CMS Cameron McKenna Nabarro Olswang LLP (“CMNO”) is committed to protecting and respecting your privacy.
By submitting your personal data to us, you acknowledge that:
- You are not required to provide any requested information to us, but failing to do so may result in not being able to continue your application for the job for which you have applied.
- All of your representations are true and correct to the best of your knowledge, and you have not knowingly omitted any related information of an adverse nature.
1. Key Terms
|We, us, our||CMS Cameron McKenna Nabarro Olswang LLP and its associated offices in other countries (the “CMNO Entities“). See ‘Data controllers’ below for more information on the entities that control and process personal data in CMNO.|
|You||Users of CMNO career pages of cms.law (“the Website”)|
|Our data protection lead||Craig Perry Office: Cannon Place, 78 Cannon Street, London EC4N 6AF Direct Dial: +44 20 7367 3947 Email: firstname.lastname@example.org|
|Personal data||Means information that identifies job applicants and potential candidates for employment, membership or partnership with us, either submitted as part of the online application and/or through alternative channels (e.g., via professional recruiting firms) or through a general profile created to receive alerts for future vacancies.|
|Special category personal data||Means a subset of personal data and includes ethnicity, health, trade union membership, philosophical beliefs, sexual orientation, as well as other categories as prescribed by law.|
2. Who is responsible for your personal data?
CMNO, an English limited liability partnership with registration number OC310335, and where applicable, the relevant CMNO Entity will be responsible for your personal data. Specifically, CMNO is the data controller and is registered as such with the Information Commissioner.
3. Personal data we collect about you
We may collect personal data from you when you complete an application form and upload a copy of your CV to our applicant tracking system (ATS) and register a candidate profile with us, either to make an application for an existing vacancy, or so that you are notified of future vacancies.
The personal data about you that we process includes:
- Your name;
- Your address;
- Your email address;
- Your telephone number;
- CV/work history/employment experience and preferences, achievements;
- Details of your qualifications;
- Job preferences including role, geographical areas and salary; and
- Any other work related information you provide, for example, education or training certificates.If your application is successful and you accept a role with us, we may collect personal data about you from third parties, such as professional recruiting firms, prior employers, CMNO employees, partners or staff with whom you have interviewed, and employment background check providers, to the extent this is permitted by applicable law.
- If you make an application for a vacancy, you may also be invited to complete online tests, interviews and written assessments and be asked for additional information, including about your immigration status and criminal convictions.
4. How and why we use your personal data
We collect and process your personal data for our legitimate interests and business management reasons including:
- identifying and evaluating candidates for potential employment, membership or partnership opportunities, as well as for future roles that may become available;
- record keeping in relation to recruiting and hiring;
- ensuring compliance with legal requirements, including diversity and inclusion requirements and practices;
- conducting criminal history checks as permitted by applicable law;
- protecting our legal rights to the extent authorised or permitted by law; or
- emergency situations where the health or safety of one or more individuals may be endangered.We process your personal data for the purposes described above: when we have your consent to do so; when necessary to enter into an employment contract with you or membership/partnership appointment; when necessary for us to comply with a legal obligation; or when necessary for the purposes of our legitimate interests as an employer operating globally.If you register to receive job alerts from us, you may receive notifications of new vacancies that match your profile and registered career interests. You can opt-out from receiving these updates at any time by contacting us at: email@example.com.
- We will also use your personal data to create anonymous recruitment statistics, from which you cannot be identified.
- If you have made an application for a vacancy, we will use the personal data that we collect from you to help us decide if you are a suitable applicant for the position for which you have applied.
- We may also analyse your personal data or aggregated/pseudonymised data to improve our recruitment and hiring process.
5. Who we share your personal data with
We are an international law firm and any information that you provide to us may be shared with and processed by recruiters and interviewers working in another CMNO Entity or CMS Legal Services EEIG and the CMS Member Firms and their connected businesses (the “CMS Member Firms”). A complete list is available on request and on our website at http://cms.law.
Individuals performing administrative functions and IT personnel within CMNO Entities and CMS Member Firms may also have a limited access to your personal data to perform their jobs. We have put in place legal mechanisms designed to ensure adequate data protection of your personal data that is processed by CMNO Entities and CMS Member Firms.
We share your personal data with certain trusted third parties in accordance with contractual arrangements in place with them, including Integreon Inc who provide office support staff in the HR administration and others that assist us in recruiting talent, administering and evaluating pre-employment screening and testing, and improving our recruiting practices. A complete list of these third parties is available on request.
We only allow our service providers to handle your personal data if we are satisfied they take appropriate measures to protect your personal data. We also impose contractual obligations on service providers to ensure they can only use your personal data to provide services to us and to you.
If in the future we re-organise or transfer all or part of our business, we may need to transfer your information to new CMS Member Firms or to third parties through which the business of CMNO or the CMNO Entities will be carried out. Usually, information will be anonymised but this may not always be possible. The recipient of the information will be bound by confidentiality obligations.
6. Where your personal data is held
Information may be held at CMNO Entities and those of our CMS Member Firms, third party agencies, service providers, representatives and agents as described above (see ‘Who we share your personal data with’).
Some of these third parties may be based outside the European Economic Area. For more information, including on how we safeguard your personal data when this occurs, see below: ‘Transferring your personal data out of the EEA’.
7. How long your personal data will be kept
If you accept an offer of employment, membership or partnership by us, any relevant personal data collected during your pre-employment/appointment period will become part of your personnel records and will be retained in accordance with our records management policy. If we do not employ you or you do not join the partnership, we may nevertheless continue to retain and use your personal data for three years from date of submission of your application.
8. Transferring your personal data out of the EEA
CMNO is an international firm and a list of our offices, together with relevant contact information, may be found on our website. Irrespective of how we obtain your personal data, it may be shared among all CMNO Entities and CMS Member Firms (both inside and outside the European Economic Area). Our policy requires all CMNO Entities and CMS Member Firms to at all times ensure a level of data protection at least as protective as those mandated by the European Economic Area. We may also need to transfer personal data to third parties, including third parties based outside the European Economic Area, for example (but not limited to) sub-contractors, other counsel and accountants and third parties involved in your matters.
Where we share or transfer your personal data, we will do this in accordance with applicable data protection laws and will take appropriate safeguards to ensure its integrity and protection.
9. Cookies and other tracking technologies
10. Your rights
In addition to your rights under applicable data protection legislation and where we are permitted or required by applicable law and regulation and by our professional obligations, we will provide you, upon request, with a copy of your personal data and we will correct any errors identified by you. You may also request that we cease processing your personal data (e.g., if you choose to withdraw from our recruiting program), although note that we may need to retain certain personal data where required or permitted to under applicable law.
We may request that you prove your identity by providing us with a copy of a valid means of identification in order for us to comply with our security obligations and to prevent unauthorised disclosure of data. We reserve the right to charge you a reasonable administrative fee for any manifestly unfounded or excessive requests concerning your access to your data, and for any additional copies of the personal data you request from us.
All such requests, including any requests to update personal data about you or any questions or comments regarding this policy or our handling of your personal data, should be addressed to firstname.lastname@example.org.
We do not make recruiting or hiring decisions based solely on automated decision-making.
11. Keeping your personal data secure
We have appropriate security measures to prevent personal data from being accidentally lost, or used or accessed unlawfully. We limit access to your personal data to those who have a genuine business need to access it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
We use a variety of technical and organisational measures to help protect your personal data from unauthorised access, use, disclosure, alteration or destruction consistent with applicable data protection laws. Personal data may be kept on our personal data technology systems, those of our contractors or in paper files.
We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.
12. How to complain
We hope that we can resolve any query or concern you may raise about our use of your information. You may also have the right to lodge a complaint in relation to our processing of your personal data with a local supervisory authority. We will provide you with details of your relevant regulator upon request.
13. Data controllers
14. How to contact us
Our contact details are shown below:
|Our contact details||Our Data Protection Lead’s contact details|
|email@example.com +44 207 367 3000||Craig Perry
Office: Cannon Place, 78 Cannon Street, London EC4N 6AF
Direct Dial: +44 20 7367 3947