Introduction
Altera Recruitment Group Ltd ("we", "our", "us") is committed to protecting your personal data and respecting your privacy. This policy outlines how we collect, use, process, and protect your personal data, and your rights under UK GDPR and the Data Protection Act 2018. We operate solely within the United Kingdom.
 

Data Controller Information
Our registered address is: West Wing The Priory, St. Margarets Lane, Fareham, England, PO14 4BQ. We are registered with the Information Commissioner's Office (ICO) under registration number ZB898880. For data protection queries, contact us at: Datacontroller@alteragroup.co.uk
 

Definitions
Personal Data: Any information relating to an identified or identifiable natural person.
Processing: Any operation or set of operations performed on personal data.
Data Subject: The individual to whom personal data relates.
Data Controller: The entity that determines the purposes and means of processing personal data.
Data Processor: The entity that processes personal data on behalf of the data controller.

Types of Personal Data We Collect
a. Candidate Data: Names, addresses, phone numbers, email addresses, CVs, education and employment history, ID documents, references, right to work status, interview notes, job preferences, salary expectations, and equal opportunities data (optional).
b. Client Data: Contact names, company details, job descriptions, communication records, and contractual details.
c. Supplier and Partner Data: Business contact information, service details, and communication records.
d. Website Data: IP addresses, browser data, analytics, and form submission details.

How We Collect Data
We collect data directly from candidates, clients, and website users through application forms, direct submissions, job boards, recruitment platforms, referrals, cookies, and analytics tools. Data may also be obtained from third-party sources including referees, background check providers, and public profiles (e.g., LinkedIn).
 

Lawful Bases for Processing
We process personal data under the following lawful bases under Article 6 of the UK GDPR:
- Consent: When you provide clear consent for us to process your data (e.g., submitting your CV).
- Contract: Where processing is necessary for a contract (e.g., a recruitment agreement).
- Legal Obligation: To comply with legal requirements (e.g., verifying right to work).
- Legitimate Interests: For business operations, provided your interests and rights do not override ours.
We may process special category data (e.g., health, diversity data) only with explicit consent or where legally permitted.

 

How We Use Your Data
- To match candidates with job opportunities.
- To share candidate profiles with potential employers (with consent).
- To conduct eligibility and background checks.
- To communicate about job openings and services.
- To manage and maintain relationships with clients and suppliers.
- To comply with legal and regulatory obligations.
- To maintain business records and manage internal operations.
- To improve our services, including website experience and analytics.

Data Sharing and Disclosure
We may share your data with:
- Prospective employers (with consent).
- Third-party service providers (e.g., background check services, IT support).
- Legal and regulatory bodies (e.g., HMRC, Home Office).
- Professional advisors (e.g., legal counsel).
All third parties are required to handle data in compliance with data protection law and under data processing agreements where applicable.

Data Transfers
We do not transfer your data outside the UK. If international transfers become necessary, we will ensure appropriate safeguards (such as Standard Contractual Clauses) are in place in accordance with the UK GDPR.

Data Retention
We regularly review and securely delete or anonymise data that is no longer required.

Data Security
We use robust technical and organisational measures to protect your data, including encryption, access controls, secure CRM systems, and regular audits. Only authorised personnel can access your data on a need-to-know basis.

Cookies and Tracking Technologies
Our website uses cookies for functionality, analytics, and performance. You can manage cookie preferences via your browser settings. For more information, refer to our Cookie Policy.

​

Your Data Protection Rights
Under UK GDPR, you have the following rights:
- Right to access
- Right to rectification
- Right to erasure
- Right to restrict processing

- Right to data portability
- Right to object to processing
- Right to withdraw consent at any time
To exercise these rights, contact us at Datacontroller@alteragroup.co.uk We will respond within one month.
 

Automated Decision Making and Profiling
We do not use automated decision making or profiling that significantly affects individuals without human involvement.
 

Data Breach Procedure
We have processes in place to detect and report personal data breaches. If a breach occurs, we will notify the ICO within 72 hours where required and inform affected individuals without undue delay.
 

Complaints and Contacting the ICO
If you believe we have violated your data protection rights, you may complain directly to us or to the Information Commissioner’s Office (ICO):
Website: https://ico.org.uk | Tel: 0303 123 1113

Policy Updates
We may update this policy from time to time. Changes will be published on our website. Continued use of our services constitutes acceptance of the updated policy.
 

Legal Disclaimer
This document is provided for informational purposes only and does not constitute legal advice. Organisations should seek legal counsel to ensure compliance with data protection laws applicable to their operations.

​

Accessibility Statement

We are committed to ensuring this policy is accessible. If you need this document in another format (e.g., large print, audio), please contact us at info@alteragroup.co.uk