The latest employment numbers from ONS statistics highlight a stark reality: despite record low unemployment, the jobs market is far from stable. As Britain's workforce navigates the shifting landscape of work, an often-overlooked aspect of job hunting comes under scrutiny - data protection and transparency in recruitment. The Department for Science, Innovation & Technology (DSIT) has taken steps to address this concern by publishing a comprehensive privacy notice outlining how it handles personal data during its digital recruitment processes.
Acting as the data controller, DSIT will collect various types of personal information from applicants, including names, addresses, occupations, professional experience, skills, education, and contact details. For successful candidates, additional data such as date of birth and National Insurance numbers will be processed. The department makes it clear that this data is primarily used to facilitate the hiring process, generate employment contracts, and inform future recruitment strategies.
The notice also outlines the collection of 'special category data', which includes sensitive information like racial or ethnic origin, religious beliefs, physical or mental health, and sexual orientation. DSIT has clarified that this data is exclusively used for monitoring fairness and diversity, and understanding any reasonable adjustments required for disabilities as mandated by the Equality Act 2010 - a critical aspect of ensuring equal opportunities in the workplace.
DSIT receives personal data directly from applicants via its job portals and the Greenhouse platform. While roles may be advertised on external sites like LinkedIn, DSIT confirms that these platforms do not transfer personal data to them. The department also specifies that personal data will only be shared when necessary - for instance, with the Government Recruitment Service (GRS) for pre-employment and security checks for candidates who have accepted a provisional offer, and with the Department for Energy Security and Net Zero (DESNZ) for contract generation and administrative functions.
The retention policy states that personal data for unsuccessful applicants will be kept for one year. For successful applicants who accept an offer, data will be retained for a longer period to manage the hiring process and track their integration into DSIT's digital roles. All applicant data is stored securely in the UK on systems provided by Microsoft and Amazon Web Services, acting as technical service providers for DSIT's IT infrastructure.