Privacy Policy

Effective date: 5 March 2026

  1. Introduction RekruitIQ (“we”, “us”, “our”) is committed to protecting the privacy and security of personal data. This Privacy Policy explains how we collect, use, disclose and protect personal information when you interact with our website, services, candidates, clients and other business contacts. It also explains your rights and how to contact us.

  2. Scope This Policy applies to personal data processed by RekruitIQ in connection with:

  • our website and online services;

  • recruitment and placement activities for Business Intelligence roles;

  • clients, candidates, job applicants, contractors and suppliers;

  • marketing, commercial and administrative operations.

It does not apply to personal data processed by third parties not under our control. Separate privacy notices may apply for specific countries, subsidiaries or services where required by local law.

  1. Data we collect We collect personal data necessary for recruitment and business operations, including:

a. Identity and profile information

  • name, title, date of birth (where required), photograph, professional biography and recruitment preferences.

b. Contact information

  • email address, telephone number, postal address, LinkedIn and other professional social media profiles.

c. Professional and employment information

  • CV/resume, qualifications, certifications, employment history, references, skills, salary history, visa and right-to-work documentation, availability and job preferences.

d. Recruitment interactions

  • interview notes, assessment results, correspondence, references and feedback from clients and candidates.

e. Usage and technical data

  • IP address, device and browser information, log files, cookies and analytics data when you use our website.

f. Payment and billing information

  • invoicing and payment details for clients and suppliers. We do not store full payment card numbers unless explicitly required; third-party payment processors may be used.

g. Sensitive personal data

  • We generally avoid processing special category data (for example, health or racial origin). If such data is provided (for example, disability information for reasonable adjustments), we will process it only with explicit consent or where permitted by law.

  1. How we collect data

  • Directly from you: when you apply for a role, register with us, contact us, attend interviews or provide documentation.

  • From clients, referees and third parties: references, recruitment platforms, public professional profiles and background check providers.

  • Automatically: via cookies and analytics when you use our website.

  • From other sources: publicly available sources and partner organisations.

  1. Purposes and legal bases for processing We process personal data for the following purposes and legal bases:

a. Recruitment and placement

  • Purpose: assess suitability, facilitate introductions, arrange interviews and placements.

  • Legal basis: performance of a contract, legitimate interests (to match candidates with opportunities), or consent where required.

b. Provision of services to clients

  • Purpose: deliver recruitment services, invoicing and account management.

  • Legal basis: performance of a contract, legitimate interests.

c. Communication and marketing

  • Purpose: send job alerts, newsletters and updates.

  • Legal basis: consent for marketing communications where required by law; otherwise legitimate interests (provided you are given the right to opt out).

d. Compliance and legal obligations

  • Purpose: right-to-work checks, regulatory requirements, dispute resolution and fraud prevention.

  • Legal basis: legal obligation or legitimate interests.

e. Website operation and improvement

  • Purpose: analyse usage, maintain security and improve functionality.

  • Legal basis: legitimate interests and, for some cookies, consent.

  1. Disclosure and sharing of personal data We share personal data only as necessary and under appropriate safeguards:

  • Clients and prospective employers: candidate profiles, CVs and relevant documentation when applying for roles.

  • Service providers: background check providers, payroll and payment processors, IT, cloud hosting and analytics providers.

  • Professional advisers: legal, tax and audit advisors where necessary.

  • Regulatory and law enforcement bodies: where required by law or to protect rights.

  • Third parties in the event of a sale, merger or corporate reorganisation: only with appropriate due diligence and contractual protections.

  1. International transfers Personal data may be transferred outside the UK and the European Economic Area to countries with varying data protections. Where transfers occur we will implement appropriate safeguards such as standard contractual clauses, binding corporate rules or ensure transfers are to jurisdictions with an adequate level of protection, in accordance with applicable law.

  2. Data retention We retain personal data only for as long as necessary for the purposes set out in this Policy, to meet legal, accounting or reporting requirements, or to resolve disputes. Typical retention periods:

  • Candidates’ active application records: up to 2 years after last contact, unless longer retention is required or consented to.

  • Placed candidate records and client records: up to 7 years for tax and audit purposes.

  • Marketing consents: