Privacy Policy
Effective Date: October 01, 2025
This Privacy Policy sets out the basis on which iForce Connect Ltd collects, uses, stores, shares, and otherwise processes personal data in connection with our website and related services.
This Privacy Policy forms part of and is governed by our Terms of Service. By accessing or using the Services, or by submitting Personal Data to us, you agree to this Privacy Policy.
1. Personal Data Collected and Processed
We collect Personal Data that you provide directly, that is collected automatically through your use of the Services, or that is obtained from third-party sources.
1.1. Personal Data Provided by You
| Source | Categories of Personal Data |
|---|---|
| Client Inquiry Form | Full name, email address, inquiry content, and optional scheduling preferences. |
| Talent Application Form | Full name, email address, phone number, country of residence, resume, and optional scheduling preferences. |
| Communication Data | Information provided in correspondence, including emails, messages, and other communications. |
| Consent Records | Consent to data sharing, representation, marketing, or processing of sensitive data where applicable. |
| Sensitive Data | Special categories such as background checks or immigration/visa status, processed only when required by law and with explicit consent. |
1.2. Personal Data Collected Automatically
| Type | Description |
|---|---|
| Usage Data | Site usage patterns, session duration, and interaction logs. |
| Log and Device Data | IP address, browser type, operating system, device identifiers, and referral URLs. |
| Location Data | Approximate geolocation derived from IP address or device/browser data. |
| Cookies and Technologies | Session and persistent cookies, web beacons, and similar technologies; non-essential cookies are used only with consent. |
Browser Cookie Help Pages
1.3. Personal Data Received from Third Parties
| Source | Categories of Personal Data |
|---|---|
| Calendar Tool Providers | Name and email address. |
| Analytics Providers | Aggregated usage data, device statistics, and interaction metrics. |
| Clients and Business Partners | Evaluations, candidate feedback, and confirmation of interest. |
| Assessment and Screening Providers | Evaluation responses, test results, identity verification, and background screening data where permitted. |
| Public Sources | Professional and contact data available from lawful public sources. |
The Services are not intended for persons under 18. If we become aware that a minor's data has been collected without proper consent, we will promptly delete it.
2. Legal Basis and Use of Personal Data
2.1. Legal Grounds for Processing
| Purpose of Processing | Categories of Personal Data | Legal Basis |
|---|---|---|
| Respond to Client Inquiries | Name, email, inquiry content, scheduling preferences | Contractual necessity; legitimate interest |
| Process Talent Applications | Name, email, phone, country, resume, scheduling preferences | Consent; contractual necessity |
| Share Talent Data with Clients | Contact details, resume, professional qualifications, assessment outcomes | Consent |
| Share Client Data with Talents | Project details and relevant professional context | Legitimate interest; consent |
| Schedule Calls | Name, email, submitted time slots | Legitimate interest |
| User Communications | Name, email, communication content | Legitimate interest; contractual necessity |
| Service Improvement | Usage, log, device, and cookie data | Legitimate interest |
| Legal Compliance | Any data as required by law | Legal obligation |
| Marketing Communications | Email and communication preferences | Consent (with opt-out rights) |
2.2. Main Processing Purposes
- Process and respond to client inquiries.
- Evaluate talent applications and verify qualifications.
- Represent talent to clients where consent is provided.
- Operate, maintain, and improve the Website and Services.
- Send operational, administrative, and security communications.
- Comply with legal and regulatory obligations.
- Conduct analytics, internal governance, and audit activities.
- Send marketing communications where permitted and consented.
We may also evaluate Talent suitability for additional contractor opportunities aligned with their background and skills unless an objection is raised.
3. Automated Decision-Making
We do not perform automated decision-making, including profiling, that produces legal or similarly significant effects. Fraud and risk checks are handled manually, though third-party providers may apply their own automated processes under their own policies.
4. Sharing of Personal Data
We may share Personal Data with clients, talents, technical providers, assessment platforms, automation/matching tools, professional advisors, regulatory authorities, and in business transaction contexts, where lawful and appropriate safeguards are in place.
4.2. Consent Scopes
- Talents: consent to representation, data sharing with clients and assessment tools, and processing of sensitive data where required and lawful.
- Clients: consent to communication and internal use of submitted information to assess needs and facilitate engagement.
- Limited project details may be disclosed to selected talents when necessary to evaluate fit and availability.
Cross-border transfers may occur. Where required, we apply safeguards such as Standard Contractual Clauses or equivalent legal mechanisms.
5. Third-Party Services
The Services may integrate third-party tools and link to external websites. These are governed by their own terms and privacy policies, and we are not responsible for their content, privacy, or security practices.
6. Security Measures
We implement technical, organizational, and legal measures proportionate to risk, including encryption, access controls, secure storage, backups, periodic assessments, and staff training.
- Encryption in transit and at rest where applicable.
- Access controls and least-privilege practices.
- Secure environments, backups, and resilience controls.
- Periodic vulnerability assessments and security reviews.
- Data protection and cybersecurity awareness training.
No online system is absolutely secure. In case of a qualifying breach, we will notify relevant authorities and affected users as required by applicable law.
7. User Rights
7.1. Rights You May Have
| Right | Description |
|---|---|
| Right to Access | Request confirmation and access to your Personal Data and related processing information. |
| Right to Rectification | Request correction of inaccurate or incomplete data. |
| Right to Erasure | Request deletion where lawful grounds apply. |
| Right to Restriction | Request restricted processing in specific situations. |
| Right to Data Portability | Request data in a structured, commonly used format where applicable. |
| Right to Object | Object to processing based on legitimate interests, including direct marketing. |
| Right to Withdraw Consent | Withdraw consent at any time without affecting prior lawful processing. |
To exercise rights, contact info@iforce.uk. We may request identity verification and will respond within statutory time limits.
8. Data Retention
We retain Personal Data only as long as needed for the purposes in this policy, legal obligations, or dispute resolution.
- Client inquiry data: typically up to 12 months from submission, unless engagement requires longer.
- Talent application data: typically up to 12 months or until consent is withdrawn, subject to lawful exceptions.
- Communication data: typically up to 12 months from last interaction, unless legal obligations require longer.
- Automatically collected data: typically up to 24 months unless anonymized earlier.
- Sensitive data: retained only as necessary for specific placement/compliance purposes.
- Legal/regulatory records: retained for periods required by law.
After retention periods, data is securely deleted or anonymized. Anonymized data may be retained for analytics and research purposes.
9. Direct Marketing and Opt-Out Options
We may send marketing communications where permitted by law and based on consent or lawful basis. You may opt out anytime via unsubscribe links or by contacting info@iforce.uk.
Opting out of marketing does not prevent operational or legally required communications.
10. Special Jurisdiction-Specific Disclosures
10.1. EU and UK Residents
For EEA/UK users, we comply with EU GDPR and UK GDPR, including lawful transfer safeguards and required processing records.
10.2. California Residents (CCPA/CPRA)
- Right to know categories and specific personal information collected, used, shared, or disclosed.
- Right to delete, subject to legal and operational exceptions.
- Right to opt out of sale/sharing for cross-context behavioral advertising where applicable.
- Right to correct inaccurate data.
- Right to limit use/disclosure of sensitive personal information.
- Right to non-discrimination for exercising privacy rights.
10.3. Nevada Residents
Nevada residents may request information regarding sale opt-out rights under Nevada law. We do not sell covered personal information for monetary consideration.
10.4. Australia
- Right to anonymity or pseudonymity where practicable.
- Right to complain to the OAIC regarding privacy concerns.
11. Miscellaneous Provisions
We may amend this policy to reflect legal, regulatory, or operational changes. Material updates will be communicated appropriately and may require renewed consent where required by law.
If any part of this policy is invalid or unenforceable, the remainder remains in full force. The English version prevails in case of translation conflicts.
This Privacy Policy is governed by the laws of the United Kingdom, to the extent permitted by applicable data protection law.
12. Contact Information
For questions, concerns, or rights requests related to this Privacy Policy, contact:
iForce Connect Ltd
124 City Road, London, United Kingdom, EC1V 2NX
Email: info@iforce.uk