top of page

Privacy Policy

1. Introduction

We take your privacy seriously. This Privacy Statement explains how we collect, use, share, store, and protect your personal data when you engage with our recruitment and staffing services. It also outlines your rights under the General Data Protection Regulation (GDPR) and the Data Protection Acts 1988–2018.

2. Who We Are (Data Controller)

We act as the Data Controller for the personal data you provide to us during the recruitment process. As a recruitment agency, we process your data to match you with suitable job opportunities and to provide recruitment services to our clients.

3. What Personal Data We Collect

We collect only the information necessary to provide recruitment services, including:

  • Identification & Contact Information – name, address, email, phone number

  • Career Information – CV, employment history, qualifications, skills, education

  • Eligibility Information – right‑to‑work documentation, certifications

  • Assessment Information – interview notes, test results, communications

  • Referee Details – names and contact details of referees

  • Website & Technical Data – IP address, cookies, browsing behaviour (when using our website)

 

4. How We Collect Your Data

We collect personal data through:

  • Direct applications (email, website, job boards)

  • Third‑party job platforms (e.g., Indeed, LinkedIn)

  • Recruitment campaigns and referrals

  • Communications with our consultants (phone, email, meetings)

 

5. Purpose of Processing

We process your personal data to:

  • Assess your suitability for job opportunities

  • Match you with roles and present your profile to potential employers

  • Communicate with you about applications, interviews, and job offers

  • Maintain recruitment records and comply with legal obligations

 

6. Legal Basis for Processing

Our processing is based on:

  • Article 6(1)(b) GDPR – Contractual necessity To take steps at your request prior to entering into an employment contract

  • Article 6(1)(f) GDPR – Legitimate interests To operate a recruitment business and match candidates with roles

  • Article 6(1)(c) GDPR – Legal obligation For compliance with employment and tax laws

  • Article 6(1)(a) GDPR – Consent When required (e.g., contacting referees before interview, where applicable)

 

7. Who We Share Your Data With

We may share your personal data with:

  • Client companies seeking candidates for open roles

  • Referees (only with your permission)

  • Assessment providers (skills tests, background checks, where applicable)

  • HR or recruitment service providers assisting with administration

We require all third parties to be GDPR‑compliant.

 

8. International Data Transfers

We generally do not transfer your data outside the EU. If a transfer occurs (e.g., to a UK‑based service provider), it will rely on an EU adequacy decision or appropriate safeguards.

 

9. Automated Decision‑Making

We do not use automated decision‑making or profiling as part of our recruitment process.

 

10. Data Retention

  • Unsuccessful candidates: retained for typically for 2 years

  • Successful candidates: retained for the duration of employment plus 7 years

  • Unsolicited CVs: retained only with consent, typically for 12 months

11. Your Rights Under GDPR

You have the right to:

  • Access your personal data

  • Rectify inaccurate or incomplete data

  • Erase your data (“right to be forgotten”)

  • Restrict or object to processing

  • Data portability – receive your data in a transferable format

  • Withdraw consent at any time

To exercise your rights, contact us using the details below.

 

12. Security & Data Protection

We implement technical and organisational measures to protect your data, including secure storage, access controls, and encryption where appropriate.

 

13. What Happens if You Do Not Provide Data?

If you do not provide required information, we may be unable to process your application or present you for roles.

 

14. Data Breach Procedures

In the event of a data breach, we will follow GDPR‑mandated procedures, including notifying the Data Protection Commission and affected individuals where required.

 

15. Contact Details

Data Protection Officer / Privacy Contact (AMBI Healthcare Ltd) (Craughwell, Co.Galway) Email: (Info@ambihealthcare.ie) Phone: ()

bottom of page