GDPR Compliance
Last Updated: [20/9/23]
1. Introduction
Welcome to ExecuMedical. We are committed to protecting the privacy and data security of our users and clients. This GDPR Compliance Page outlines our approach to compliance with the General Data Protection Regulation (GDPR) and explains how we handle personal data when providing medical training, recruitment solutions, and management services.
2. Data Controller
We act as both a data controller and a data processor for the personal data we collect and process. As a data controller, we determine the purposes and means of processing personal data. As a data processor, we process data on behalf of our clients for the provision of our services.
3. Lawful Basis for Processing
We process personal data in accordance with the lawful bases outlined in GDPR, including:
- Consent: We may seek your explicit consent for specific data processing activities.
- Contractual Obligations: We process data to fulfil our contractual obligations when you use our services.
- Legal Compliance: We process data to comply with legal requirements, such as tax and regulatory obligations.
- Legitimate Interests: We may process data for our legitimate interests, provided this does not override your rights and interests.
4. Information We Collect
We may collect various types of personal data, including but not limited to:
- Contact information (name, email address, phone number).
- Professional qualifications, CVs, and resumes.
- Data related to training and recruitment needs.
- Usage data related to your interaction with our website.
5. How We Use Personal Data
We use personal data for the following purposes:
- Providing services as requested by our clients.
- Communication with clients and users.
- Recruitment matching for job opportunities.
- Analytics to improve website functionality.
- Marketing communications with your consent.
6. Data Security
We implement appropriate technical and organizational measures to protect personal data from unauthorized access, disclosure, alteration, or destruction. We regularly review and update our security measures to ensure data security.
7. Data Subject Rights
Under GDPR, you have specific rights regarding your personal data, including the right to access, correct, or delete your data. If you wish to exercise these rights or have any privacy-related concerns, please contact us at Support@execumedical.co.uk
8. Data Transfers
We may transfer personal data to countries outside the European Economic Area (EEA) where necessary for the provision of our services. We ensure adequate safeguards are in place to protect the data in accordance with GDPR requirements.
9. Cookies and Tracking Technologies
We use cookies and tracking technologies on our website. Please refer to our Cookie Policy for details on how we use cookies and how you can manage your cookie preferences.
10. Contact Us
If you have any questions or concerns about our GDPR compliance, data practices, or wish to exercise your data protection rights, please contact us at Support@execumedical.co.uk
11. Changes to this GDPR Compliance Page
We reserve the right to update this GDPR Compliance Page to reflect changes in our practices or legal requirements. We will post the updated page on this website.