top of page

Data Protection Policy

Advance Management (UK) Ltd takes the security and privacy of your data seriously. We need to gather 
and use information or ‘data’ about you as part of our business and to manageour relationship with you.
We intend to comply with our legal obligations under the DataProtection Act 2018 (the ‘2018 Act’) and
the EU General Data Protection Regulation(‘GDPR’) in respect of data privacy and security. We have a duty to notify you of the information contained in this policy.
The Company is a ‘data controller’ for the purposes of your personal data. This means that we determine the purpose and means of the processing of your personal data.
This policy applies to data processed regarding current and former employees and workers, job applicants, agency work seekers, agency workers and individual client contacts. If you fall into one of these categories, then you are a ‘data subject’ for the purposes of this policy.
The company will hold data in accordance with our Data Retention Policy. A copy of this can be found on our website or requested from our office. We will only hold data for as long as necessary for the purposes for which we collected it.
The Company will only process personal data where it has a legal basis for doing so.
The Company’s Privacy Notice is available on our website, provided to job applicants, work seekers and agency workers in the application pack and provided to current and new clients and staff.             
Data Protection Principles

The Company will review the personal data it holds on a regular basis to ensure it is being lawfully processed and it is accurate, relevant and up to date.
Before transferring information to a third party (e.g. past, current or prospective employers,suppliers, clients, intermediaries or any other third party), the Company will establish that it has a legal basis for making the transfer.
Personal data must be processed in accordance with our ‘Data Protection Principles.’ It must:
  • be processed fairly, lawfully and transparently;
  • be collected and processed only for specified, explicit and legitimate purposes;
  • be adequate, relevant and limited to what is necessary for the purposes for which it is processed;
  • be accurate and kept up to date. Any inaccurate data must be deleted or rectified without delay;
  • not be kept for longer than is necessary for the purposes for which it is processed;
  • be processed in accordance with the rights of data subjects;
  • not be transferred to another country without appropriate safeguards being in place;
  • be processed securely;
  • We are accountable for these principles and must be able to show that we are compliant.

How we define personal data
This policy applies to all personal data whether it is stored electronically, on paper or on other
This personal data might be provided to us by you, or someone else (such as a former
employer, ), or it could be created by us. It could be provided or created during
the recruitment process or during the course of the contract of employment or contract for services or after its termination. It could be created by your manager or other colleagues.
We will collect and use the following types of personal data about you:
recruitment information such as your application form and CV, references, qualifications and membership of any professional bodies and details of any pre-employment assessments;
your contact details and date of birth;
the contact details for your emergency contacts;
your gender;
information about your contract of employment or contract for services including start and end dates of employment, role and location.
How we process your personal data

The Company will process your personal data (including special categories of personal data)
in accordance with our obligations under the 2018 Act.
We will use your personal data for:
Compliance with a legal obligation (e.g. real time information reporting to HMRC) The performance of the contract (e.g. processing payroll, monitoring attendance) Protecting the legitimate interest of the Company or third party (e.g. collecting information during a disciplinary, grievance, complaints or disputes process, or collecting workplace data in order to improve workplace performance). You have the right to challenge our legitimate interests and request that we stop this processing.
We can process your personal data for these purposes without specifically informing you or obtaining your consent. We will not use your personal data for an unrelated purpose without telling you about it and the legal basis that we intend to rely on for processing it.
We have to process your personal data in various situations during your recruitment, employment or engagement and even following termination of your employment or engagement. 

Privacy by design and default

We are required to demonstrate that privacy considerations are embedded into all our processes and procedures. We complete documented data protection impact assessments on our processes and procedures to ensure we are compliant with the principles of GDPR. This is completed each time a policy or procedure is changed.
The types of measures that we have implemented includes: Data minimisation (i.e. not keeping the data longer than is necessary) Cyber security including password protection and encryption Lockable storage of physical records.

Sharing your personal data

Sometimes we might share your personal data with group companies or our contractors and agents to carry out our obligations under our contract with you or for our legitimate interests.
We require those companies to keep your personal data confidential and secure and to protect it in accordance with the law and our policies. They are only permitted to process your data for the lawful purpose for which it has been shared and in accordance with our
We do not send your personal data outside the European Economic Area. If this changes you will be notified of this and the protections which are in place to protect the security of your data will be explained.

                                           Subject access requests

This request must be made in writing. If you receive such a request, you should forward it immediately to the Managing Director who will coordinate a response.
If you would like to make a SAR in relation to your own personal data, you should make this in writing to

Affzel Adam
           Managing Director
           217 Bolton Road
           Irlam o’th Heights
           M6 7HP

bottom of page