DurotechDurotech Recruitment

GDPR Compliance

Our commitment to data protection and privacy

Our GDPR Commitment

Durotech Recruitment is fully committed to complying with the General Data Protection Regulation (GDPR) and protecting the personal data of all individuals we work with. As a recruitment agency operating across Europe, the Middle East, and Asia, we understand the importance of data protection and privacy.

Key GDPR Principles We Follow

  • Lawfulness, Fairness, and Transparency: We process data lawfully and are transparent about how we use it
  • Purpose Limitation: We only collect data for specified, explicit purposes
  • Data Minimisation: We only collect data that is necessary for our services
  • Accuracy: We keep personal data accurate and up to date
  • Storage Limitation: We retain data only as long as necessary
  • Security: We implement appropriate security measures to protect data
  • Accountability: We take responsibility for GDPR compliance

Your Rights Under GDPR

As a data subject, you have the following rights:

Right to Access (Article 15)

You can request a copy of all personal data we hold about you. We will provide this within 30 days of your request.

Right to Rectification (Article 16)

You can request that we correct any inaccurate personal data we hold about you.

Right to Erasure (Article 17)

Also known as the 'right to be forgotten', you can request deletion of your personal data in certain circumstances.

Right to Restrict Processing (Article 18)

You can request that we limit how we use your data while complaints or disputes are resolved.

Right to Data Portability (Article 20)

You can request your data in a structured, machine-readable format to transfer to another service.

Right to Object (Article 21)

You can object to processing of your data based on legitimate interests or for direct marketing purposes.

How to Exercise Your Rights

To exercise any of your GDPR rights, please contact our Data Protection Officer:

  • Email: dpo@durotechrecruitment.com
  • Post: Data Protection Officer, Durotech Recruitment, 123 Recruitment Street, London, EC1A 1BB, UK
  • Phone: +44 20 1234 5678

We will respond to your request within 30 days. If your request is complex, we may extend this by a further 60 days, but we will inform you if this is the case.

International Data Transfers

As we operate globally, we may transfer your data outside the European Economic Area (EEA). When we do so, we ensure appropriate safeguards are in place:

  • Standard Contractual Clauses approved by the European Commission
  • Transfers to countries with EU adequacy decisions
  • Binding Corporate Rules where applicable

Data Breach Procedures

In the event of a personal data breach, we will notify the relevant supervisory authority within 72 hours where feasible. If the breach is likely to result in high risk to your rights and freedoms, we will also notify you directly without undue delay.

Complaints

If you believe we have not handled your data in accordance with GDPR, you have the right to lodge a complaint with a supervisory authority. In the UK, this is the Information Commissioner's Office (ICO):

  • Website: ico.org.uk
  • Phone: 0303 123 1113
  • Address: Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF