Dragonfly Privacy Policy - Effective January 2022
Introduction
Dragonfly Holdings, and it’s subsidiary Piccadilly Labs SL (“we”, or “Dragonfly”) complies with the UK and EU GDPR (EU Regulation 2016/679).
Our services include consultancy and professional services.
Your personal data applies to information relating to you as a natural person.
This policy applies ot the personal data that you provide to us, or we obtain through your use of our services, your relationship or potential relationship with Piccadilly as an employer, or when you otherwise interact with us.
Changes to this policy
We may change this Privacy Policy from time to time. If we make any changes, we will notify you by revising the date in the title of this Privacy Policy. If we make any material changes, we will provide you with additional notice (such as by email).
If you disagree with any changes to this Privacy Policy, please let us know by sending an email to operations@wearedragonfly.co
Information we process
We store a limited amount of personal data that you directly provide us through our websites, software services, and interactions with us.
We do not collect collect or process information relating to racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetics, or biometrics. In the event this data is given to us incidentally as it is present on copies of documents used to identify you, it will be used solely for identification purposes.
If you are providing services to us as an employee or a sub-contractor, we may ask you (or your employees) to complete background checks as necessary.
We collect other data that you submit to our websites or services as you participate in any interactive features of the services, participate in a survey, contest, promotion, sweepstakes, activity or event, apply for a job, request customer support, communicate with us via third party social media sites or otherwise communicate with us.
As is true with most websites and services delivered over the Internet, we gather certain information and store it in log files when you interact with our services. This information includes internet protocol (IP) addresses as well as browser type, internet service provider, URLs of referring/exit pages, operating system, date/time stamp, information you search for, locale and language preferences, identifcation numbers,
We use various technologies to collect information, such as cookies and web beacons. Cookies are small data files stored on your hard drive or in device memory. We use cookies to improve and customize the services and your experience; to allow you to access and use the services without re-entering your username or password; and to count visits and understand which areas and features of the services are most popular. You can instruct your browser, by changing its options, to stop accepting cookies or to prompt you before accepting a cookie from websites you visit. If you do not accept cookies, however, you may not be able to use all aspects of the services. We also use javascript, e-tags, " ash cookies", and HTML5 local storage to collect information about your online activities over time and across different websites or online services.
How do we use the information?
We use the information we collect about you to:
a) Provide, operate, maintain and promote our services;
b) Identify you and enable you to use the services;
c) To personalise the services to you;
d) Send you messages, including responding to your comments, questions, and requests; providing service and support; and sending you technical notices;
e) Send promotional communications, such as providing you with information about services, features, surveys, newsletters, offers, promotions, contests, events and providing other news or information about us and our select partners. You have the ability to opt out of receiving any of these communications as described below under "Your Choices";
f) Monitor and analyse trends, usage, and activities in connection with the services.
How long do we keep the data?
Where you provide personal data as part of a job application we keep the data for a defined period of time:
a) we will keep your personal contact data and curriculum vitae, resume, work history and similar data on file for 24 months. If we want to keep it for longer we will contact you to ensure it is up to date and that we have your consent;
b) any data provided by you as part of any background checks required will be deleted after six months; and,
c) any data provided by you as part of a psychometric or personality test will be deleted after two months.
Information disclosure
We are the controller and processor of the personal data provided and other than to provide the services you use, we will not share your personal data with a third party except:
where required to do so by law; or
with your express consent; or
where data has been compiled into “Aggregated Data” and no longer identifies any natural person or corporate entity; or
where we nominate a third party processor subject to and in compliance with UK and EU legislation, or codes of conduct as defined in Article 40 of GDPR
Data security
All data will be stored within the UK or the EU, except where the county has been permitted by Article 45 of GDPR, or alternative adequate safeguards are determined in line with Article 46 of GDPR.
The servers on which Personal Data is stored are kept in a secure environment. While we take reasonable efforts to guard your Personal Data, no security system is impenetrable and due to the inherent nature of the Internet as an open global communications vehicle, we cannot guarantee that information during transmission through the Internet or while stored on our systems or otherwise in our care, will be absolutely safe from intrusion by others, such as hackers.
Where data is transmitted over the internet it will always be encrypted using industry standard techniques.
Third-party processors
We use the following sub-processors for personal data, contractual agreements are in place to ensure they abide by our security and privacy requirements. Wherever possible technical safeguards are also in place in order to prevent access:
Microsoft
Amazon Web Services
Bullhorn
Sterling Backcheck
Your choices
You can opt out of receiving marketing materials or promotional communications by using the unsubscribe link within each email, or by emailing us at operations@wearedragonfly.co. You can still use the services after opting out of this.
You have the right to see the information we hold about you. Copies can be requested by sending a request to operations@wearedragonfly.co.
Information stored about you can be destroyed on your request. Please send any such requests to operations@wearedragonfly.co.