Processing of (personal) data by the entity in charge of the online application process

PRIVACY POLICY

Issued April 2025

1. Introduction

This is the privacy policy (“Privacy Policy”) of Nteractive Consulting and Events Limited, a company registered in England and Wales with company number 07150569 whose principal place of business is at 23 The Causeway, Staines, Surrey, TW18 3AQ, United Kingdom. In this Privacy Policy Nteractive Consulting and Events Limited is referred to as “Us”, “We”, “Our” and “Nteractive”. Our VAT number is GB992074105.

We at Nteractive Consulting and Events Limited respect and are committed to protecting the privacy of every individual who visits Our website. This Privacy Policy sets out how We protect and use information that We collect or that you provide to Us when you use Our website www.nteractive.com (“Website”).

All handling of your personal data is done in compliance with the Data protection Act 2018 and the General Data Protection Regulation (EU) 2016/679 (“Data Protection Legislation”). The terms “Personal Data”, “Personal Data Breach”, “Data Protection Officer”, “Data Controller”, “Data Processor”, “Data Subject” and “process” (in the context of usage of Personal Data) shall have the meanings given to them in the Data Protection Legislation.

Please read this Privacy Policy carefully. By using Our Website and by submitting personal data to Us, You (the visitor) are agreeing to the terms of this Privacy Policy.

This Policy applies where we are acting as a data controller regarding Your personal data on visiting our website.

When You access the site, and if you sign up for downloads or newsletters, or contact Us, We may collect and process the following information:
Personal information about You that You provide when You contact Us or register with Us. This includes Your first and last name and title, Your company details (if any) and contact information such as Your telephone number and email address;
Personal information about You that You provide when You apply for a job with Us. This may include Your first and last name and title, contact information such as Your telephone number, home address and email address, date of birth, national insurance number, education data such as qualifications; any information found in Your CV and/or covering letter; if you provide us with it, information about your protected characteristics, as defined in the Equalities Act 2010, and information about criminal convictions/offences where required as part of a DBS check.
Information We may collect about Your visits to Our Website and any emails or calls You make to Us. We may monitor these for the purposes of quality control and to improve the service We offer. The technical data We collect may include Your browser and operating system details, Your viewed or searched for, webpage interaction information, browsing methods and any phone number or email address You use to contact Us;
Information about You that We may receive from other sources. We work closely with business partners (including, for example, those providing technical, payment and delivery services, analytics providers, search information providers and credit reference agencies) and We may receive information about You from them.
The legal basis for this processing is to protect Our legitimate interests, namely the proper administration of Our website and business.

Nteractive does not collect any Special Categories of Personal Data about you or any information about criminal convictions/offences, except where such information may be required as part of recruitment, as set out at paragraph 1.5.2, or where You provide dietary requirements to Us that also discloses Special Categories of Personal Data about You..

Nteractive does not perform any profiling or automated decision-making based on your personal data.

2. Cookies

We may obtain information about Your general internet usage and the usage of Our Website by using a cookie file which is stored on Your computer or smartphone. Cookies help Us to improve Our Website and to deliver a better and more personalised service to You, and some of the cookies We use are essential for Our Website to operate. You can choose whether to allow us to use analytics and/or marketing cookies. The Cookie Policy can be accessed by clicking the cookie icon in the bottom left-hand corner on each page.

3. Security and the Processing of Your Personal Information

We understand that security is an important concern for You when You provide information online. Information You give Us will be stored securely on Our systems and We use sophisticated technology to ensure that all Your personal details remain confidential.

We comply with all applicable Data Protection Act 2018, GDPR Regulations and consumer legislation. Our security technologies and procedures are regularly reviewed to ensure that they are up to date and effective.

Your personal data will only be used by Us for the purposes of operating Our business. They will not be disclosed to or shared with any third parties except Our business partners that assist Us in providing Our products and services to You, or as required by law. We and Our business partners may transfer, store and process Your details and We will do all that We reasonably can to ensure that Your personal data is treated securely and in accordance with this Privacy Policy.

Our Data Processors:

Web Hosting Providers

Purpose: Website hosting, including the storage of data forming the website content and processing your Technical Data (and Profile Data, where applicable) in order to provide you with access to our websites

Where does data leaving the EEA go and what safeguards are in place? EU-U.S. Data Privacy Framework (“EU-U.S. DPF”), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (“Swiss-U.S. DPF”)

Information Technology Providers

Purpose: Cloud server systems to help us manage our client databases. Telephony providers. Office software providers, such as email clients. IT Support services, who might require access to our systems (with our strict supervision) in order to remedy faults with our technology.

Outsourced Marketing Services

Purpose: External marketing support and email marketing services to keep in touch with you and develop new relationships with potential clients.

Recruitment

Purpose: Third party recruitment portal to allow you to view vacancies and apply for roles at Nteractive. You can view the third party’s own privacy policy here.

Where does data leaving the EEA go and what safeguards are in place? Not applicable

Other Where We Are The Controller/Joint Controller.

Purpose: Event suppliers we engage on behalf of our clients to provide services on their projects. These include, but are not limited to, hotels, venues, destination management companies, caterers, transportation providers, registration software and event apps.

Where does data leaving the EEA go and what safeguards are in place? UK IDTA, EU SCCs and UK Addendum

And/or

EU-U.S. Data Privacy Framework (“EU-U.S. DPF”), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (“Swiss-U.S. DPF”)

Unfortunately, the transmission of information via the internet is not completely secure and We cannot guarantee the security of any information transmitted to or from Our Website. Any transmission is at Your own risk, and You should ensure that any payment transactions You make are made in a secure environment. You should keep confidential any personal security codes and passwords and comply with any instructions that We may give You in order to keep such details confidential and safe.

4. Using Your Information

We may use information about You in the following ways:

To improve Our products, services, and Website, and ensure that content from Our Website is presented in the most effective manner;
To provide You with information, products, or services that You request from Us, and which We feel may interest You where You have asked or consented to be contacted for such purposes;
To carry out Our obligations arising from any contracts entered into between You and Us;
To allow You to participate in interactive features of Our service, when You choose to do so;
To notify You about changes to Our products and services;
For Our own market research purposes (for example to invite You to provide Us with feedback on Our products and services); and
To administer Our site and for internal operations including troubleshooting, security purposes, data analysis, testing and statistical survey purposes.
Ensuring the security of Our website and services.

If You do not want Us to use Your personal or company contact data for Our marketing purposes or to send You details about special offers or other information which We think may be of interest to You, please contact Us to let Us know, or use the unsubscribe facility in Our communications.

5. Disclosing Your Information

We may disclose Your personal data to third parties if:

We are under a duty to disclose or share Your personal data in order to comply with any legal obligation, or to enforce Our terms and conditions, or to protect Our rights and property or Our safety and that of Our customers and third parties. This includes exchanging information with other organisations for the purposes of fraud protection and credit risk reduction; or
If the business or assets of Nteractive Consulting and Events Limited are sold, in which case personal data about Our customers may need to be disclosed to the buyer.

6. Your Rights and Control of Your Information

You have the right to, at any time:

Access the information We hold about You in accordance with GDPR.
Ask for Your information to be corrected or updated;
Ask Us to remove Your information from Our records; and
Tell Us if You do not want Us to use Your information for Our own direct marketing purposes. We never pass Your personal data on to third parties for direct marketing purposes.

To do this, You can use the unsubscribe facility on any email You receive from Us, or contact Us via the Contact Us page on Our Website.

Personal data that we process for any purpose shall not be kept for longer than is necessary in fulfilment of that purpose. We may retain Your personal data where retention is necessary for compliance with a legal obligation or in order to protect Your vital interests.

7. Third Party Links

Our Website may contain links to and from the websites of Our business partners and other third party sites of interest over which We have no direct control. If You follow a link to any of these websites, You will have left Our site and We do not accept any responsibility or liability for the privacy of any information You provide whilst visiting such sites. You should check the sites carefully before You submit any personal data to them.

8. Changes to this Privacy Policy

We may occasionally update this Privacy Policy. We encourage You to periodically review this Privacy Policy to stay informed about how We are using and protecting information that We collect. By continuing to use Our Website You are agreeing to any updates that We may make.

9. Contact Information

If You would like to contact Us about Your information or this Privacy Policy, please email dpo@nteractive.com.

In addition to sending Your complaints directly to Us as above, You can send complaints to Our supervisory authority, the Information Commissioner’s Office (‘ICO’). If you believe that we have failed in our compliance with data protection legislation, complaints to this authority can be made by visiting https://ico.org.uk/concerns/. We would, however, appreciate the chance to deal with Your concerns before You approach the ICO so please contact us in the first instance.

For the purposes of Data Protection Act 2018 and GDPR, the data controller is Nteractive Consulting and Events Limited with registered company number 07150569 and with registered address: 23 The Causeway, Staines, Surrey, TW18 3AQ, United Kingdom.

Processing of (personal) data by the operator of the recruitment website

General information

This recruitment website is operated by Personio SE & Co. KG, which offers a human resource and candidate management software solution (https://www.personio.com/legal-notice/). Data transmitted as part of your application will be transferred using TLS encryption and stored in a database. The sole controller of this data within the meaning of article 24 of the GDPR is the enterprise carrying out this online application process. Personio’s role is limited to operating the software and this recruitment website and, in this context, being a processor under article 28 of the GDPR. In this case, the processing by Personio is based on an agreement for the processing of orders between the controller and Personio. In addition, Personio SE & Co. KG processes further data, some of which may be personal data, to provide its services, in particular for operating this recruitment website. We will refer to this in more detail below.

The controller

The controller under data protection law is:
Personio SE & Co. KG
Seidlstraße 3
80335 München
Tel.: +49 (89) 1250 1004
Entry in the commercial register
Commercial register entry number: HRA 115934
Registration Court: Amtsgericht München
Data Protection Officer contact: privacy@personio.com

Access logs (“server logs”)

Each access to this recruitment website automatically causes general protocol data, so-called server logs, to be collected. As a rule, this data is a pseudonym and thus does not allow for inferences about the identity of an individual. Without this data, it would, in some cases, be technically impossible to deliver or display the contents of the software. In addition, processing this data is absolutely necessary under security aspects, in particular for access, input, transfer, and storage control. Furthermore, this anonymous information can be used for statistical purposes and for optimizing services and technology. In addition, the log files can be checked and analyzed retrospectively when unlawful use of the software is suspected. The legal basis for this is §25 subsection 2 Sentence 2 TDDDG. Generally, data such as the domain name of the website, the web browser and web-browser version, the operating system, the IP address, as well as the timestamp of the access to the software is collected. The scope of this log process does not exceed the common log scope of any other site on the web. These access logs are stored for a period of up to 7 days. There is no right to object to this.

Error logs

So-called error logs are generated for the purpose of identifying and fixing bugs. This is absolutely necessary to ensure we can react as quickly as possible to possible problems with displaying and implementing content (legitimate interest). As a rule, this data is a pseudonym and thus does not allow for inferences about the identity of an individual. The legal basis for this is §25 subsection 2 Sentence 2 TDDDG. When an error message occurs, general data such as the domain name of the website, the web browser and web-browser version, the operating system, the IP address, as well as the timestamp upon occurrence of the respective error message and/or specification is collected. These error logs are stored for a period of up to 7 days. There is no right to object to this.

Use of cookies

So-called cookies are used on parts of this recruitment website. They are small text files which are stored on the device with which you access this recruitment website. As a general rule, cookies serve the purpose of ensuring secure access to a website (“absolutely necessary”), implementing certain functionalities such as standard-language settings (“functional”), improving the user experience or the performance of the website (“performance”), or placing targeted advertisements (“marketing”). On this recruitment website, we generally use only cookies that are absolutely necessary, functional or performance-related, in particular for implementing certain default settings such as language, for identifying the job advertising channel, or for analyzing the performance of a job advert via which a user accessed this recruitment website. The use of cookies is absolutely necessary for providing our services and thus for the performance of the contract (article 6 (1) b) of the GDPR). Period of storage: up to 1 month or until the end of the browser session Right to object: You can determine via your browser settings whether you allow or object to the use of cookies. Please note that deactivating cookies may result in limited or completely blocked functionalities of this recruitment website.

Rights of data subjects

If Personio SE & Co. KG as the controller processes personal data, you as the data subject have certain rights under Chapter III of the EU General Data Protection Regulation (GDPR), depending on the legal basis and the purpose of the processing, in particular the right of access (article 15 of the GDPR) and the rights to rectification (article 16 of the GDPR), erasure (article 17 of the GDPR), restriction of processing (article 18 of the GDPR), and data portability (article 20 of the GDPR), as well as the right to object (article 21 of the GDPR). If the personal data is processed with your consent, you have the right to withdraw this consent under article 7 III of the GDPR. To assert your rights as a data subject in relation to the data processed for the purpose of operating this recruitment website, please refer to Personio SE & Co. KG’s Data Protection Officer (see item B).

Concluding provisions

Personio reserves the right to adjust this data privacy statement at any point in time to ensure that it is in line with the current legal requirements at all times, or in order to accommodate changes in the services offered, for example when new services are introduced. In this case, the new data privacy statement applies to any later visit of this recruitment website or any later job application.