Shortlister Solutions Limited (SSL) supplies a video coaching and assessment software service operating under the brands 'Shortlister' and 'Shortlist.Me'.
This policy describes how your data is managed in accordance with data protection legislation.
Overview
- We will only collect and process the minimum amount of your personal data for the purpose that we need it
- We will only use your personal data to provide our services to you and to improve on those services
- The service we provide means we do need to share/disclose your personal data to other companies that assist us
- We keep your personal data secure
- We only keep your personal data for a limited period of time
- You can keep in control of your personal data through the various rights you have
- We are happy to speak to you about what we do with your personal data
Data protection contact
SSL acts as a data processor on behalf of the organisation that's assessing you. If you wish to contact us regarding your data privacy you can do so by emailing privacy@shortlist.me.
Personal data collected
We receive the following personal information from the organisation that you are being assessed by:
- Full Name (first and last name)
We collect the following information from you on behalf of the organisation that you being assessed by:
- Interview answer videos
We may also collect the following information to help us provide you with technical support:
- Your IP address
What we use your personal data for
We process your data only for the purpose of facilitating your assessment. We do this to fulfil our contract with the organisation that you are being assessed by. If we do not have your personal data, it will not be possible to complete your assessment.
Recipients of the personal data
So that we can complete your assessment and supply it to the organisation that you are being assessed by, we use several outside services. We may share your information with these companies:
Company |
Information shared |
Purpose |
Data location |
Heroku |
Name Email address |
Data storage |
EU |
Amazon |
Interview answer videos |
Data storage |
EU |
Mailgun |
Name Email address |
Email delivery |
EU |
Better Stack |
IP address |
Logging web pages visited |
EU |
Rev |
Audio recording |
Audio transcription |
EU |
*targetconnect |
Name Feedback URL |
Aggregation of data |
EU |
*enablement subject to Data Controller authorisation
Security & transfers outside of the UK & EU
When we send and receive data, we always use encrypted network transmissions. All of our systems are secured by strong passwords, and data is only available to authorised users. Where it is necessary to transfer data outside of the EEA, we will do so in accordance with the Standard Contractual Clauses.
Retention of information
The organisation that you are being assessed by will have told you how long they will keep your personal information for. We will remove your information when they have finished with it.
When we log data about your use of our web application using your IP address, we only keep that data for seven days in case we need it to provide you with technical support.
Your rights
You have various rights over how your data is processed. As the data we store about you belongs to the organisation that you are being assessed by, you should contact them directly to request to exercise your rights. We will pass any requests we receive to the relevant organisation.
- You can withdraw any consent you have given for processing
- You can ask for access to the personal data we keep about you
- You can ask to update inaccurate personal data we hold about you
- You can ask to delete your personal data
- You can ask to restrict the processing of your personal data, for example if you are contesting the accuracy of it
- You can object to the processing of your personal data for direct marketing purposes and for analytical purposes
Should you wish to exercise any of your rights please contact us.
How to make a complaint to the ICO
If you are dissatisfied with the way we have been processing your personal data or have not dealt with one of your rights correctly when you have asked us to you may lodge a complaint with the Information Commissioner's Office (ICO). The ICO has several ways in which you can get in touch with them, including post, email, and online forms.
Automated decision making including profiling
We do not undertake any automated decision-making, including profiling.