General Principles for this Privacy Policy    

This policy applies to all persons working for Partners in Change Consulting (hereafter, The Company) or on our behalf in any capacity, including employees at all levels, directors, officers, associates, agency workers, seconded workers, volunteers, agents, contractors, and suppliers.  

This privacy policy sets out how The Company uses and protects any information that you give The Company as a potential recruit when you use their website or make an application for employment or membership of our community.   

The Company is committed to ensuring that your privacy is protected. Should we ask you to provide certain information by which you can be identified when using our website or applying for employment, then you can be assured that it will only be used in accordance with this privacy statement.  

The Company may change this policy by updating this page. You should check this page from time to time to ensure that you are happy with any changes. This policy is effective from the date in the page footer.  

Data Protection Principles    

In relation to your personal data, we will:  

  • process it fairly, lawfully and in a clear and transparent way  
  • collect your data only for reasons that we find proper in ways that have been explained to you  
  • only use it in the way that we have told you about  
  • ensure it is correct and up to date  
  • keep your data for only as long as we need it  
  • process it in a way that ensures it will not be used for anything that you are not aware of or to which you have consented    


What Information We Collect 

We may collect some, or all, of the following information when you are contacting us through the website and / or progressing through our selection process:  

  • personal details that you provide including your name, address, email address, and phone numbers  
  • information included on your CV including education history; employment history; other skills and experience; and references  
  • any information you provide to us during any subsequent interview  
  • documentation relating to your right to work in the UK  
  • current and previous job titles, job descriptions  
  • details of your criminal record  
  • if you contact us, we may keep a record of that correspondence  
  • A record of your progress through our selection process  
  • Details of your visits to The Company’s website including, but not limited to, traffic data, location data, weblogs and other communication data, the site that referred you to The Company’s Website and the resources that you access.  


We may also collect information on you from other publicly open sources, such as LinkedIn and other social media profiles.  

Where permitted by law, we may also collect information relating to your health (for example, disability information for reasonable work adjustment purposes), diversity information, including race, ethnic origin, sexual orientation and religion (for equal monitoring purposes) as well as details of any unspent criminal convictions where required by a client or by us if you apply for a role with us. 

We also obtain personal data about your from third parties, including: 

  • Referees – when you are offered a job; 
  • Former employers – to confirm dates of employment; 
  • Educational institutions – to check your academic qualifications; 
  • The Disclosuring and Barring Service or Disclosure Scotland – if we need to obtain details of unspent criminal convictions; 
  • Credit reference agencies – if we need to check your financial standing; 
  • Publicly available sources such as LinkedIn and social media sites to enhance the information we hold about you, in order to help us find more suitable roles for you; 
  • Clients to whom we have provided your CV and who have engaged with you as part of a job application or who have given feedback on your CV.  


What We Do With the Information We Collect  

We rely on legitimate interest as the lawful basis on which we collect and use your personal data. Our legitimate interests are the recruitment of Employees and Associates for our business.  

Where you apply for a job opening through our online / web functionality, we rely on your consent, which is freely given by you during the application process, to disclose your personal data to The Company on the basis described below.  

We require this information to help us operate reliable, robust, and fair selection of candidates, and in particular to:  

  • assess your application, skills, qualifications, and suitability for the role or position for which you are applying  
  • consider your application in respect of other roles  
  • communicate with you about the recruitment process itself  
  • to carry out any necessary background and reference checks, where these apply  
  • to comply with legal or regulatory requirements  

We do not employ any automated screening of candidate applications.  All decisions are made by our own people. 

Disclosure Of Your Information  

We may pass relevant elements of your information to our customers, but this will always be with your consent, and only in respect of the specific opportunity for which you have applied, or of which you are aware.  

How We Collect Your Data  

For the purposes of recruitment, we collect data about you in a variety of ways and this will usually start when we undertake a recruitment exercise where we will collect the data from you directly.  

This includes the information you would normally include in a CV or a recruitment cover letter, or notes made by our recruiting officers in relation to your application, or during a recruitment interview. Other details may be collected directly from you in the form of official documentation such as your driving licence, passport or other right to work evidence.  

In some cases, we will collect data about you from third parties, such as employment agencies, former employers when gathering references, or credit reference agencies. Where this is necessary, we will inform you and seek your consent to proceed. 

Keeping Your Data Secure  

We are committed to ensuring that your information is secure.  

In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic, and managerial processes and procedures to safeguard and secure the information we collect.  

We store and share relevant information in MS 365 in the cloud.  

How We Use Cookies  

In registering an application, a candidate is likely to have visited The Company’s website.  In this case a cookie may be deployed automatically.  A cookie is a small file which asks permission to be placed on your computer’s hard drive. Once you agree, the file is added, and the cookie helps analyse web traffic or lets us know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes, and dislikes by gathering and remembering information about your preferences.  

We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.  

Overall, cookies help us provide you with a better website by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us.  

You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.  

Controlling Your Personal Information  

We have security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed. We also limit access to your personal data to those who have a business need to know, and who are subject to a duty of confidentiality.  

We have procedures to deal with any suspected data breach, and we will notify you as appropriate.  

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, reporting or accounting requirements and in line with your preferences for us to retain it.   

We will not sell, distribute or lease your personal information to third parties unless we have your permission or are required by law to do so.   

Under the General Data Protection Regulation you have a number of important rights free of charge. In summary, those include rights to:  

  • access to your personal data and to certain other supplementary information that this Privacy Notice is already designed to address  
  • require us to correct any mistakes in your information which we hold  
  • require the erasure of personal data concerning you in certain situations  
  • receive the personal data concerning you which you have provided to the Company, in a structured, commonly used, and machine-readable format and have the right to transmit those data to a third party in certain situations  
  • object at any time to processing of personal data concerning you for direct marketing  
  • object to decisions being taken by automated means which produce legal effects concerning you or similarly significantly affect you  
  • object in certain other situations to our continued processing of your personal data  
  • otherwise restrict our processing of your personal data in certain circumstances  
  • claim compensation for damages caused by our breach of any data protection laws.  

For further information on each of those rights, including the circumstances in which they apply, see the

Guidance from the UK Information Commissioner’s Office (ICO) on individuals rights under the General Data Protection Regulation 

If you would like to exercise any of those rights, please:  

  • contact us using our ‘Contact Us’ form on this website 
  • let us have enough information to identify you,  
  • let us have proof of your identity and address, and  
  • let us know the information to which your request relates