INTRODUCTION
In this Privacy Policy, references to “we”, “us”, “our” or NTT DATA UK means NTT DATA UK Ltd, as the case may be. References to “you” and “your” are to users of this website.
We can be contacted at the email address UKDataProtection@nttdata.com
Table of Contents
1. WHAT IS THE SCOPE OF THIS PRIVACY POLICY?
2. WHAT TYPE OF PERSONAL DATA DO WE COLLECT?
3. HOW DO WE USE YOUR PERSONAL DATA?
4. ON WHAT LEGAL BASIS DO WE PROCESS YOUR PERSONAL DATA?
5. HOW DO WE PROCESS YOUR PERSONAL DATA?
6. WHO HAS ACCESS TO YOUR PERSONAL DATA?
7. WHO WILL YOUR PERSONAL DATA BE SHARED WITH?
8. IS YOUR PERSONAL DATA TRANSFERRED ABROAD?
9. WHAT ARE YOUR RIGHTS WITH REGARD TO YOUR PERSONAL DATA?
10. WHAT HAPPENED ON 25 MAY 2018?
11. What Happened on 31 January 2020
12. UPDATE TO THIS PRIVACY POLICY
The following table contains a brief summary of this Privacy Policy. Full detail is provided below.
Section | Issue | Information |
1. | What is the scope of this Privacy Policy? |
The Company is the data controller of the personal data we collect from and about you through the Recruitment Website and the Company Services. This Privacy Policy applies to all users, including those who use the Website of the Company without being registered or having subscribed. |
2. | What kind of personal data do we collect? |
The Company might collect data from and about you. Specifically, the Company collects (1) data that you have voluntarily shared with the Company, (2) activity data and (3) information from other sources. However, we do not collect either financial information or special categories of personal data relating to you (e.g., health or judicial data). |
3. | How do we use your personal data? |
We collect your data to allow you to use the Recruitment Website and/or to provide you with our Company Services, and to allow you to interact with such Company Services. We may also use your data to send you offers promotions and marketing communications based on your personal preferences and habits. If you would prefer not to receive information of this nature, please see section 11. |
4. | On what ground do we use your personal data? |
Your personal data is collected to enable you to use the Recruitment Website and the Company Services, and also to comply with legal obligation and/or to protect our legitimate interests. We may not be able to offer you Company Services if you fail to provide relevant data. Similarly, we may not be able to grant you access to the Website without such data. You will always have an option not to provide personal data for marketing purposes. |
5. | How do we process your personal data? | The security of your data is a top priority. We have implemented appropriate administrative, technical and physical measures to safeguard your personal data against loss, theft and unauthorised use, disclosure or modification. |
6. | Who can access to your personal data? | Subject to applicable laws, we may share your personal data with (i) service providers, (ii) our affiliated companies and (iii) national authorities. |
7. | Is your personal data transferred abroad? | Your personal data may be transferred to other countries within the European Economic Area (EEA) or countries recognised by the EU Commission as offering an adequate level of protection. For transfers to other countries, We will always ensure additional, appropriate and suitable safeguards are in place to protect your personal data. |
8. | What are your rights with regard to your personal data? | Among other rights, you have the right to access, integrate, update, amend and delete your personal data. |
9. | What happened on 25 May 2018? |
The EU General Data Protection Regulation 2016/679 is effective as of 25 May 2018. This introduces additional data privacy obligations and additional rights for individuals. The UK Data Protection Act 2018 is effective as of 25 May 2018 and is the UK’s implementation of the GDPR. |
10. | What happened on 31 January 2020? |
The UK left the EU on this date. The EU GDPR became known as the UK GDPR and, along with the Data Protection Act 2018 forms the UK Data Protection Framework |
11. | Updates to this Privacy Policy |
The Company may modify or update this Privacy Policy in order to comply with applicable law. The Effective Date above shows the relevant date of release. |
12. | How can I contact you with regard to the processing of my personal data? |
You can contact us at the following email address: |
Personal data means any information relating to an identified or identifiable natural person, such as name, IP address or email address. NTT DATA UK is the data controller of personal data we collect from and about you through the Recruitment Website and the Company Services. We will only process such data in compliance with the terms of this Privacy Policy.
This Privacy Policy should be read in conjunction with the NTT DATA UK Cookies Policy, available on our Website. Both policies are applicable to all users of our Website and/or Company Services (e.g. without any need to register or subscribe to a specific service).
We collect (1) data that you have voluntarily shared, (2) data collected when you access and interact with the Website or the Company Service (“Activity Data), and (3) information from other sources. More specifically:
When the information collected from or about you does not directly or indirectly identify you as a specific person, we may use that information for any purpose or share it with third parties to the extent permitted by applicable data protection laws and regulations.
We do not collect:
We use the personal data we collect from and about you to:
When the data collected from or about you does not identify you personally, we may use that information for additional purposes or share it with third parties.
The legal basis of processing is as follows:
As set out in Section 3 above, your data is processed through both electronic and manual means is always subject to appropriate security measures. Please note that although we use appropriate administrative, technical, personnel and physical measures to safeguard the personal data we collect from loss, theft and unauthorised use, disclosure or modification, we cannot guarantee the full exclusion of all cyber-risks.
Although this data is collected on an anonymised basis, this information will be decrypted in the event of an attack, the decrypted information may include email and IP addresses.
For the purposes set out at Section 3 above, we may share your personal data to the following categories of recipients in compliance and with Section 7 below:
ukdataprotection@nttdata.com
Your personal data may be transferred to countries within and outside the European Economic Area (EEA), in particular to the USA and India. Some non-EEA countries are recognized by the European Commission as providing an adequate level of data protection according to EEA standards. The full list of these countries is available at https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/adequacy-protection-personal-data-non-eu-countries_en.
For transfers from the EEA to countries not considered adequate by the European Commission, we have put in place appropriate and suitable safeguards to protect your personal data. Any transfer of your personal data is in compliance with the requirements and the obligations provided by applicable data protection laws, such as standard contractual clauses adopted by the European Commission as per Articles 45 and 46 of the UK General Data Protection Regulation You have the right to request a copy of the above measures or further information on your personal data by contacting the Company at the address indicated in Section 11 below.
Countries of destination are:
You have the right, at any given time, to:
To exercise these rights, you may send a request to the contact listed in Section 11 below. Your request should include your email address, name, address, and telephone number and specify clearly what information you would like to access, change, update, suppress or delete.
If you ask us to delete your personal data, copies of some information may remain viewable in certain circumstances. For example, where you have shared information with social media or other services. In addition, due to the nature of cache technology, your account may not be instantly inaccessible to others. We may also retain backup information related to your account on our servers for some time after cancellation or your request for deletion, to comply with applicable law.
If you no longer want to receive marketing-related emails from us, you may opt-out by following the unsubscribe instructions in our communications or sending a request to the contact listed in Section 11 below.
Section 10 outlines additional rights, effective from 25 May 2018.
On 25 May 2018, the UK Data Protection Act 2018 and the EU GDPR came into force and the following provisions apply:
We will retain your data only for the period necessary to fulfill the purposes for which the data was collected as outlined in this Privacy Policy. In any case, the following retention periods will apply to the processing of your personal data:
At the end of the retention period your personal data will be either deleted, anonymised or aggregated.
From 25 May 2018 you also have the right at any given moment to:
We may modify or update this Privacy Policy following different interpretations, decisions, opinions and orders relating to the UK Data Protection Framework. The Effective Date at the header of this Privacy Policy sets out the date of last revision. Any changes to this Privacy Policy will be notified in advance and will be posted on the Recruitment Website. In the event that we propose material changes that expand our rights to use your personal data we will notify you and provide you with a choice about our future use of your personal data.
Last modified 17 February 2022.
CONTACT US
If you have questions about this Privacy Policy, or would like to contact our Data Protection Officer or exercise any right hereunder, please contact us at:
The Data Protection Officer is Lynda Osborne. NTT Data UK. 2 Royal Exchange. London EC3V 3DG
In the event of a complaint which NTT DATA UK cannot resolve, you can submit your complaint to the ICO at the following address;
Information Commissioner’s Office
Wycliffe house
Water Lane
Wilmslow
Cheshire
SK9 5AF
Tel 0303 123 1113
www.ico.org
For EU Citizens please contact Roberta Tisci
If NTT DATA EMEA cannot resolve your complaint, you can submit your complaint to:
European Data Protection Supervisor
Rue Wiertz 60
1047 Bruxelles/Brussel
Office: Rue Montoyer 30, 6th floor
Tel. +32 2 283 19 00
email: edps@edps.europa.eu
Website: http://www.edps.europa.eu/EDPSWEB/