Version 06-Sep-21
Coding Ketchup Limited ("we", "us" or "our") is committed to protecting and respecting your privacy.
This Policy, together with our Terms of Trade and Cookies Policy (and any other documents referred to herein) set out the basis on which any personal data we collect from you, or that you provide to us, on www.codingketchup.com (our "website") will be processed by us.
"Personal data" (or personal information), means any information about an individual from which that person can be identified, either just from that information alone, or together with other information we hold.
We will be the data controller of your personal data which you provide to us, or which is collected by us through our website. This means that we are responsible for deciding how we hold and use personal information about you and that we are required to notify you of the information contained in this Privacy Policy ("Policy"). It is important that you read this policy so that you are aware of how and why we are using such information and how we will treat it.
1. Why have a privacy policy?
Information that identifies or can be used to identify a living individual is known as "personal data." All organisations processing personal data must do so fairly, lawfully and in accordance with applicable data protection law. This includes the obligation for us to tell you how we will use your personal data. We treat all our legal obligations seriously and take all steps necessary to ensure compliance when storing and processing your personal data.
2. Privacy policy
2.1 Why do we collect personal data about you?
The company will collect personal data about you in order to meet its obligations to provide a service, respond to an enquiry or fulfil a client request. If you do not provide this information, we will not be able to provide you with the information or respond to your enquiry.
"Personal data" (or personal information), means any information about an individual from which that person can be identified, either just from that information alone, or together with other information we hold.
2.2 What personal data do we collect about you and how?
We may collect the following information about you:
We collect your personal data in several different ways, including the following:
if you interact with us through our website, for example by filling in forms, or if you communicate with us by email, we will collect the personal data that you provide to us;
if you order any of our services, including if you create an account with us;
if you make payments or modify your account details; when you visit our websites (for example by cookies, your IP address and other browser- generated information). More information is provided in our Cookies Policy.
2.3 How do we use your personal data?
We will use this personal data for the purpose of: (i) providing you with any information or services which you request from us; (ii) dealing with your enquiry; or (iii) taking credit card payments through our web portals.
In most cases, the provision of your personal data is voluntary. However, if you request information from us or make an enquiry, we will not be able to provide you with that information or to respond to your enquiry, without obtaining some basic information from you, such as your name and contact details. If you do not provide this information, we will not be able to provide you with the information or respond to your enquiry.
If you order services from us through our website, you will first be required to create an account, which will require you to provide your name and email address. We will not be able to provide you with our services without this information.
If you have provided any feedback to us, then we may use this feedback to improve our website and/or the services we provide.
It is in our legitimate interests to process your personal data in this way, as it is necessary to respond to your request or enquiry to provide you with our services and to help improve our website and our services.
We may also use your personal data to provide you with information about our services which we think may be of interest to you. Unless it is our legitimate interests to use your personal data to provide you with this information, we will obtain your consent to do so.
You can request us to stop using your personal data for marketing purposes at any time by contacting us using the details at the end of this Privacy Policy.
We will not carry out any solely automated decision-making using your personal data.
2.4 Who is your personal data shared with?
We will disclose this information to selected third parties who we have engaged to assist us with the provision of our website and our services, including:
We will also share your data with the third parties set out below:
We will enter into agreements with such third parties to ensure that they respect the security of your data and use it only in accordance with data protection law.
2.5 Change of purpose
We will only use your personal information for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If we need to use your personal information for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.
2.6 Storage of your personal data
We will only keep your personal data for as long as we need to in order to fulfil the relevant purpose(s) it was collected for, as set out above in this policy, and for as long as we are required to keep it for legal purposes and legitimate business interests.
2.7 Safeguarding your personal data
We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this policy. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our website. Any transmission is at your own risk.
All our third-party service providers and other entities in the group are required to take appropriate security measures to protect your personal data in line with our policies. We require these third parties to treat your personal data in accordance with data protection law and to keep it confidential. We do not allow our third-party service providers to use your personal data for their own purposes.
We only permit them to process your personal data for specified purposes and in accordance with our instructions.
The company takes the security of your data seriously. It has internal policies and controls in place to ensure that your data is not lost, accidentally destroyed, misused or disclosed, and is not accessed except by our employees in the proper performance of their duties. Further details can be found in the company's Management and Operations system.
2.8 Your rights
Data protection laws provide you with the following rights, to:
You also have the right to object to the processing of your personal information where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground.
You will not have to pay a fee to access your personal information (or to exercise any of the other rights above). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.
We may need to request specific information from you to help us confirm your identity and ensure your right to access the information (or to exercise any of your other rights). This is another appropriate security measure to ensure that personal information is not disclosed to any person who has no right to receive it.
Our website may, from time to time, contain links to and from other websites, which will have their own privacy policies for which we do not accept any responsibility or liability. Please check these policies before you submit any personal data to these websites.
3. Client Privacy Policy
3.1 Why do we collect personal data about you?
As part of our client engagement process, the company will collect and process personal data relating to the client's request. The company is committed to being transparent about how it collects and uses that data and to meeting its data protection obligations.
"Personal data" (or personal information), means any information about an individual from which that person can be identified, either just from that information alone, or together with other information we hold.
3.2 What personal data do we collect about you and how?
As part of our client engagement process, the company will collect a range of information about you. This could include:
Personal data may be sourced through information you have posted on the client's website or social media sites such as LinkedIn.
Data will be stored in a range of different places, including on the company's client relationship management systems and on other IT systems (including email).
3.3 How do we use your personal data?
We will use this personal data for the purpose of: (i) providing you with any information or services which you request from us; (ii) dealing with your enquiry; or (iii) taking credit card payments through our web portals.
In most cases, the provision of your personal data is voluntary. However, if you request information from us or make an enquiry, we will not be able to provide you with that information or to respond to your enquiry, without obtaining some basic information from you, such as your name and contact details. If you do not provide this information, we will not be able to provide you with the information or respond to your enquiry.
If you order services from us through our website, you will first be required to create an account, which will require you to provide your name and email address. We will not be able to provide you with our services without this information.
If you have provided any feedback to us, then we may use this feedback to improve our website and/or the services we provide.
It is in our legitimate interests to process your personal data in this way, as it is necessary to respond to your request or enquiry to provide you with our services and to help improve our website and our services.
We may also use your personal data to provide you with information about our services which we think may be of interest to you. Unless it is our legitimate interests to use your personal data to provide you with this information, we will obtain your consent to do so.
You can request that we stop using your personal data for marketing purposes at any time by contacting us using the details at the end of this Privacy Policy.
3.4 Who is your personal data shared with?
Your information may be shared internally for the purposes of a client engagement exercise. This includes members of the Sales and Marketing team:
We will share your personal data with other entities in our group as part of our regular reporting activities on company performance, in the context of a business reorganisation or group restructuring exercise, for system maintenance support and hosting of data.
3.5 Change of purpose
We will only use your personal information for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If we need to use your personal information for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.
3.6 Storage of your personal data
We will only keep your personal data for as long as we need to in order to fulfil the relevant purpose(s) it was collected for, as set out above in this policy, and for as long as we are required to keep it for legal purposes and legitimate business interests.
3.7 Safeguarding your personal data
We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this policy. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our website. Any transmission is at your own risk.
All our third-party service providers and other entities in the group are required to take appropriate security measures to protect your personal data in line with our policies. We require these third parties to treat your personal data in accordance with data protection law and to keep it confidential. We do not allow our third-party service providers to use your personal data for their own purposes. We only permit them to process your personal data for specified purposes and in accordance with our instructions.
The company takes the security of your data seriously. It has internal policies and controls in place to ensure that your data is not lost, accidentally destroyed, misused or disclosed, and is not accessed except by our employees in the proper performance of their duties. Further details can be found in the company's Management and Operations system.
3.8 Your rights
Data protection laws provide you with the following rights, to:
You also have the right to object to the processing of your personal information where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground.
You will not have to pay a fee to access your personal information (or to exercise any of the other rights above). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.
We may need to request specific information from you to help us confirm your identity and ensure your right to access the information (or to exercise any of your other rights). This is another appropriate security measure to ensure that personal information is not disclosed to any person who has no right to receive it.
Our website may, from time to time, contain links to and from other websites, which will have their own privacy policies for which we do not accept any responsibility or liability. Please check these policies before you submit any personal data to these websites.
4. Job applicants
4.1 Why do we collect personal data about you?
The company will collect personal data about you in order to progress the Recruitment process.
"Personal data" (or personal information), means any information about an individual from which that person can be identified, either just from that information alone, or together with other information we hold.
4.2 What personal data do we collect about you and how?
As part of our recruitment process, the company will collect and process personal data relating to job applicants. The company is committed to being transparent about how it collects and uses that data and to meeting its data protection obligations.
As part of our recruitment process the company will collect a range of information about you. This includes:
The company may collect this information in a variety of ways. For example, data might be contained in application forms, CVs, obtained from your passport or other identity documents, or collected through interviews or other forms of assessment.
If you are offered employment following the recruitment process, we will require further personal data from you, details of which are contained in our Employee Data Privacy Notice.
Personal data may be sourced through information you have posted on job boards or social media sites such as LinkedIn where you have stated that you currently seeking employment.
The company may also collect personal data about you from third parties, such as references supplied by former employers, information from employment background check providers and information from criminal records checks. The company will seek information from third parties only once a job offer to you has been made and will inform you that it is doing so.
4.3 How do we use your personal data?
The company needs to process data to take steps at your request prior to entering into a contract with you. It may also need to process your data to enter into a contract with you.
In some cases, the company needs to process data to ensure that it is complying with its legal obligations. For example, it is required to check a successful applicant's eligibility to work in the UK before employment starts.
The company has a legitimate interest in processing personal data during the recruitment process and for keeping records of the process. Processing data from job applicants allows the company to manage the recruitment process, assess and confirm a candidate's suitability for employment and decide to whom to offer a job. The company may also need to process data from job applicants to respond to and defend against legal claims.
The company may process special categories of data, such as information about ethnic origin, sexual orientation or religion or belief, to monitor recruitment statistics. It may also collect information about whether applicants are disabled to ensure reasonable adjustments for candidates who have a disability. The company processes such information to carry out its obligations and exercise specific rights in relation to employment.
For some roles, the company is obliged to seek information about criminal convictions and offences. Where the company seeks this information, it does so because it is necessary for it to carry out its obligations and exercise specific rights in relation to employment.
If your application is unsuccessful, the company may keep your personal data on file in case there are future employment opportunities for which you may be suited. The company will ask for your consent before it keeps your data for this purpose and you are free to withdraw your consent at any time.
4.4 Who is your personal data shared with?
Your information may be shared internally for the purposes of the recruitment exercise. This includes members of the HR and recruitment team, interviewers involved in the recruitment process, managers in the business area with the vacancy and IT staff if access to the data is necessary for the performance of their roles.
We will also share your data with the third parties set out below:
We will share your personal data with other entities in our group as part of our regular reporting activities on company performance, in the context of a business reorganisation or group restructuring exercise, for system maintenance support and hosting of data.
The company will not share your data with any other third parties, unless your application for employment is successful and it makes you an offer of employment. The company will then share your data with former employers to obtain references for you, employment background check providers to obtain necessary background checks and the Disclosure and Barring Service to obtain necessary criminal records checks. These are in addition to the other organisations as set out in our Employee Privacy Notice.
In addition, should you require any reasonable adjustments to your role it may be necessary to contact an external provider for supporting in understanding your condition and obtaining any specialist equipment. No third party will be contacted without your consent. Third parties may include Occupational Heath, Access to Work etc.
The company will not transfer your data outside the European Economic Area.
4.5 Change of purpose
We will only use your personal information for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If we need to use your personal information for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.
4.6 Storage of your personal data
If your application for employment is unsuccessful, the company will hold your data on file for 3 months after the end of the relevant recruitment process. If you agree to allow the company to keep your personal data on file, the company will hold your data on file for a further 3 months for consideration for future employment opportunities. At the end of that period, or if you withdraw your consent prior to that date, your data is deleted or destroyed.
If your application for employment is successful, personal data gathered during the recruitment process will be transferred to your personnel file and retained during your employment. The periods for which your data will be held will be provided to you in a new privacy notice.
Data will be stored in a range of different places, including on your application record, in HR management systems and on other IT systems (including email).
4.7 Safeguarding your personal data
We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this policy. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our website. Any transmission is at your own risk.
All our third-party service providers and other entities in the group are required to take appropriate security measures to protect your personal data in line with our policies. We require these third parties to treat your personal data in accordance with data protection law and to keep it confidential. We do not allow our third-party service providers to use your personal data for their own purposes. We only permit them to process your personal data for specified purposes and in accordance with our instructions.
The company takes the security of your data seriously. It has internal policies and controls in place to ensure that your data is not lost, accidentally destroyed, misused or disclosed, and is not accessed except by our employees in the proper performance of their duties. Further details can be found in the company's Management and Operations system.
4.8 Your rights
As a data subject, you have rights. You can:
You will not have to pay a fee to access your personal information (or to exercise any of the other rights above). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.
If you believe that the company has not complied with your data protection rights, you can complain to the Information Commissioner.
4.9 What if you do not provide personal data?
You are under no statutory or contractual obligation to provide data to the company during the recruitment process. However, if you do not provide the information, the company may not be able to process your application properly or at all.
4.10 Automated decision-making
Recruitment processes are not based solely on automated decision-making.
5. Freelancers
5.1 Why do we collect personal data about you?
The company will collect personal data about you in order to progress the freelancer engagement process.
"Personal data" (or personal information), means any information about an individual from which that person can be identified, either just from that information alone, or together with other information we hold.
5.2 What personal data do we collect about you and how?
As part of our freelancer engagement process, the company will collect and process personal data where it is necessary. The company is committed to being transparent about how it collects and uses that data and to meeting its data protection obligations.
As part of our freelancer engagement process the company will collect a range of information about you. This could include (and is not limited to):
The company may collect this information in a variety of ways. For example, data might be contained in application forms, CVs, obtained from your passport or other identity documents, or collected through interviews or other forms of assessment.
Personal data may be sourced through information you have posted on job boards or social media sites such as LinkedIn where you have stated that you currently available for work.
The company may also collect personal data about you from third parties, in order that background checks can be undertaken. Background checks (such as copies of DBS checks), identity verification information (such as copies of a passport (and passport number, expiration date and country of residence), driving licence or identity card), proof of address and references. The background and identify verification checks we carry out (unless subject to specific client requirements, as explained below), may entail the Baseline Personnel Security Standard (BPSS) checks (see https://www.gov.uk/government/publications/government-baseline-personnel-security-standard for more details). The company carries out these checks as it works regularly with government bodies who require them to be carried out and it is contractually obliged to do so.
5.3 How do we use your personal data?
The company will collect and process your personal data where it is necessary:
We need this information in order to engage you as a Linguist and without it we will not be able to add you to our list of approved Linguists. In some cases, we may also carry out (where required by our clients or otherwise necessary) enhanced security clearance checks which we will use to assess your suitability before engaging you as a Linguist and to engage you to carry out work assignments for our clients. If such checks are required, we will inform you that we intend to carry out these checks on you. If you do not meet the requirement of the enhanced security clearance checks, then you may not be able to be engaged as a Linguist for certain clients, but this will not affect your suitability for any potential future engagements with other clients.
5.4 Who is your personal data shared with?
Your information may be shared internally for the purposes of the engagement exercise. This includes members of the recruitment team, interviewers involved in the recruitment process, managers in the business area with the vacancy and IT staff if access to the data is necessary for the performance of their roles.
We will also share your data with the third parties set out below:
We will share your personal data with other entities in our group as part of our regular reporting activities on company performance, in the context of a business reorganisation or group restructuring exercise, for system maintenance support and hosting of data.
The company will not share your data with any other third parties unless your application is successful. The company will then share your data with former employers to obtain references for you, employment background check providers to obtain necessary background checks and the Disclosure and Barring Service to obtain necessary criminal records checks. These are in addition to the other organisations as set out in our Service Agreements. The company will not transfer your data outside the European Economic Area.
5.5 Change of purpose
We will only use your personal information for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If we need to use your personal information for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.
5.6 Storage of your personal data
If your application for employment is unsuccessful, the company will hold your data on file for 3 months after the end of the relevant recruitment process. If you agree to allow the company to keep your personal data on file, the company will hold your data on file for a further 3 months for consideration for future employment opportunities. At the end of that period, or if you withdraw your consent prior to that date, your data is deleted or destroyed.
If your application for employment is successful, personal data gathered during the recruitment process will be transferred to your personnel file and retained during your employment. The periods for which your data will be held will be provided to you in a new privacy notice.
Data will be stored in a range of different places, including on your application record, in HR management systems and on other IT systems (including email).
5.7 Safeguarding your personal data
We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this policy. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our website. Any transmission is at your own risk.
All our third-party service providers and other entities in the group are required to take appropriate security measures to protect your personal data in line with our policies. We require these third parties to treat your personal data in accordance with data protection law and to keep it confidential. We do not allow our third-party service providers to use your personal data for their own purposes. We only permit them to process your personal data for specified purposes and in accordance with our instructions.
The company takes the security of your data seriously. It has internal policies and controls in place to ensure that your data is not lost, accidentally destroyed, misused or disclosed, and is not accessed except by our employees in the proper performance of their duties. Further details can be found in the company's Management and Operations system.
5.8 Your rights
As a data subject, you have rights. You can:
You will not have to pay a fee to access your personal information (or to exercise any of the other rights above). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.
If you believe that the company has not complied with your data protection rights, you can complain to the Information Commissioner.
5.9 What if you do not provide personal data?
You are under no statutory or contractual obligation to provide data to the company during the recruitment process. However, if you do not provide the information, the company may not be able to process your application properly or at all.
6. Contacting us
If you have any questions, comments or requests regarding this policy or you would like to exercise any of your rights set out above, you can contact us in the following ways: