What information do we collect about you?
We collect information about you when you; visit our website; subscribe to our services; apply for employment with us; attend one of our events; and/or engage in business dealings with us.
How will we use the information about you?
When you visit our website, a record of your visit is made. That data is used completely anonymously, in order to determine the number of people who visit our website and the most frequently used sections of the site. This enables us to continually update and refine the site. If you use any forms on the website to send an email to us, a record will also be made of your email address and your telephone number.
We may collect, hold, use and disclose the information collected to compile statistical data and to; maintain our database; develop/improve our website; respond to any email enquiries; notify you of any upcoming marketing, training or other events; provide you with publications; manage quality control; manage systems administration; attend to compliance issues; provide you or your organisation with advice; determine suitability for employment and for other marketing purposes.
We will not use or disclose your personal information for any other purpose which is not related (or in the case of sensitive information, directly related) to the above purposes without your consent, unless otherwise authorised, required or permitted under the laws of England and Wales.
If you no longer wish to receive information about our services, please send an email to firstname.lastname@example.org advising that you do not wish to receive further information.
Will we disclose your data?
Your personal information will only be disclosed to third parties if BrightHR:
Sell or purchase any business or assets it may be the case that we authorise disclosure of selected personal data to prospective sellers or buyers of such business or assets.
If the substantial majority of the assets are sold to a third party. In instances such as this your personal data may be one of the transferred assets.
If BrightHR are required to disclose personal data as a legal obligation to: enforce our Terms and Conditions, protect the property, rights or safety of BrightHR, users of our services or others. In such case information may be exchanged with third party companies or organisations in order to prevent fraud or reduce credit risk
Access to your information and correction requests
You have a right to request access to the information that we hold about you. If you would like to request access to your personal information please email email@example.com or write to our Chief Marketing Officer at Bright HR, The Peninsula, Victoria Place, Manchester, M4 4FB.
A £10 fee will apply for the provision of this information (ordinarily, an electronic print out or photocopy). Identification will also be requested for security.
We want to make sure that your personal information is accurate and up to date. You may ask us to correct or remove information you think is inaccurate or out of date.
This website uses Google Analytics, a web analytics service provided by Google, Inc. Google Analytics sets a cookie in order to evaluate your use of this website and compile reports for us on activity on the website. Google stores the information collected by the cookie on servers in the United States. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above.
Cookies are text files placed on your computer to collect standard internet log information and visitor behaviour information. This information is used to track visitor use of the website and to compile statistical reports on website activity. For further information visit www.aboutcookes.org or www.allaboutcookies.org
You can set your browser not to accept cookies and the above websites tell you how to remove cookies from your browser. However, in a few cases some of our website features may not function as a result.
How to contact us
Chief Marketing Officer
Data Protection Statement of Bright HR which is owned and operated by Bright HR Limited
The Data Protection Act 1998 allows us to hold and process personal data. We will use the personal data provided to us only for its intended purpose, and in accordance with the requirements of the Data Protection Act 1998.
Should an employee, whose details appear on Bright HR, that any information held about them is incorrect, then they should notify their line manager at the earliest available opportunity, so that they can either address the matter or raise it with us.
This statement sets out how the information on Bright HR is to be used. The information provided by which employees can be identified, will only be used in accordance for its intended purpose in accordance with this statement.
What information will be collected?
The following information about employees may be collected:
- Date of Birth
- Job title
- Contact details, for example, details of next of kin
- Immigration status details i.e. passport number/visa number and expiry dates
- National Insurance Number
- Information relating to employment, i.e. absence records, development records and annual leave entitlement. This information may be collected via application for employment forms, personal details forms, personnel files and records and any subsequent amendments to such documents.
What is the information used for?
Clients of Bright HR will use the information to maintain current and accurate employee records, which can be used for such purposes as staff administration, payroll, equal opportunities monitoring, absence monitoring, annual leave records, and other employment related matters.
Personal Data will not be used for any other purpose outside of the scope of your employment.
Retention of Bright HR records
If a client of Bright HR terminates their service agreement with Bright HR, their employee data will be retained for a period of 6 years after their service agreement ends before being deleted. The data during the 6 year period will be held securely as described under the Security section below.
We are committed to ensuring that employee information is kept secure at all times, and we will implement appropriate technical and organisational measures against the unauthorised or unlawful disclosure of such information, and so as to prevent its accidental loss, destruction or damage.
Personal access to Bright HR will only be via a secure username and password. The username and password for each individual is unique and only allows access to their own personal information. Only certain authorised staff, who are required to have access to the personal information of other employees for the purposes of their job role, will be authorised and will have the necessary access rights to do so. They will receive relevant training and will be asked to agree to abide by the terms of this Data Protection Statement.
All users of Bright HR are encouraged to keep their unique user and password strictly confidential. Users of Bright HR must notify us if they become aware of any unauthorised access, and we will notify clients of Bright HR should we become aware of any security breach involving loss, corruption or theft of employee information.
Storage and Encryption
By leveraging the power of Cloud all Bright HR Data is stored on highly secure systems. These utilise the latest encryption and security technologies which are ISO/IEC 27001:2013, ISO/IEC 27017:2015 and ISO/IEC 27018 compliant regarding data security in the cloud. To maintain our PCI compliance, approved independent security vendors are used by Bright HR to ensure all our systems are scanned daily for any vulnerabilities.
Subject Access Requests
Details of the personal information held about individual employees on Bright HR may be requested, in writing, by that individual. A payment of a £10 fee will be requested and the individual will be asked to provide two forms of identification. Such a request must be made to Bright HR’s compliance manager, who will ensure that it is dealt with in accordance with Section 7 of the Data Protection Act 1998. The individual’s employer will be notified that such a request has been received.
No personal information held on Bright HR will be passed to third parties, without the consent of the individual employee concerned, unless such disclosure is legally required in accordance with provisions of the Data Protection Act 1998.