Privacy Notice for Potential Candidates

This Privacy Notice explains how F2G processes the personal data of potential candidates who have submitted a CV to us.

At F2G, we take great care in processing personal data in compliance with the EU and UK General Data Protection Regulation (GDPR) and national data protection laws. We only collect and use the information necessary to achieve the purposes described below. Your data will be treated in accordance with this Privacy Notice at all times.

Who is responsible for processing the data?
The data controller is F2G, whose registered headquarters are located at Lankro Way, Eccles, Manchester, M30 0LX, United Kingdom.

F2G’s Data Protection Officer (DPO) can be contacted at F2G.DPO@MyData-Trust.info.

What categories of data do we process about you and why do we process them?
F2G collects and processes the following categories of personal data:

Contact details, such as your name, email, telephone number, and address;
Professional details, such as your work history, job title, CV, professional qualifications, scientific activities (such as previous clinical trial experience, and participation in past research studies), publication of academic or scientific research and articles, and membership in associations and boards.

Under what lawful basis do we process your data?
We process your personal data in relation to your application to work at F2G, under our legitimate interests to recruit new employees.

Who do we share your personal data with?
F2G may share your personal data with others, in connection with the purposes described in this notice. In particular, we may make your personal data available to:

F2G group affiliates outside the EEA/UK;
Our trusted service providers, such as our HR system provider.

Sharing your personal data as described above may involve transferring it to other countries, including countries outside of the EEA/UK, such as the USA, whose data protection and privacy laws may not be equivalent to, or as protective as, those that exist in your country of residence. Any transfers of Personal Data to F2G group affiliates or vendors outside the EEA/UK will be done in compliance with the international data transfer restrictions that apply under EU and UK data protection laws, including, where appropriate, through the use of appropriate safeguards (e.g. EU model contracts for data transfers or UK International Data Transfer Agreement (IDTA)).

You can receive a copy of the appropriate safeguards by contacting F2G’s DPO at the contact details provided above (in the section entitled “who is responsible for processing the data?”).

What security measures does F2G take to protect your personal data?
F2G will take appropriate technical and organizational security measures to protect your personal data in compliance with applicable data protection and privacy laws, which includes protection against accidental or unlawful destruction, loss, alteration, unauthorized access to, or disclosure of your personal data.

When F2G contracts a vendor, that vendor will be carefully selected and required to use appropriate measures in accordance with applicable law to protect the confidentiality and security of personal data. That provider will only be permitted to process your data on the written instruction of F2G.

How long do we keep your data?
Your personal data will be stored for no longer than required to fulfil the purpose(s) as described in this notice.

What are your rights and how can you exercise them?
Per GDPR, you have the following rights in relation to your personal data:

Right of access;
Right to rectification;
Right to restriction of processing and Right to object if you are replying on legitimate interests as the legal basis;
Right to erasure.

To exercise your rights, contact F2G’s DPO at the contact details provided above (in the section entitled “who is responsible for processing the data?”).

You also have the right to lodge a complaint with your national Supervisory Authority if you consider that your personal data has not been processed in accordance with the GDPR. A listing of all Supervisory Authorities can be found here: https://edpb.europa.eu/about-edpb/board/members_en

Changes to this Privacy Notice
This Privacy Notice is effective from 14 August 2023. We reserve the right to change this notice at any time (for example, to comply with changes in laws or regulations; our practices, procedures and organizational structures; requirements imposed or recommended by supervisory authorities; or otherwise). Changes to this notice shall be applicable on the effective date of implementation.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
CookieLawInfoConsent	1 year	CookieYes sets this cookie to record the default button state of the corresponding category and the status of CCPA. It works only in coordination with the primary cookie.
elementor	never	The website's WordPress theme uses this cookie. It allows the website owner to implement or change the website's content in real-time.
PHPSESSID	session	This cookie is native to PHP applications. The cookie stores and identifies a user's unique session ID to manage user sessions on the website. The cookie is a session cookie and will be deleted when all the browser windows are closed.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
_pk_id.*	1 year 27 days	Matamo set this cookie to store a unique user ID.
_pk_ses.*	30 minutes	Matomo set this cookie to store a unique session ID for gathering information on how the users use the website.