Contact us

Recruitment Policy

ABOUT US

Last Amended: 3rd February 2025

Curve Analytics (“we,” “our,” or “us”) is committed to protecting and respecting your privacy. This policy outlines how we collect, use, store, and protect your personal data during our recruitment process, ensuring compliance with the General Data Protection Regulation (GDPR). This policy applies to all candidates.

PURPOSE OF DATA COLLECTION

We use your data exclusively for recruitment purposes, including:

  • Evaluating your application and assessing your qualifications for the role you applied for.
  • Considering your suitability for current and future roles that may align with your skills and experience.
  • Facilitating communication with you regarding updates, interview scheduling, and feedback throughout the recruitment process.
  • Sharing relevant information with internal hiring teams involved in the decision-making process.

TYPES OF DATA COLLECTED

We may collect and store the following types of personal information:

  • Application Information: Details provided in your CV, cover letter, or email, including your name, contact information (e.g., email address, phone number), address, date of birth, educational background, qualifications, work history, and relevant skills.
  • Interview Information: Notes and records of information shared during interviews or assessments.
  • Right-to-Work Documentation: Details related to your eligibility to work in the UK.
  • Correspondence Records: Any communication exchanged with us regarding your application, such as emails, messages, or feedback.
  • Application Progress: Internal records tracking your application status throughout the recruitment stages.

DATA COLLECTION SOURCES

We collect personal data from the following sources:

  • Directly from You: Information you provide during the recruitment process, including your application, CV, cover letter, and any discussions during interviews.
  • From Agencies or Third Parties: Data obtained from recruitment agencies, contractors, or other representatives who may submit your information on your behalf.
  • Publicly Available Sources: Information accessible from platforms such as LinkedIn, job boards, or other online professional profiles that you have made public.
  • References or Recommendations: Details provided by former or current employers, colleagues, or other professional contacts who can attest to your qualifications. We obtain these references only with your explicit consent, which is typically requested after an offer has been made.

DATA SHARING

Your information will be shared internally with members of the People & Operations team and the hiring team involved in the recruitment process. If your application is successful, we may also share your data with the following parties:

  • Former Employers: To conduct reference checks, but only with your explicit consent.
  • Professional Development Managers: Individuals who will support your career growth and trajectory within Curve, ensuring your development aligns with your ambitions and goals.

DATA PROCESSING AND STORAGE LOCATIONS

We do not transfer your personal information outside the EU unless necessary and legally compliant. All data is stored through our Applicant Tracking System which we use to manage our recruitment process. Please review our ATS provider’s privacy policy for more information.

You should keep in mind that:

  • Your information, including personal data, may be transferred to and maintained on computers located outside your state, province, country, or other governmental jurisdiction. Please be aware that data protection laws in these locations may differ from those in your jurisdiction.
  • If you are located outside the United Kingdom and choose to provide information to us, please note that we will transfer your data, including personal data, to the United Kingdom for processing.
  • By providing your information and submitting it under this Privacy Policy, you consent to this transfer and processing of your personal data.
  • Curve Analytics Ltd will take all reasonable steps to ensure that your data is treated securely and in accordance with this Privacy Policy. We will not transfer your personal data to an organisation or country unless we have adequate controls in place to protect your data and other personal information.

DATA PROTECTION

We take the security of your data seriously. We have put in place appropriate security measures to prevent your personal information from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal information to those employees, contractors and other third parties who have a business need to know. These individuals will only process your personal information in accordance with our instructions and are bound by a duty of confidentiality.

We will notify you and any applicable regulator of a suspected breach where we are legally required to do so.

LIMITATIONS OF DATA SECURITY

While we are committed to protecting your personal information and use industry-standard security practices, it’s important to note that no method of transmission over the Internet or electronic storage is entirely secure. Despite our best efforts to safeguard your data, we cannot guarantee its absolute security.

DATA RETENTION

When you submit your application, you will be asked whether you consent to storing your personal data for up to 24 months. If you agree, your data will be securely stored for that period and then deleted from our ATS.If you do not provide consent, your data will only be kept until the position is filled, after which it will be securely deleted.

If we would like to retain your data for consideration for future job opportunities, we will seek your explicit consent to keep your information for an agreed-upon duration.

If your application is successful, your data will be transferred to your personnel file. Further details on data retention will be provided in our employment privacy notice.

CANDIDATE RIGHTS

Under data protection law, you have several rights regarding your personal data, as outlined by the General Data Protection Regulation (GDPR). For more information, you can consult the data protection authority in your country. Your rights include:

  • The Right to Be Informed
    You have the right to receive clear, transparent, and easily understandable information about how we use your data and your rights. This policy aims to provide that information.
  • The Right of Access
    You have the right to access your personal data that we process and to receive information similar to what is outlined in this policy. This enables you to verify that we are using your data lawfully.
  • The Right to Rectification
    You have the right to request correction of your data if it is inaccurate or incomplete.
  • The Right to Erasure
    Also known as the “right to be forgotten,” this right allows you to request the deletion of your data when there is no compelling reason for us to continue processing it. Please note that some exceptions apply, such as legal or regulatory obligations and the exercise or defence of legal claims.
  • The Right to Restrict Processing
    You have the right to restrict or suppress further use of your information. While we can still store your data when processing is restricted, we cannot use it further. We maintain records of individuals who have requested restricted processing to ensure future compliance.
  • The Right to Data Portability
    You have the right to obtain and reuse your data across different services. This allows you to move, copy, or transfer your data easily between our systems and others, securely and without affecting its usability.
  • The Right to Object to Processing
    You have the right to object to certain types of processing, including direct marketing.
  • The Right to Raise a Complaint
    If you are not satisfied with how we process your personal data, you have the right to raise a complaint with your national data protection authority or you can contact our DPO at [email protected] for more information or concerns.
  • The Right to Withdraw Consent
    If our processing of your personal data is based on your consent, you have the right to withdraw that consent at any time. This will not affect the legality of the processing carried out before the withdrawal.

Please note that we may ask you to verify your identity before responding to such requests.

FAILURE TO PROVIDE PERSONAL DATA

You are not legally or contractually required to provide data during the recruitment process. However, if you choose not to provide certain information or withdraw your consent, we may be unable to proceed with your application or manage your candidacy effectively.

DATA PROTECTION MEASURES

We have implemented comprehensive technical and organisational measures to protect your data, including:

  • Data Encryption: Ensuring secure storage and transfer of your information.
  • Access Controls: Restricting access to your data to authorised personnel only.
  • Regular Audits: Conducting periodic compliance checks to maintain our privacy and security standards.

For further information on our data protection practices, please refer to our general privacy policy or our ATS provider’s privacy policy.

POLICY UPDATE

We may update this privacy policy periodically to reflect changes in our practices or legal requirements. We recommend reviewing this policy from time to time to stay informed about how we protect your data.