ALERT: Jobseekers are being fraudulently contacted by scammers. Click here for more details.
INTRODUCTION
HOW TO USE THIS PRIVACY POLICY
THE PRIVACY POLICY
How do we collect your personal data?
What kind of personal data do we collect and how do we use it?
Provision of Hays Client Platform Services
We may want to use information that we find out about you when you use the Hays Client Platform in order to improve your experience of the services that we provide to you outside of the Hays Client Platform. We consider that it is in our (and your) legitimate interests to process your personal data in this way, namely so that we can improve and develop our wider service offering to you and provide you with the best overall service that we can. For more information about our reliance on the legitimate interests legal basis, please see the section headed 'Our legal bases for processing your data' below.
Our legal bases for processing your data
Use of and links to third parties
Third Party
Terms and Conditions of Use
Privacy policy
Functionality
Go1
https://www.go1.com/en-gb/terms/user-terms
https://www.go1.com/en-gb/terms/privacy-policy
Training
Who do we share your personal data with?
How do we safeguard your personal data?
How long do we keep your personal data for?
How can you access, amend or take back the personal data that you have given to us?
One of the GDPR's main objectives is to protect and clarify the rights of EU and UK citizens and individuals in the EU and UK with regards to data privacy. This means that you retain various rights in respect of your data, even once you have given it to us. These are described in more detail below.
To get in touch about these rights, please contact us. We will seek to deal with your request without undue delay, and in any event within one month (subject to any extensions to which we are lawfully entitled). Please note that we will, where necessary, keep a record of your communications to help us resolve any issues which you raise. Please also note that where you make a request, we will action your request in relation to your personal data that we have collected and otherwise processed in connection with the Hays Client Platform and all other personal data that we may hold about you on our internal Systems as someone who has previously registered as a Client with Hays. By way of illustration, if you request for your personal data to be erased, we will erase all personal data that we hold about you, not just personal data that we have collected and otherwise processed in connection with your use of the Hays Client Platform.
How do we store and transfer your data internationally?
Who is responsible for processing your personal data when you access the Hays website?
What are cookies and how do we use them?
This document contains intellectual property rights (including copyright) which are owned by or licenced to Hays. All rights are reserved. No part of this document may be reproduced in any material form without the prior written permission of the rights owner. Any breach of copyright or other intellectual property right may result in civil action being taken.
ANNEX 1 – HOW TO CONTACT US
Country in which you use Hays' services or supply Hays with services
Hays entity responsible for processing the personal data of website users
The Hays entity responsible for processing the personal data of candidates, Clients, suppliers and the emergency contacts and referees of candidates and Hays' staff will depend on which of the below companies is the counterparty associated with the relevant arrangement
How you can get in touch with us:
How you can get in touch with us to update your marketing preferences
UK
Hays Specialist Recruitment Limited
You can write to us at the following address:
20 Triton Street, London, United Kingdom, NW1 3BF
Alternatively, you can send an email to: DataUK@hays.com.
You can do this by updating your profile here.
Alternatively you can email us at: DataUK@hays.com or by clicking the unsubscribe link in any marketing e-mail we send to you.
ANNEX 2 – HOW TO CONTACT YOUR LOCAL SUPERVISORY AUTHORITY
Details of your local supervisory authority
The Information Commissioner's Office. You can contact them in the following ways:
ANNEX 3 – COOKIES LIST
Cookie Name
Purpose of the cookie
Data collected
How this data is shared
Duration of cookie
Cookie provider Privacy Policy
Google Analytics
Google Analytics is a web analytics service provided by Google, Inc. Google Analytics uses cookies to help us analyse how visitors use our site. Google will use this information for the purpose of assessing your use of the website, compiling reports on website activity for us and providing other services to us relating to website activity and internet usage.
Anonymous:
Ad Views, Analytics, Browser Information, Cookie Data, Date/Time, Demographic Data, Hardware/Software Type, Internet Service Provider, Interaction Data, Page Views, Serving Domains
Personal Data:
IP Address, Search History, Location Based Data, Device ID, Name, Address, Phone Number, Email Address, Login, IP Address, Unique Device ID
Aggregate data is shared with 3rd parties.
Anonymous data is shared with 3rd parties.
Personal data is shared with 3rd parties.
This is a persistent cookie that expires in 2 years. With each new visit, the expiry date is refreshed back to 2 years.
http://www.google.com/intl/en/policies/privacy/
Google Tag Manager
This cookie is associated with sites using Google Tag Manager to load other scripts and code into a page. The cookie helps us to classify information on our website and label it in a way which makes it easier to be found in future searches.
Date/Time, Demographic Data, Hardware/Software Type, Internet Service Provider, Interaction Data, Page Views, Serving Domains
Shared with 3rd parties.
Browsing session
Hotjar
We use the following services provided by Hotjar Ltd: Heatmaps, Visitor recordings, Funnels and Form Analysis, Feedback Polls and Surveys and Recruiters. Heatmaps show anonymously where users click on a webpage, with red showing the “hottest” areas. Visitor recordings show users actually using the website, collating where the user moves and clicks the mouse. Any personal information is anonymised. Funnels can be used to see where we lost most of our visitors. Forms allow us to analyse exactly where on a form, e.g. on which field, users are stopping and no longer filling in the information. It helps to identify fields that are confusing or causing concern to visitors. Incoming feedback allows us to capture live feedback from users about the website. Feedback polls and surveys give us the facility to create pop-up polls and surveys on different webpages. We can create a set of questions and give users a selection of pre-created answers or a free text box. Recruiters allows us to ask our visitors for their help directly on our pages. We can invite them to a live user test via screen sharing (e.g. via Skype) to truly see how they use our pages and what they are thinking. The information generated by the tracking code and cookie about your use of the website will be transmitted to and stored by Hotjar on servers in Ireland.
Hotjar uses this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and showing website operators how users are using the website and what feedback they have. Hotjar uses a variety of services hosted by third parties, such as Google Analytics and Optimizely. These services will collect information sent by your browser as part of a web page request, such as cookies or your IP request. For information on how Google Analytics and Optimizely collect and use your information, please refer to their privacy policies which are located here and here respectively. The cookies used by Hotjar have differing durations: some are 365 days, some persist for the session only.
You can click here to opt out, if you decide that Hotjar's services (as described above) are not for you: https://www.hotjar.com/opt-out.
This cookie is also set when you minimise a Recruit User Testers widget. It is used to ensure that the widget stays minimised when you navigate through our site.
Analytics, Browser Information, Cookie Data, Date/Time, Demographic Data, Hardware/Software Type, Internet Service Provider, Interaction Data, Page Views, Serving Domains
IP Address, Location Based Data, Clickstream Data, Device ID, IP Address, Unique Device ID
Not disclosed by the cookie provider.
1 Month
http://www.hotjar.com/privacy
AWS LB
When using an Amazon ELB Application Load Balancer and working with Sticky Sessions the load balancer inserts a cookie named AWSALB in the first request. The name of the cookie is AWSALB. The contents of these cookies are encrypted using a rotating key.
Third party cookie
7 days
https://docs.aws.amazon.com/elasticloadbalancing/latest/application/sticky-sessions.html
Incapsula
Incapsula DDoS Protection and Web Application Firewall: The cookie on which sessions are related to a specific visitor (visitor representing a specific computer) In order to identify clients which have already visited Incapsula. The only cookie that is persistent, for the duration of 12 months.
Persistent for 12 months
https://docs.microsoft.com/en-us/azure/active-directory-b2c/cookie-definitions
Azure AD B2C
SSO
Azure Active Directory B2C provides business-to-customer identity as a service. Used to route requests to the appropriate production instance.
Holds user membership data across tenants. The tenants a user is a member of and level of membership (Admin or User).
End of browser session
GLOSSARY