose and that all such persons are bound to the Client by separate obligations of confidentiality to the Client (and the Client agrees to be responsible for all GDPR or security breaches of Data emanating from the Client’s or Associates employees and agents and shall fully indemnify Voyage against any claim, costs or damages it receives in respect).

(c) Implement all reasonably up to date appropriate technical, technological and security processes within the client and Associates working processes and records and take all provisions that are required to keep all such Data safe and protected from third party access.

(d) Without any delay notify Voyage immediately of any security breach at the Client or Associates after the Client becomes aware of the same and immediately co-operate with/assist Voyage with any obligations we may have under law to notify the Candidate Data subjects and the supervisory authorities of such security breach by providing all relevant information immediately upon request.

(e) Co-operate with Voyage in any impact assessment or consultation Voyage deems necessary, including providing information Voyage requests.

(f) Delete all Candidate information and Data whatsoever delivered by Voyage to the Client or Associates if the relevant Candidate is not accepted as suitable for the Role within 30 days of such decision not to proceed with their recruitment.

(g) Comply fully with all data subject access requests from any Candidates and notify and share the same and the Client’s response to the Candidate with Voyage.

(h) In circumstances where Voyage needs to maintain records of processing activities in accordance with law, provide Voyage with details of the Client’s or Associates’ processing activities.

(i) Keep Voyage informed as to the identity of the Client’s or relevant Associates Data Protection Manager/Officer.

(j) Treat all Candidates as Data Subjects under the Legislation; and indemnify Voyage from and against all losses and claims Voyage may suffer as received arising from breaches of any Data Protection Legislation.