Privacy Notice for Potential Candidates

This Privacy Notice explains how F2G processes the personal data of potential candidates who have submitted a CV to us.

At F2G, we take great care in processing personal data in compliance with the EU and UK General Data Protection Regulation (GDPR) and national data protection laws. We only collect and use the information necessary to achieve the purposes described below. Your data will be treated in accordance with this Privacy Notice at all times. 

Who is responsible for processing the data?
The data controller is F2G, whose registered headquarters are located at Lankro Way, Eccles, Manchester, M30 0LX, United Kingdom.

F2G’s Data Protection Officer (DPO) can be contacted at

What categories of data do we process about you and why do we process them?
F2G collects and processes the following categories of personal data:

  • Contact details, such as your name, email, telephone number, and address;
  • Professional details, such as your work history, job title, CV, professional qualifications, scientific activities (such as previous clinical trial experience, and participation in past research studies), publication of academic or scientific research and articles, and membership in associations and boards.

Under what lawful basis do we process your data?
We process your personal data in relation to your application to work at F2G, under our legitimate interests to recruit new employees.

Who do we share your personal data with?
F2G may share your personal data with others, in connection with the purposes described in this notice. In particular, we may make your personal data available to:

  • F2G group affiliates outside the EEA/UK;
  • Our trusted service providers, such as our HR system provider.

Sharing your personal data as described above may involve transferring it to other countries, including countries outside of the EEA/UK, such as the USA, whose data protection and privacy laws may not be equivalent to, or as protective as, those that exist in your country of residence. Any transfers of Personal Data to F2G group affiliates or vendors outside the EEA/UK will be done in compliance with the international data transfer restrictions that apply under EU and UK data protection laws, including, where appropriate, through the use of appropriate safeguards (e.g. EU model contracts for data transfers or UK International Data Transfer Agreement (IDTA)).

You can receive a copy of the appropriate safeguards by contacting F2G’s DPO at the contact details provided above (in the section entitled “who is responsible for processing the data?”).

What security measures does F2G take to protect your personal data?
F2G will take appropriate technical and organizational security measures to protect your personal data in compliance with applicable data protection and privacy laws, which includes protection against accidental or unlawful destruction, loss, alteration, unauthorized access to, or disclosure of your personal data.

When F2G contracts a vendor, that vendor will be carefully selected and required to use appropriate measures in accordance with applicable law to protect the confidentiality and security of personal data. That provider will only be permitted to process your data on the written instruction of F2G.

How long do we keep your data?
Your personal data will be stored for no longer than required to fulfil the purpose(s) as described in this notice.

What are your rights and how can you exercise them?
Per GDPR, you have the following rights in relation to your personal data:

  • Right of access;
  • Right to rectification;
  • Right to restriction of processing and Right to object if you are replying on legitimate interests as the legal basis;
  • Right to erasure.

To exercise your rights, contact F2G’s DPO at the contact details provided above (in the section entitled “who is responsible for processing the data?”).

You also have the right to lodge a complaint with your national Supervisory Authority if you consider that your personal data has not been processed in accordance with the GDPR. A listing of all Supervisory Authorities can be found here:

Changes to this Privacy Notice
This Privacy Notice is effective from 14 August 2023. We reserve the right to change this notice at any time (for example, to comply with changes in laws or regulations; our practices, procedures and organizational structures; requirements imposed or recommended by supervisory authorities; or otherwise). Changes to this notice shall be applicable on the effective date of implementation.

Scroll to Top