Applicant Privacy Notice

 

This Privacy Notice applies to all applicants based in the EU applying to Corero Network Security plc or any of its subsidiaries (“Corero”) for work as employees, self-employed contractors or interns.  

 

Corero takes its data protection obligations seriously and this notice explains how we will use your personal data and the measures we take to protect it.

 

The personal data we collect and where it comes from

If you make your application directly through our website then your application information will be processed using ApplicantPro, a tool provided by a third party based in the United States. 

 

ApplicantPro will not pass information you provide specifically for a job with Corero on to anyone apart from us.  ApplicantPro’s privacy notice can be accessed through a link on the application form on our website.

 

If you make an application to Corero via a recruitment agency then in making the introduction that agency is acting as the data controller, determining what information we receive and how we may use it.  You should make sure that you have read and understood the privacy notice and any terms of business that any recruitment agency you use applies.

 

During the application process we may collect additional information direct from you e.g. during interviews and from third party sources, such as referees and background checkers and from social media sites, e.g. LinkedIn.

How we use your personal information

All the information that we collect will be used for the purposes of your application to work with Corero.

Who we share your personal information with

Internal sharing:

Corero shares all personal information that it collects with Corero Network Security, Inc (“Corero US”).  Your information may be shared with other group companies, particularly Corero Group Services Limited, a company which is based in the UK.  All group companies that we share personal information with are required to hold and use that data in accordance with the principles set out in this policy.

 

Any personal information that Corero collects about you may be shared with a limited number of employees and contractors who work for us on a confidential and “need to know” basis to take the recruitment process forward.  Corero does not rely on automated decision making in its recruitment process.

 

External sharing:

Corero will not share any of your personal information outside of its corporate group without your express consent. If you progress through the recruitment process you may be asked to provide additional information to third party providers who provide services to Corero such as employee background checking.  We will also collect and use such additional information about you as these third parties may provide to assist it with the recruitment decision making process. This may include information such as credit checks, right to work checks, confirmation of academic qualifications, references and criminal record checks. All of Corero’s suppliers are under contractual obligations to use your personal data only for the purpose for which you have supplied it and to hold it in accordance with all applicable data protection laws.

 

Please note that if you sign up for job alerts using the form that also appears on the application page on our website then you will be supplying your data to a third party, ApplicantPro, whose privacy notice is available through a link on our website.  You are not required to sign up for job alerts when making an application to Corero and Corero accepts no liability in respect of the processing of any data that you supply to ApplicantPro or any other third party.

 

 

Transferring your personal information outside the EEA

When personal information is being transferred outside the European Economic Area (EEA) we are under an obligation to ensure that such transfer is performed in a manner that ensures that your personal information is adequately protected.

 

Transfers to Corero US: Your personal information will be transferred to Corero US.  We have entered a binding agreement with Corero US to ensure that it stores and uses your personal data in accordance with your rights under this policy.

 

Any data that you upload via our web-based recruitment tool will be held on secure servers in the United States managed by our third-party supplier ApplicantPro.  Under the terms of our agreement with this supplier your data can only be used for the purposes that we specify, which will be in accordance with the terms of this notice.

 

Security

We are committed to ensuring that your personal information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the personal information we collect.  However, please note that no transfer of personal information over the internet is ever completely secure.  Consequently, we cannot guarantee the security of any personal information which you transfer to us, or which we transfer to you, over the internet.

 

How long we retain your personal information for

If your application is successful and you are engaged to work for Corero in the UK or EU then the personal data gathered during the recruitment process will continue to be held by Corero in accordance with its GDPR Policy for UK and EU Employees, Contractors and Interns, which will be supplied to you on joining.  If your application is not successful then unless Corero has a legitimate reason to continue to hold your personal data your details will be held for six (6) months after the closure of the recruitment process for the job you applied for and then will be permanently deleted or destroyed.

Legal information

For the purposes of data protection law, the entity responsible for deciding how personal information within the scope of this policy is collected, stored and used (“data controller”) is: Corero Network Security (UK) Limited (‘Corero UK’), a company registered in England and Wales with company number 04047090, whose registered address is Regus House Highbridge, Oxford Road, Uxbridge, Middlesex, UB8 1HR.

 

The person within Corero UK who is responsible for data privacy issues is the Chief Financial Officer. Any questions regarding this policy can be sent to him at  andrew.miller@corero.com.  To ensure prompt attention to your queries please put “Data Privacy” in the subject of your email.

 

The lawful basis that Corero relies on for processing your data is to explore the possibility of employing you (“contract”); its own legitimate interest in hiring the best people for its business and defend itself from claims (“legitimate interests”) and to fulfil its legal obligations (“legal obligation”).

You have the right to request access to any personal data that we hold about you and to request its transfer to a third party.  In certain circumstances you may also have the right to have your personal data rectified, erased or have its processing by us restricted, or to object to our processing your personal data at all.  Where our processing is based on your consent you also have the right to withdraw your consent and unless we can rely on another legitimate basis processing will cease.

 

Although we would like the opportunity to try and address any concerns directly first, you have the right to lodge a complaint with the Information Commissioner’s Office at any time.  For further information see the ICO website: https://ico.org.uk.