This privacy policy aims to give you information on how the AIM Group collects and processes your personal data through your use of this website, including any data you may provide through this website when you sign up to our services.It is important that you read this privacy policy together with any other privacy policy or fair processing policy we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data. This privacy policy supplements other notices and privacy policies and is not intended to override them.

We keep our privacy policy under regular review. This version was last updated on 25th August 2022.

We may update this privacy notice from time to time as necessary. The terms that apply to you are those posted here on our website on the day you use our website. We advise you to print a copy for your records. If you have any question regarding our privacy policy, please contact our DPO.

It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.

Where an online information service is offered to someone under the age of fourteen (14) years of age, the service provider must obtain consent from the parent or guardian to provide that service. You are prohibited from using the AIM Group services without obtaining consent from a parent or guardian. Once you have obtained permission you may use the services of the AIM Group.

Our website is designed for use by children over the age of fourteen (14) years of age. These areas include job descriptions, job vacancies or training courses designed for children, young people and adults. We collect data about all users of and visitors to these areas regardless of age, and we anticipate that some of those users and visitors will be children. Such child users and visitors will inevitably visit other parts of the site and will be subject to whatever on-site marketing they find, wherever they visit. None of the on-site marketing will ever be of an adult content nature.

Third parties may advertise on our website and this website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy policy of every website you visit.

The data we collect about you: Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

We also collect, use and share Aggregated Data such as statistical or demographic data for any purpose. Aggregated Data could be derived from your personal data but is not considered personal data in law as this data will not directly or indirectly reveal your identity. For example, we may aggregate your Usage Data to monitor our performance with respect to a particular service we provide. However, if we combine or connect Aggregated Data with your personal data so that it can directly or indirectly identify you, we treat the combined data as personal data which will be used in accordance with this privacy policy.

Where necessary and with your explicit consent, we may collect Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data). We may also collect information about criminal convictions and offences.

You may submit or it may be a requirement of, for example, an application for an apprenticeship that you supply, Special Categories of Personal Data and/or information about criminal convictions and offences. You are not obliged to submit these types of information, but some opportunities may not be available to you if this information is requested but not provided.

If you fail to provide personal data

Where we need to collect personal data by law, or under the terms of a contract we have with you, and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide you our services). In this case, we may have to cancel a product or service you have with us but we will notify you if this is the case at the time.

Data Security

We have appropriate security measures in place to protect your personal data from being lost, accessed, altered, disclosed or used without authorisation. Access to your personal data is limited to employees, agents, contractors and third parties who need it for business purposes. Anyone handling your data must follow our instructions and keep it confidential. If a personal data breach occurs, we will notify you and any relevant regulator where legally required.

Data Retention

We only keep personal data for as long as necessary to fulfil the purpose it was collected for, including legal, tax, accounting or reporting requirements. In some cases, we may keep data for longer if there is a complaint or potential legal claim. By law, we must keep basic customer information, such as contact, identity, financial and transaction data, for six years after someone stops being a customer.

Your Legal Rights

Under data protection law, you have rights over your personal data. These include the right to request access to your data, correct inaccurate information, ask for your data to be deleted, object to how it is used, request that processing is restricted, ask for your data to be transferred, and withdraw consent where consent is being used. To exercise these rights, you can contact our Data Protection Officer.

Accessing or Removing Your Data

You can request a copy of the personal data we hold about you by submitting a Subject Access Request. You can also ask us to remove personal information where legally appropriate. We may need to confirm your identity before completing a request. We aim to respond to valid requests within one month, although complex requests may take longer.

Glossary

The glossary explains key terms used in the Privacy Policy, including legitimate interest, performance of contract, legal obligation and consent. It also explains your data protection rights in more detail, such as the right to access, correct, delete, restrict, transfer or object to the use of your personal data.