Wave Talent (”the Company”) is committed to protecting the privacy and personal data of individuals in accordance with the General Data Protection Regulation (GDPR).
This policy outlines the company's approach to data protection and the procedures in place to ensure compliance with the GDPR.
This policy applies to all personal data processed by the Company in the course of its recruitment activities.
It applies to all employees, contractors, and third parties who handle personal data on behalf of the Company.
The Company will only collect and process personal data that is necessary for legitimate recruitment purposes.
Personal data will be obtained directly from the individuals or from trusted sources with their consent.
All personal data collected will be accurate, up-to-date, and securely stored.
The Company will ensure that personal data is processed lawfully, fairly, and transparently.
The lawful bases for processing personal data may include the individual's consent, contractual necessity, legal obligations, or legitimate interests pursued by the Company or a third party.
The Company will respect the rights of individuals under the GDPR, including the right to access, rectify, erase, restrict processing, data portability, and object to processing.
Requests from data subjects to exercise their rights will be promptly addressed and responded to within the timeframes set by the GDPR.
The Company will implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, destruction, or alteration.
All employees, contractors, and third parties will be trained on data protection and security best practices.
Regular reviews and audits of data security measures will be conducted to ensure ongoing effectiveness.