COVENT GARDEN MARKET AUTHORITY

Data Protection Notification for data subject category "job applicants"

Notification drafted on May 21, 2018

Our name/contact details are Covent Garden Market Authority, Food Exchange, New Covent Garden Market, London, SW8 5EL

This process engages the following data categories:

Our 4 processes engage 15 data categories: address; birthdate; contact information; email address; first name; last name; name; postcode; telephone; date of birth; telephone number; contact; employment; signature; and time in-out.

We process your data in 4 different ways

Process: Health and Safety

Dataset Process Legal Basis Purposes
HSE Health and Safety Legal obligation details sent if investigation to be carried out.

Non-aggregated information specific to process "Health and Safety"

This process engages the following data categories:

Our process engages 13 data categories: address; birthdate; contact information; email address; first name; last name; name; postcode; telephone; date of birth; telephone number; contact; and employment.

Storage

We store your data in United Kingdom (UK).

Data Retention Criteria

We retain your data for 2,557 days.

Legal Bases for Processing

Our processing legal basis is legal obligation

Sources from which we receive your data

Our data sources are: yourself [not particularised]; and applicant [not particularised].

Categories of Recipients of your data

Yourself

Yourself

insurers

Process: Insurance

Dataset Process Legal Basis Purposes
Zurich Insurance Legal obligation details sent if investigation to be carried out.

Non-aggregated information specific to process "Insurance"

This process engages the following data categories:

Our process engages 13 data categories: address; birthdate; contact information; email address; first name; last name; name; postcode; telephone; date of birth; telephone number; contact; and employment.

Storage

We store your data in United Kingdom (UK).

Data Retention Criteria

We retain your data for 2,557 days.

Legal Bases for Processing

Our processing legal basis is legal obligation

Sources from which we receive your data

Our data source is yourself [not particularised].

Categories of Recipients of your data

Yourself

Yourself

insurers

Process: RIDDOR

Dataset Process Legal Basis Purposes
HSE RIDDOR Legal obligation details provided should an incident be severe enough to have to submit riddor.

Non-aggregated information specific to process "RIDDOR"

This process engages the following data categories:

Our process engages 13 data categories: address; birthdate; contact information; email address; first name; last name; name; postcode; telephone; date of birth; telephone number; contact; and employment.

Storage

We store your data in United Kingdom (UK).

Data Retention Criteria

We retain your data for 2,557 days.

Legal Bases for Processing

Our processing legal basis is legal obligation

Sources from which we receive your data

Our data sources are: yourself [not particularised]; and applicant [not particularised].

Categories of Recipients of your data

Yourself

Yourself

insurers

Process: Sign in/out book

Dataset Process Legal Basis Purposes
Key signing in/out Sign in/out book Legal obligation signing in/out book.

Non-aggregated information specific to process "Sign in/out book"

This process engages the following data categories:

Our process engages 5 data categories: name; signature; telephone number; time in-out; and employment.

Storage

We store your data in United Kingdom (UK).

Data Retention Criteria

We retain your data for 2,557 days.

Legal Bases for Processing

Our processing legal basis is legal obligation

Sources from which we receive your data

Our data sources are: yourself [not particularised]; and applicant [not particularised].

Categories of Recipients of your data

Yourself

Yourself

Storage

We store your data in United Kingdom (UK).

Data Retention Criteria

We retain your data for 2,557 days.

Legal Bases for Processing

Our processing legal basis is legal obligation

Sources from which we receive your data

Our data sources are: yourself [not particularised]; and applicant [not particularised].

Categories of Recipients of your data

Yourself

Yourself

insurers

Your Rights

You have qualified rights to access, rectify, and erase your personal data; and to restrict or object to processing; and to make your data portable.

Supervisory Authority

You have the right to complain to a Supervisory Authority.
Export this notification content as .doc