Careers_

Privacy Policy.

Privacy Policy

  1. OVERVIEW

1.1 This privacy policy makes it clear how we process and protect your personal data. This includes any information that you submit to our online recruitment software and any information gathered on this website.

1.2 By using this site you are agreeing to your data will be held, stored and processed according to the policy detailed below. We comply with the GDPR and as such your data is securely stored and only accessed by relevant and authorised personnel.

1.3 The purpose of the data collection and the type of data requested is decided by the Data Controller. In this instance the Data Controller is Momentum Instore .

1.4 The Data Controller uses a Data Processor in order to collect, store and securely transfer your data. In this instance your Data Processor is Talos 360 Basecamp, 4 Webster Court, Carina Park, Warrington, WA5 8WD. The Data Protection Officer for Talos 360 can be contacted at: info@talos360.co.uk

  1. DATA SECURITY

2.1 The technology that we use has been designed with your security in mind. Our Data Processor’s servers are based in the UK and they deploy both technological and operational security measures along with internal policies specifically implemented to protect your data.

  1. LEGAL BASIS

3.1 From the latest data protection regulations (GDPR) our legal basis for processing your data will be in the legitimate interest in using the information that you supply to us in order to process your job application and to provide you with information which may be of use.

3.2 The purpose of our data collection is to assess your suitability for the specific job role that you have applied for. We may also use this information to contact you about other similar job opportunities and may also statistically analyse your data.

3.3 We may also need to request and process your data if it is necessary for the performance of a contract or if we have a legal basis for doing so. This may include the data that you need to supply to us in order to satisfy the offer of a term of employment.

3.4 If we require your explicit consent to process any data as specified by GDPR then we will inform you of this consent requirement, and request your explicit “opt-in”, at the point of data entry.

  1. WHAT DATA DO WE COLLECT?

4.1 The personally identifiable information that we identify, store and process on this site is that which is voluntarily provided to us. This includes (but not limited to):

  • Your CV
  • Cover letters
  • Personal information supplied such as your name, email address & phone number
  • Any details you enter into any application form
  • Any answers to questions that correspond with your recruitment preferences
  • Any supporting information that you provide to expand your candidate profile
  1. YOUR DATA ACCESS RIGHTS

5.1 When it comes to your personal data you have the right to:

  • Rectify inaccurate or outdated information
  • Request to move your data (data portability)
  • Object to data processing
  • Withdraw your data consent at any time
  • Be forgotten
  • Ask for a copy of your data via a Subject Access Request (SAR)
  • Lodge a complaint with the UK’s Information Commissioner’s Office (ICO) or other relevant supervisory authority

5.2 If you think that there are any inaccuracies in your data then let us know and we will amend your records. We also provide reasonable access to our visitors for reviewing the data that you have provided to this website. In this instance please contact sar@talos360.co.uk with your request.

5.3 If you’d like to remove the data that you have supplied to us then you can do so by here and we’ll delete your records for you.

5.4 If you’re not happy with the manner in which your data has been processed you can submit a case to our internal complaints procedure by contacting dpo@talos360.co.uk. If you are not satisfied with the outcome of our investigation, you have the right to contact the ICO (http://www.ico.org.uk).

  1. SHARING DATA

6.1 The data that you submit to this site may be:

  • Made available to the Data Controller
  • Made available to the Data Processor
  • Used to communicate with you about your application
  • Used to communicate with you in regards to recruitment
  • Used to supply you with relevant (optional) job alerts
  • Added to a searchable candidate database
  • Analysed for our internal statistics to improve processes

6.2 Sometimes information may be processed on our behalf by relevant third parties; this includes but is not limited to: video interviewing companies, payroll software, and HR software.

6.3 We will not collect your information for unrelated purposes without first requesting your consent.

6.4 In some cases, we may be compelled or permitted by the law, an official authority or regulatory requirements to process your personal information without your consent or knowledge, even after you have exercised your right to withdrawal, to be forgotten, or objected to processing. If this happens, we will only process the limited personal data that we are required to do so under these specific requirements.

  1. LENGTH OF DATA STORAGE

7.1 If there is no activity on your candidate account for 6 months, it will be deactivated. You can also request to withdraw your details at anytime and thereafter your data will be fully anonymised for further protection.

  1. PRIVACY POLICY CHANGES

8.1 Provided that compliance is maintained in regards to the General Data Protection Regulation (EU) 2016/679, we reserve the right to amend and modify this privacy statement for any reason and at any time.

Let's Chat

Sales & Marketing
salesteam@momentuminstore.com
01625 569 146

Live Projects & General
instore@momentuminstore.com
01625 569 200

Recruitment
helen.wallace@momentuminstore.com
01625 569 151

Gender pay gap information.

Momentum Instore support the UK government’s leadership in gender equality, and the requirement for companies to publish their data.
We are committed to ensuring our people are treated equally at work, across all levels and locations. This includes making sure they have the same opportunities for recognition, reward and career development, irrespective of gender, age, race, religion, belief, sexual orientation or disability. After all, we wouldn’t be where we are without our brilliant diverse teams.

We’ve worked hard with our leadership teams to provide consistency and transparency within our pay decision-making process to ensure decisions are made based on market data and role performance and we are confident that we have equal pay.

As you’ll see from our results in this report, we do have a gender pay gap, however this gap is not a pay equality issue as we pay our employees and workers according to their role and not their gender. Our findings show that our gender pay gap is due to the structure of our organisation and the unequal distribution of men and women across the company. For example, like many companies, men occupy more of our senior manager roles with larger salaries and bonus potential. In addition to this, the majority of the people included in our calculations are intermittent workers whose pay is an hourly rate fixed by our clients (lowest paid roles) and occupied mostly by men. Understanding the gender pay gap drives us to do more and we are committed to improving the gender balance of our employees and workers.

We remain committed to attracting and retaining the very best talent to the business and ensuring gender is never a factor in decisions and will continue to have a culture that values the fantastic contribution that both men and women make to our business.
I confirm the gender pay gap data contained in this report for Momentum Instore is accurate as of the snapshot date 5 April 2018.

Rob Gleave
Chairman

Momentum Instore Ltd Gender Pay Statistics

Difference in Mean Pay
% of women who received a bonus

2018

-7.64%
-16.14%

Difference in Bonus Payout

% of men who received a bonus
% of women who received a bonus

2018

11.36%
24.79%

Quartile Ranges - % of employees according to quartile bands

Upper Quartile

% male
% female

2018

52%
48%

Upper Middle Quartile

% male
% female

2018

61%
39%

Lower Middle Quartile

% male
% female

2018

80%
20%

Lower Quartile

% male
% female

2018

78%
22%

All Momentum Instore

% male
% female

2018

68%
32%

Cookie policy.

Our website uses cookies, which are a standard part of most modern websites, to help provide you with the best experience we can.

Our cookies help us:

• Make our website work as you’d expect
• Save you having to login every time you visit the site
• Improve the speed/security of the site
• Allow you to share pages with social networks like LinkedIn and Twitter
• Continuously improve our website for you
• Make our marketing more efficient

We do not use cookies to:

• Collect any personally identifiable information (without your express permission)
• Collect any sensitive information (without your express permission)
• Pass data to advertising networks
• Pass personally identifiable data to third parties
• Pay sales commissions
You can learn more about all the cookies we use below

Granting us permission to use cookies

If the settings on your software that you are using to view this website (your browser) are adjusted to accept cookies we take this, and your continued use of our website, to mean that you give permission for these cookies to be used. Should you wish to remove or not use cookies from our site you can learn how to do this below. However doing so will likely mean that our site will not work as you would expect.

More about our cookies

Website Function Cookies
Our own cookies

We use cookies to make our website work including:

• Determining if you are logged in or not

There is no way to prevent these cookies being set other than to not use our site.

Social website cookies

So you can easily “Like” or share our content on the likes of Facebook and Twitter we have included sharing buttons on our site.
The privacy implications on this will vary from social network to social network and will be dependent on the privacy settings you have chosen on these networks.

Visitor statistics cookies

We use cookies to compile visitor statistics such as how many people have visited our website, what type of technology they are using (e.g. Mac or Windows which helps to identify when our site isn’t working as it should for particular technologies), how long they spend on the site, what page they look at etc. This helps us to continuously improve our website. These so called “analytics” programs also tell us if how people reached this site (e.g. from a search engine) and whether they have been here before, helping us to develop our services specifically for the people visiting our site.

We use:

• Google Analytics

Turning cookies off

You can usually switch cookies off by adjusting your browser settings to stop it from accepting cookies (Learn how here). Doing so will likely limit the functionality of our website though.

If your concerns around cookies relate to so called “spyware”, you may prefer to use anti-spyware software that deletes cookies considered to be invasive, rather than switching off cookies in your browser altogether.

Terms & conditions

Our cookies help us:

Momentum Instore Limited (referred to in this document as “we” or the “Company”) is committed to protecting the privacy and security of your personal information.

This privacy policy includes privacy notices and describes how we collect, use and store personal information about you, when you visit our website “https://www.momentuminstore.com”, in accordance with applicable data protection laws and the EU General Data Protection Regulation (EU 2016/679) (GDPR).

This privacy policy does not form part of any contract to provide or procure services.

The Company is a “data controller”. This means that we are responsible for deciding how we hold and use personal information about you.

It is important that you read this policy, together with any other privacy notice we may provide on specific occasions when we are collecting or processing personal information about you, so that you are aware of how and why we are using such information.

Contact details

The Company’s contact details are:

  • Momentum Instore Limited, Beechwood Court, Springwood Way, Tytherington, SK10 2XG.
  • 01625 569 200

(Registered in England under Company Number 2875057

Data privacy manager

The Data Privacy Manager’s role is to inform & advise on data protection and GDPR, monitor compliance within the organisation, cooperate & liaise with the ICO and be the point of contact for data subjects.

If you have any questions or queries regarding this policy please direct these to our Data Privacy Manager at GDPR@momentuminstore.com.

Changes to This Privacy Policy and your duty to inform us of changes

This Privacy Policy is effective as of 23/05/18 and is in accordance with the new EU ‘General Data Protection Regulations’ (GDPR). It will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after being posted on this page.

We reserve the right to update or change our Privacy Policy at any time and you should check this Privacy Policy periodically. Your continued use of the Service after we post any modifications to the Privacy Policy on this page will constitute your acknowledgment of the modifications and your consent to abide and be bound by the modified Privacy Policy.

If we make any material changes to this Privacy Policy, we will notify you either through the email address you have provided us, or by placing a prominent notice on our website.

The Data we Collect About You

While browsing our website we don’t capture any personally identifiable information that can be used to contact or identify you unless you:

  • Complete the form on the ‘Contact Us’ page.
  • Choose to download any of our eBooks/reports by completing the associated ‘eBook download’ form.

All form data is securely stored on a dedicated page provided by our website developer, Optiva. From there your data can be accessed and downloaded by our sales & marketing team and stored in our CRM software, which may then be used for marketing purposes. In completing either of the forms you will have been asked to ‘consent’ to your data being used for this purpose. Personally identifiable information may include, but is not limited to your name, company & email address.

We may collect, use, store and transfer different kinds of personal data about you which we have grouped together follows:

Data Type Description Website
Identity Data Includes first name, last name, username or similar identifier, title, gender & social media links.
Contact Data Includes company billing address, delivery/store/branch address(s), email address and telephone numbers.
Financial Data Includes company bank account details and spend.
Transaction Data Includes details about payments to and from you or your organisation or business and other details of products and services you or your organisation or business have purchased from us (clients), or we have purchased from you (suppliers).
Technical Data Includes your login data (time, date, number of logins etc.) you use to access our systems.
Profile Data Includes your system username and password, purchases or orders made by you, your interests, preferences, feedback and survey responses.
Usage Data Includes information about how you use our website, products and services (clients) and how we use your products and services (suppliers).
Marketing and Communications Data Includes your preferences in receiving marketing from us and your communication preferences.
We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.

Processing purposes and legal bases

Where you have completed one of the two forms on our website you will have been asked to ‘consent’ to your data being used for marketing purposes. You have the option to ‘opt out’ at any point by contacting us and asking for your personal data records to be deleted.
Purpose / Activity Type of data Lawful basis for processing, including basis of legitimate interest
CRM System/Database: To keep you informed of our services for business-to business marketing in relation to prospects where we aren’t currently engaged in a contract with you or your company and for existing clients who may be interested in additional services (a) Identity (b) Contact (c) Marketing and Communications Data Necessary for our legitimate interests (to promote our products/services and grow our business) Where you are a sole trader, it is necessary to perform our contract with you Note that where we are required by applicable data protection laws to obtain your consent to contact you for marketing, we will also obtain such consent from you in the manner required by data such protection laws.

Cookies & Location Data

Cookies are files with small amount of data, which may include an anonymous unique identifier. Cookies are sent to your web browser from a web server and stored on your computers device’s hard drive.

Our website uses only ‘Strictly necessary cookies’ and ‘Google analytics’ “cookies” for statistical purposes. On visiting our website for the first time a popup will appear asking you to accept our ‘cookie policy’. No personal identifiable information is associated with this cookie data which includes data such as number of unique visitors, time of visit, pages visited, device type used, referral source, country of origin. For further details see Google’s privacy policy and our own cookie policy on our website.

Change of purpose

We will only use your personal information for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If we need to use your personal information for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.

Please note that we may process your personal information without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law.

Access to data

In order for the Company to carry out the points listed above (under “How we use your personal data”), some of your information will be shared internally on a need to know basis. This includes with members of serval different departments including:

  • Sales & Marketing
  • Installation and Merchandising project teams
  • IT
  • Finance

Third parties

We will share your personal information with third parties where required by law, where it is necessary to administer the working relationship with you or where we have another legitimate interest in doing so.
We also share your data with third parties that process data on our behalf, in connection with outsourced system provision. For example, your personal data may be shared with:

Optiva – Our website developer and hosting provider.
Governmental and regulatory bodies such as HMRC & the Information Commissioners Office.
Other organisations and businesses who provide services to us such as backup and server hosting providers, IT software and maintenance providers and suppliers of other back office functions.
Other entities in our group as part of our regular reporting activities on company performance, in the context of a business reorganisation or group restructuring exercise or possible sale or restructuring of the business (but will only do so under strict conditions of confidentiality and as permitted by GDPR)
We require all third parties to respect the security of your data and to treat it in accordance with the law.

Third parties will only process your personal information on our instructions and where they have agreed to treat the information confidentially and to keep it secure.

We will not transfer your data to countries outside the European Economic Area without your further explicit consent.

Data Security & Data Breach Notification

We treat the security of your data with the utmost importance. We have internal policies and controls in place to ensure that your data is not lost, accidentally destroyed, misused or disclosed, and is not accessed in an unauthorized way. The ability to access data is restricted to employees, agents, contractors and other third parties who have a business need to know. Some of the key measures in place to ensure this include:

  • The ability to access data is restricted on a need to know basis. Active Directory (“AD”) security groups are used to permission sensitive server data and Access Control Groups are used on our extranets.
  • SSL certificates are used on all our sites as standard, to ensure data in transit is encrypted
  • Sophos End Point Protection software protects all employee PCs\Laptops
  • Server based data sits behind a WatchGuard M370 firewall with IDP & an active subscription
  • “AD” policy is that all user account lockout automatically after 3 failed password attempts. Accounts can only be unlocked by a member of the IT team. Network passwords have to be at least 8 characters in length and contain at least one uppercase character and a number. These expire every 30 days.
  • All laptops and mobile devices are encrypted and the use of non-encrypted removable storage media is prohibited (via a Sophos Device Control policy)
  • A clean desk policy is in place

Where we engage third parties to process personal data on its behalf, they do so on the basis of written instructions, are under a duty of confidentiality and are obliged to implement appropriate technical and organisational measures to ensure the security of data.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

Data Retention Periods

We will only retain your personal information for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. Details of retention periods for different aspects of your personal information are available in our retention policy which information is available by request from our Data Privacy Manager (please send an email to gdpr@momentuminstore.com). To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

In some circumstances, we may anonymise your personal information so that it can no longer be associated with you, in which case we may use such information without further notice to you.

Once no longer have dealings with you (because for example you are no longer a client or supplier), we will retain and securely destroy your personal information in accordance with our data retention policy or applicable laws and regulations.
The Company may need to keep certain information to respond to and defend against legal claims for up to 6 years. We will review your personal data regularly during any retention period to ensure that it is still needed, is accurate and not excessive. Your personal information will be kept securely and in any event destroyed after 6 years (unless required by law to be maintained for longer).

Your Legal Rights

As a data subject, under certain circumstances, you have a number of rights under data protection laws in relation to your personal data:

  • Request access – You can access and obtain a copy of your data on request (commonly known as a “data subject access request”). This enables you to receive a copy of the personal information we hold about you and to check that we are lawfully processing it.
  • Correction – You can require us to change incorrect or incomplete data we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.
  • Erasure – You can require us to delete or stop processing your personal data, for example where the data is no longer necessary for the purposes of processing. You also have the right to ask us to delete or remove your personal information where you have exercised your right to object to processing (see below).
  • Object to processing – You can object to the processing of your personal data where the organisation is relying on its legitimate interests (or those of a Third Party) as the legal ground for processing;
  • Request the restriction of processing – You can request the restriction of processing. This enables you to ask us to suspend the processing of personal information about you, for example if you want us to establish its accuracy or the reason for processing it;
  • Transfer request – You can request the transfer of your personal information to another party;

DATA SUBJECT ACCESS REQUESTS

All data subject access requests from individuals to view their data being held by Momentum Instore should be addressed to GDPR@momentuminstore.com. The Company will firstly ask you to complete a Subject Data Access Request form for the purposes of properly verifying the identity of the individual making the request, ensuring it is lawful for us to provide the individual with the requested information and to understand specifically what data is being requested. The Company will then supply the electronic information requested within 1 month from the date of request for standard information requests. More complex information requests may take up to 3 months.

If you want to review, verify, correct or request erasure of your personal information, object to the processing of your personal data, or request that we transfer a copy of your personal information to another party, please contact the Data Protection Officer in writing at GDPR@momentuminstore.com.

RIGHT TO BE FORGOTTON

The Company recognises an individual’s “Right to be forgotten”, and such requests should be sent to GDPR@momentuminstore.com.

RIGHT TO COMPLAIN

You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.

NO FEE USUALLY REQUIRED

You will not have to pay a fee to access your personal information (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.

RIGHT TO WITHDRAW CONSENT

In the circumstances where you may have provided your consent to the collection, processing and transfer of your personal information for a specific purpose, you have the right to withdraw your consent for that specific processing at any time. To withdraw your consent, please contact the Data Protection Officer at GDPR@momentuminstore.com. Once we have received notification that you have withdrawn your consent, we will no longer process your information for the purpose or purposes you originally agreed to, unless we have another legitimate basis for doing so in law.

Glossary / Terms

GDPR – General Data Protection Regulation is a legal framework that sets guidelines for the collection and processing of personal information of individuals within the European Union (EU). … GDPR is effective across the EU on May 25, 2018.

Data Controller – a person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any personal data are, or are to be, processed.

Data Subjects – means an individual who is the subject of personal data. In other words, the data subject is the individual whom particular personal data is about. The Act does not count as a data subject an individual who has died or who cannot be identified or distinguished from others.

Lawful bases for data processing – The lawful bases we use for processing data, as set out in Article 6 of the GDPR are:

  • Consent: the data subject has given clear consent for you to process their personal data for a specific purpose.
  • Contract: the processing is necessary for a contract we have with the individual, or because they have asked you to take specific steps before entering into a contract.
  • Legitimate interests: the processing is necessary for your legitimate interests of the legitimate interests of one of a 3rd party (unless there is a good reason to protect the individual’s personal data which overrides those legitimate interests).
  • Legal obligation: the processing is necessary to comply with the controller’s legal obligations.
  • Public interest: Where processing is needed in the public interest or for official purposes.

ICO – Information Commissioner’s Office (https://ico.org.uk). The UK’s independent authority set up to uphold information rights in the public interest, promoting openness by public bodies and data privacy for individuals.

Prospect (Sales Lead) – Potential customer or client qualified on the basis or their buying authority, financial capacity, and willingness to buy. The personal data of multiple data subjects may be held by us relating to a single customer or client.

Client – Customer or client for whom we are contractually engaged to provide and deliver a service(s) or have done work for in the past and are likely to do work for in the future. Multiple data subjects may be held by us relating to a single active customer or client.

Supplier (Vendor) – A person or company that provides goods &/or services to Momentum Instore. The personal data of multiple data subjects may be held by us relating to a single supplier.

Insite – Our Client reporting and Estate management portal, hosted and developed by or 3rd party partner, Emphasys.

ERP – Our Enterprise resource planning tool delivering integrated core business processes.

CRM – Our Customer relationship management tool used to store and analyse prospect and client data subjects and relationships.

AD – Active Directory (“AD”) is a Microsoft technology that allows networks administrators to manage users, computers and other devices on a network. It is a primary feature of Windows Server, an operating system that runs both local and Internet-based servers.