Argus Recruitment Privacy Notice
Argus (“we”, “us” or “our”) recognises the fundamental importance of privacy, security and data protection to current and prospective staff as well as customers and partners worldwide. As a global organisation, with legal entities, business processes, management structures and technical systems that cross international borders, we strive to provide information protection across all of our operations and deploy consistent, rigorous policies and procedures.
Your Personal Information will be Processed by the Argus group company to which you have applied or been referred to in relation to a vacant job role (the Data Controller) and may be shared with and Processed by other Argus group companies for the purposes set out in this notice.
This Notice (“the Notice”) is designed to help you understand our Processing operations including when and how Argus obtains and processes your Personal Information during our job application, candidate referral and recruitment processes and how we safeguard the Personal Information we hold about you.
Where we obtain your Personal Information
We only Process Personal Information that:
- you have made available to us when you visit or connect with us or create a profile through our Career Site;
- you have made available to us when you apply for a position with us, via our Career Site or via a third party service;
- we have obtained including in connection with applications or referrals for open or potential job roles and related communications either directly from you or through an online portal or an agent representing us or you;
- we have obtained from publicly available sources such as online profiles on industry or professional related websites or social media sites such as LinkedIn;
- we have obtained or are required to ascertain from government sources for the purposes of managing our application and recruitment process;
- we have obtained in relation to references or through carrying out permitted background checks;
- has been obtained when you attend any of our offices and your Personal Information is recorded through a building entry pass, CCTV or Biometric security system for building security purposes; or
- has been obtained when you use our electronic information and communications systems and equipment or when we monitor your use of such technology including when you access necessary policy documents, or take part in skills or aptitude tests as part of our recruitment processes.
Types of your Personal Information Processed by us
We may Process the following types of Personal Information to the extent permitted by applicable law:
- name, gender, home address, email address and telephone/mobile number, date of birth, photograph;
- residency and work permit or visa status and travel history, military status or discharge, nationality, citizenship and passport information;
- personal circumstances including marital status/history;
- location data including IP address, physical location and device information;
- work history, technical skills, educational background, professional certifications, qualifications and registrations, language capabilities, training courses attended and any other information you provide to us in your curriculum vitae, covering letter and application form;
- notes from interviews with you and the results of assessments and tests including psychometric tests;
- salary history and expectations, letters of reference;
- where proportionate in view of the function to be carried out by a prospective staff member, the results of credit and criminal background checks, the results of drug and alcohol testing, screening, health certifications, driving licence number, vehicle registration and driving history;
- your acknowledgements regarding our policies;
- information captured on security systems, including CCTV and building entry systems and other security and technology monitoring systems including biometric systems where installed, to the extent permitted by applicable law;
- communications including voicemails, emails, instant messages, chats, tweets, videos, correspondence or survey responses;
- information used to ensure and demonstrate a fair recruitment process including in relation to gender, ethnicity or disabilities;
- any other relevant data that could be necessary to comply with our operating requirements and policies.
Whilst some of the above Personal Information may be classified as Sensitive Personal Information under applicable law, we may also Process the following additional Sensitive Personal Information about you during our recruitment process as permitted by applicable law:
- physical or mental health;
- racial or ethnic origin;
- religious, philosophical or other beliefs of a similar nature;
- trade union membership.
How we use your Personal Information and the legal basis on which we Process it
Depending on the country in which you reside and its applicable laws, we may collect, use and disclose your Personal Information for the purposes and on the legal bases set out below:
Evaluate applications for Employment including requesting and assessing the results of references and background checks;
- We have obtained your prior consent to the Processing; or
- We have a legitimate interest in carrying out the Processing for the purpose of managing our recruitment process and for resource planning purposes.
Compliance with applicable laws including legal and regulatory obligations applying to us and judicial or administrative orders regarding particular individuals;
- The Processing is necessary for compliance with a legal obligation.
Monitoring, maintaining and developing the diversity of Argus’ workforce by collecting, where permitted by applicable law including on a voluntary basis from you, Personal Information including gender and racial or ethnic origin. For the avoidance of doubt, the processing of such Personal Information would not affect your progression through the recruitment process or continued employment within any Argus group company;
- We have obtained your prior consent to the Processing; or
- The Processing is necessary in the wider public interest of ensuring equality of opportunity and treatment are available to all; or
- We have a legitimate interest in carrying out the Processing for the purpose of attracting and retaining staff.
To protect our safety and security, and that of our staff and property including the physical security of our premises, access to and records of visits to our premises, monitoring activity in our premises, CCTV recordings and electronic security (including biometric information or login records and access details);
- The Processing is necessary for compliance with a legal obligation; or
- We have a legitimate interest in carrying out the Processing for the purpose of ensuring the physical and electronic security of our business and our premises.
Health and safety including health and safety assessments and record keeping; providing a safe environment at our premises and compliance with related legal obligations.
- The Processing is necessary for compliance with a legal obligation; or
- The Processing is necessary to protect the vital interests of any individual.
Monitoring and recording your use of our electronic information and communications systems and equipment including our Career Site;
- The Processing is necessary for compliance with legal obligations including compliance with applicable data protection laws; or
- We have a legitimate interest in carrying out the Processing for the purposes of investigating suspected breaches of our policies, to prevent and assist in the investigation of suspected wrongful acts including breaches of contract (including employment contracts) and breaches of legislation and/or regulation, to protect our confidential information including our intellectual property and to investigate any potential misuse or unauthorised access to or transfer of such confidential information, to comply with any regulations or best practice guidelines applicable to us including the IOSCO principles and to detect Personal Data Breaches; or
- We have obtained your prior consent to the Processing.
Investigations required for detecting, investigating and preventing breaches of policy, and criminal offences, in accordance with applicable law;
- The Processing is necessary for compliance with a legal obligation; or
- We have a legitimate interest in carrying out the Processing for the purpose of detecting, and protecting against, breaches of our policies and applicable laws.
Legal proceedings required for establishing, exercising and defending legal rights, including investigating and responding to claims against us and our staff;
- The Processing is necessary for compliance with a legal obligation; or
- We have a legitimate interest in carrying out the Processing for the purpose of establishing, exercising or defending our legal rights and our staff.
Fraud prevention required for detecting, preventing and investigating fraud.
- The Processing is necessary for compliance with a legal obligation (especially in respect of applicable employment law); or
- We have a legitimate interest in carrying out the Processing for the purpose of detecting and protecting against fraud.
How we protect your Personal Information
We employ technical and organisational security measures to safeguard and help prevent unauthorised access and sharing, or misuse of your Personal Information. We choose these safeguards based on the sensitivity of the information that we collect, Process and store, and the current state of technology. Our third-party service providers who support our operations are also vetted to ensure that they have the appropriate organisational and technical measures in place to protect your Personal Information. You can request a copy of our technical and organisational measures by using the contact information within this Notice.
International transfers of your Personal Information
We are an international group, and to the extent legally permissible, your Personal Information may be stored and Processed in any country where we have operations or in which we engage service providers. When we export your Personal Information to another country, the export complies with applicable law.
Whenever we transfer your Personal Information across borders, including to third parties outside of the UK or the EEA, we will ensure that appropriate safeguards are in place according to applicable law, such as:
- Ensuring the third party is located in an adequate jurisdiction according to applicable law; or
- We may enter into Standard Contractual Clauses or such other contractual agreements with the third party as may be required from time to time.
Your Personal Information will only be shared with third parties (including our suppliers and group companies) that have committed to maintain strict organisational and technical measures to protect your Personal Information.
Who we share your Personal Information with
As an international organisation Argus may share your Personal Information with other group companies and service providers that manage or support certain aspects of our business.
We may also share your Personal Information from time to time and in accordance with applicable law for compliance with law and protection of people and property, during Business Transactions or with Government bodies and agencies, or with Business Advisors.
More Information regarding sharing of Personal Information with third-parties can be found in Argus’ Privacy Policy HERE.
Your rights
The rights you have in respect of your Personal Information that we Process may vary based on applicable laws.
Please note, any request to exercise your rights including to restrict the Processing of your Personal Information may delay and may end your application for the job position you have applied to.
In many jurisdictions individuals have the following rights:
- Right to object to Processing of your Personal Information,
- Right to withdraw your consent,
- Right to request correction of errors in information,
- Right to request Erasure,
- Right to request restriction of Processing in relation to your Personal Information,
- Right to object to automated decision-making including profiling,
- Right to data portability,
- Right to make a complaint, and
- Right of Access to your Personal Information.
Regarding the Sale of Personal Information, Argus does not usually sell Personal Information by exchanging the information for money or other commercial benefit and so does not provide a means to opt-out of the sale of data.
More information about your rights can be found in Argus’ Privacy Policy HERE or by contacting the relevant Supervisory Authority in your jurisdiction.
In the UK, the relevant Supervisory Authority is the UK Information Commissioner’s Office (ICO): www.ico.org.uk.
A list of Supervisory Authorities across the EU and their contact details is available at:
https://edpb.europa.eu/about-edpb/board/members_en.
How long will we keep your Personal Information?
Where retention of your Personal Information is no longer necessary, we will take prompt action to ensure that we cease to retain such Personal Information (in a manner which renders such Personal Information completely irretrievable or inaccessible to us) or anonymise such Personal Information (in a manner which renders us not having the means to associate such Personal Information with you).
Application forms, interview notes, recruitment files and other electronic or paper records related to your job application(s) will typically be retained for a maximum of 36 months from the Recruitment Decision which concludes the job application process, this is either when your application is withdrawn or rejected, or you accept our job offer.
If successful in your application Argus will retain and continue to Process your Personal Information in accordance with the applicable Argus Global Staff Privacy Policy which is made available to all those who join Argus.
Certain jurisdictions impose retention periods which differ from Argus’ regular retention policy.
About this Recruitment Privacy Notice
This Notice applies in all countries where Argus group companies employ staff, except it does not apply: (1) in the United States and (2) in any country where the local Argus group company has superseded this Notice with a local recruitment privacy notice which will be made available to you by the relevant local Argus group company during their recruitment process.
In addition, the rights and obligations set out in this Notice will only apply in so far as (and to the extent) such rights and obligations arise under the local laws of the country which apply to you as an individual. Privacy laws in such countries may provide for rights and obligations which differ from those stated in this Notice.
In the event of conflict between this Notice and a local law, the local law will prevail.
This Notice constitutes the Information Notice where required under applicable data protection laws including but not limited to the General Data Protection Regulation (GDPR), the UK GDPR and the UK Data Protection Act 2018, Alberta Canada’s Personal Information Protection Act, Brazil’s General Data Protection Law, Mexico’s Federal law of Protection of Personal Data, and the Singapore Personal Data Protection Act (PDPA).
This Notice is drafted in the English language. If there is any conflict or inconsistency between the English language version and any translation, the English language version prevails. We reserve the right to update this Notice from time to time in response to changing legal, regulatory or operational requirements.
This Privacy Notice was last updated on 11th June 2025 and is published by Argus Media Limited, Registered in England and Wales under Company Registration No 1642534, with its registered office at Lacon House, 84 Theobald's Road, London, WC1X 8NL, UK.
Further information including details of Argus’ group companies, representative offices and the organisation and technical measures employed by Argus to protect your personal information can be found in the Argus Privacy Policy Here.
If you have any question about this Privacy Notice or the Processing of your Personal Information please address them by email to DPO@argusmedia.com or by writing to The Data Protection Officer, Argus Media Limited, Lacon House, 84 Theobald's Road, London, WC1X 8NL, UK.
Definitions
“Adequate Jurisdiction” means a jurisdiction that has been formally designated by an applicable government authority as providing an adequate level of protection for Personal Information.
“Controller” means the entity that decides how and why Personal Information is Processed. In many jurisdictions, the Controller has primary responsibility for complying with applicable data protection laws.
“Data Subject Access Request” means the express right, as defined under certain (but not all) data protection laws, to obtain confirmation of whether or not personal data about you is being processed and to access information about: the categories of personal data, the purpose of processing, who data may be disclosed to including by transfer to international organisations or to countries outside your home country, including countries that are not Adequate Jurisdictions; the envisaged retention period or retention criteria; your rights to lodge a complaint with a supervisory authority, request rectification or erasure of your personal data, object to or restrict the Processing; the sources of information where not collected from you; and to be informed of any automated decision-making including profiling. The definition of Data Subject Access Request may vary under local laws.
“EEA” means the European Economic Area.
“EU” means the European Union.
“Personal Information” is any information that personally identifies you or from which an individual is identified or identifiable, in combination with other information which we have or are likely to have access to. This may include your name, address, telephone number, email address and profession or occupation and may extend to the collection and use of Sensitive Personal Information.
“Personal Data Breach” means a breach of security resulting in the accidental or unlawful or unauthorized destruction, loss, alteration, disclosure of, or access to, Personal Data.
“Process”, “Processing” or “Processed” means anything that is done with any Personal Information, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
“Processor” means any person or entity that Processes Personal Information on behalf of the Controller (other than Staff of the Controller).
“Sensitive Personal Information” means Personal Information from which we can determine or infer an individual’s racial or ethnic origin, political opinions, religious beliefs or other beliefs of a similar nature, membership of a trade union or professional association, physical or mental health or condition, genetic data, biometric data, sexual orientation, the commission or alleged commission of a criminal offence (or other information designated by applicable law as a special or sensitive category).
“Standard Contractual Clauses” mean template transfer clauses adopted by the European Commission or adopted by a Supervisory Authority and approved by the European Commission.
“Staff” means workers, employees, contractors, officers, directors and stringers.
“Supervisory Authority” means an independent public authority that is legally tasked with overseeing compliance with applicable data protection laws.
