Kura Privacy Policy
for Recruitment Candidates

Kura takes privacy seriously. The following principles underpin our approach to respecting your privacy:

  • We value the trust that you place in us by giving us your personal information and we will always use your personal information in a way that is fair and worthy of that trust.
  • We shall always be transparent with you about what information we collect, what we do with it, with whom we share it and who you should contact if you have any concerns.
  • We will take all reasonable steps to protect your information from misuse and keep it secure.
  • We will comply with all applicable data protection laws and regulations and we will co-operate with data protection authorities.

What kind of personal data do we collect?

  • Your name, Age,
  • Contact details,
  • Education, Employment and Health history (where relevant)
  • Immigration status,
  • Financial information (where we need to carry out financial background checks),
  • National Insurance number,
  • Diversity information and Criminal Convictions (where necessary)

How do we collect your personal data?

Kura collects personal data from information you provide.

How do we collect your personal data?

Kura collects personal data from information you provide.

  • Entering your details on our website or via an application form, as part of the registration process;
  • Leaving a hard copy CV at an recruitment event, job fair or office;
  • Emailing your CV to a member of the team or being interviewed by them;
  • Entering your personal details into a microsite; or
  • Entering a competition through a social media channel such as Facebook or Twitter;
  • Refer a friend – a current employee provides us with your details

How do we use your personal data?

Having obtained data about you, we then use it in a number of ways, including:


In appropriate circumstances in the future, we may also use Candidate data for Profiling.

We may use your personal data for the below purposes if we deem it necessary to do so for our legitimate interests.  Where you do not wish your information to be processed in this way, candidates can withdraw consent at any time. 

Recruitment Activities

We’ve listed below various ways in which we may use and process your personal data for this purpose, where appropriate and in accordance with any local laws and requirements.  Please note that this list is not exhaustive.

  • Collecting your data from you and other sources, such as LinkedIn;
  • Storing your details (and updating them when necessary) on ICIMS, so that we can contact you in relation to recruitment;
  • Assessing data about you against vacancies which we think may be suitable for you;
  • Enabling you to submit your CV, apply online for jobs or to subscribe to alerts about jobs we think may be of interest to you;
  • Carrying out customer satisfaction surveys;
  • Verifying details you have provided, using third party resources (such as psychometric evaluations or skills tests), or to request information (such as references, qualifications and potentially any criminal convictions, to the extent that this is appropriate and in accordance with local laws)and;
  • Processing your data to enable us to send you targeted, relevant marketing materials or other communications which we think are likely to be of interest to you.

Equal opportunities monitoring and other sensitive personal data

We are committed to ensuring that our recruitment processes are aligned with our approach to equal opportunities.  Some of the data we may (in appropriate circumstances and in accordance with local law and requirements) collect about you comes under the umbrella of ‘diversity information’.  This could be information about your ethnic background, gender, disability, age, sexual orientation, religion or other similar beliefs, and/or social-economic background.  Where appropriate and in accordance with local laws and requirements, we will use this information on an anonymized basis to monitor our compliance with our equal opportunities policy.

This information is what is called ‘sensitive’ personal information and slightly stricter data protection rules apply to it.  We therefore need to obtain your explicit consent before we can use it. We’ll ask for your consent by offering you an opt-in.  This means that you have to explicitly and clearly tell us that you agree to us collecting and using this information.

We may collect other sensitive personal data about you, such as health-related information, religious affiliation, or details of any criminal convictions if this is appropriate in accordance with local laws and is required for a role that you are interested in applying for.  We will never do this without your explicit consent.


Although at present all our recruitment activities involve human-decision making during the process, we may in the future use fully automated technologies such as expert systems or machine learning to complete a candidate selection process from end-to-end, where appropriate and in accordance with any local laws and requirements. Where appropriate, we will seek your consent to carry out some or all of these activities.  If you do not provide consent to profiling, your application will continue to be reviewed manually for opportunities you apply for, but your profile will not be automatically considered for alternative roles.  This is likely to decrease the likelihood of us successfully finding you a new job.

Who do we share your personal data with?

Where appropriate and in accordance with local laws and requirements, we may share your personal data, in various ways and for various reasons, with the following categories of people:

  • Any of our group companies;
  • Individuals and organisations who hold information related to your reference or application to work with us, such as current, past or prospective employers, educators and examining bodies and employment and recruitment agencies;
  • References – third parties who we have retained to provide services such as reference, qualification and criminal convictions checks, to the extent that these checks are appropriate and in accordance with local laws.

How do we safeguard your personal data?

We are committed to taking all reasonable and appropriate steps to protect the personal information that we hold from misuse, loss, or unauthorised access.  We do this by having in place a range of appropriate technical and organisational measures.  These include measures to deal with any suspected data breach.

How long do we keep your personal data for?

  • We will delete your personal data from our systems after five years; unless the data falls under a category where retention is required for longer, such as legal requirement.

For those candidates whose services are provided via a third party company or other entity, ‘meaningful contact’ with you means meaningful contact with the company or entity which supplies your services. Where we are notified by such company or entity that it no longer has that relationship with you, we will retain your data for no longer than two years from that point or, if later, for the period of two years from the point we subsequently have meaningful contact directly with you.

How can you access, amend or take back the personal data that you have given to us?

If you require details on how to do this please contact [email protected]