Wave Talent Limited

• Version: 1.0
• Author: People Operations Department
• Approved by: Spencer Goldberg
• Effective Date: 14th May 2025
• Review Date: 14th May 2026

1. Introduction

Wave Talent Ltd (“the Company”) is committed to protecting the privacy and personal data of individuals in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

This policy outlines the Company's approach to data protection and the procedures in place to ensure ongoing compliance with data protection legislation and to safeguard the rights and freedoms of data subjects.

2. Scope

This policy applies to all personal data processed by the Company in the course of its operations, including but not limited to recruitment, marketing, compliance, HR, and contractor services.

It applies to all employees, contractors, and third parties who process or have access to personal data on behalf of the Company.

3. Data Collection and Processing

The Company shall collect and process personal data only where it is necessary for legitimate business purposes, such as recruitment, payroll, compliance, or legal obligations.

• Personal data will be obtained directly from the individual or from verified third-party sources with appropriate consent.
• All personal data collected shall be accurate, kept up to date, and securely stored in line with internal retention and security protocols.