Privacy Policy for Job Applicants

Extreme Reach, Inc.; Extreme Reach Talent, Inc; Extreme Reach Services Group, LLC; CMC Crew Services, Inc; and Extreme Reach Payroll Solutions, Inc.; Slate and Extreme Reach UK Limited (collectively “Extreme Reach”) are committed to respecting and protecting your privacy.

This Privacy Policy describes how we collect, use, disclose, store and otherwise process information when you apply for employment with Extreme Reach. For information related to other contexts or particular Services, please see the relevant policy posted on our Privacy website https://extremereach.com/privacy-policy/.

By submitting this information, you agree to have Extreme Reach process your personal data for the purpose of assessing your job application.

Information We Collect

In order to process job applications, Extreme Reach collects a variety of information, including work history, current and prior home address, date of birth, driver’s license and social security number.

Information we collect is retained for a period of four (4) years. If hired, information will be retained for seven (7) years after your last day of employment.

How Collected Data Is Used

Information collected during the job application process is used to evaluate your potential employment; no automated profiling is conducted as part of this process.

In the event of hiring, your information will also be used to establish your records in Extreme Reach systems.

United States applicant data is processed in the United States, Canadian applicant data is processed in Canada, United Kingdom and all other applicant data is processed in the United Kingdom.

Information Disclosed to Outside Parties

During the application process, information is shared with third party providers to verify background information.

How We Protect Your Information

Security of all information is of the utmost importance for Extreme Reach. We use technical and physical safeguards to protect the security of your personal information from unauthorized disclosure. We also make all attempts to ensure that only necessary people and third parties have access to personal and confidential information.

We require that our third party service providers (1) use confidential information only to perform their obligations, and (2) otherwise maintain the confidentiality of such information. These third party service providers and channel partners are expected to maintain privacy and security protections that are consistent with Extreme Reach’s privacy and information security policies.

GDPR

Extreme Reach is committed to protecting your data in compliance with the General Data Protection Regulations (GDPR). Extreme Reach is the processor or controller of data collected from our AdBridge platform. Our Data Privacy Officer can be contacted at privacy@extremereach.com.

Should you have any issues with how we handle your data, we request that you contact us first so that we can make every effort to address your concerns. You also have the right to lodge a complaint with a supervisory authority.

Your consent is the legal basis for collecting and processing your data.

International Transfers

We store and process data in the United States, Canada and the UK, depending on your location.

Privacy Shield Compliance

Extreme Reach complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States. Extreme Reach has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/.

In compliance with the Privacy Shield Principles, Extreme Reach commits to resolve complaints about our collection or use of your personal information. EU individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Extreme Reach at privacy@extremereach.com.

Extreme Reach has further committed to cooperate with the panel established by the EU data protection authorities (DPAs) with regard to unresolved Privacy Shield complaints concerning human resources data transferred from the EU in the context of the employment relationship.
Extreme Reach is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC) with respect to its use of your data. Under certain conditions, you may have the right to invoke binding arbitration regarding your privacy rights. If Extreme Reach wrongly transfers your private data to third parties, it may be liable to you for damages.

For more information on how we comply with Privacy Shield, see our Privacy Shield Supplemental Policy.

Data Retention

We retain data we collect from job applicants for recruiting and hiring. We may be obligated to retain data for contractual or regulatory reasons.

Changes to This Policy

Extreme Reach reserves the right to change, modify, add or remove portions of this Privacy Policy at any time without notice (except when legally obligated to provide notice). Any changes to this Privacy Policy will become effective when we post the revised version on our website.

Consent

By submitting your job application to us, you are providing your consent to process your data in the manners described herein. You have the right to withdraw or decline your consent at any time by contacting Extreme Reach (see Contact Information below). Please note that this does not affect the lawfulness of the processing based on consent before its withdrawal. Withdrawing consent will terminate your job application processing.

CCPA

If you are a California resident, California law may provide you with additional rights regarding our use of your personal information. To learn more about your California privacy rights, visit https://oag.ca.gov/privacy/privacy-laws. To further define how the California Consumer Privacy Act of 2018 (“CCPA”) impacts CPLLC, we have the following Supplemental Privacy Statement for California Consumers under CCPA.

INTRODUCTION

The California Consumer Privacy Act (“CCPA”) of 2018, as amended, imposes new privacy obligations on certain businesses that collect and use California residents’ personal information. This Supplemental Privacy Policy for California explains rights that California consumers may have under the California Consumer Privacy Act of 2018 (“CCPA”).

When we use the term “personal information” in this supplement, we are using that term as CCPA defines it, which CCPA generally defines “personal information” to mean information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household. However, personal information does not include publicly available, deidentified, or aggregate consumer information (which are all defined in CCPA). Notably, the definition of “personal information” also does not apply to the collection of personal information from job applicants, employees – whether you are our employee or any employee of the entity arranging access to our Services for you, business owners, directors, officers, medical staff, or contractors.

Where we act as a “business” under CCPA (meaning we determine the manner and reasons for why we process your personal information), we may be required to disclose the categories of personal information we collect, the sources where we obtain that information, the purposes for why we collect that information, and who we share that information – all of which depends on the specific Service.

For job applicants, contractors, and employees, we may obtain the following categories of personal information from you third party service providers: identifiers, Personal information categories listed in the California Customer Records statute (Cal. Civ. Code
§ 1798.80(e)), protected classification characteristics under California or federal law, professional or employment-related information, Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)). Information is collected for the purposes described in the How Collected Data Is Used section above. We use and share personal information as described in the Information Disclosed to Outside Parties section above. When we disclose personal information for a business purpose, we enter a contract that describes the purpose and requires the recipient to both keep that personal information confidential and not use it for any purpose except performing the contract.

YOUR CCPA PRIVACY RIGHTS

The CCPA provides California residents (consumers) with specific rights regarding their personal information. If you are a resident of California and are not a job applicant, employee, or employee of another company interacting with us in your job role, you have the right to request what the specific pieces and categories of personal information we collect, use, and disclose. You may also request that we delete your personal information. You may also request the sources of personal information collected about you and the purpose for collecting the personal information.

The CCPA also gives California residents the right to stop the “sale” of their personal information through a mechanism called “Do Not Sell My Personal Information.” To exercise any rights under CCPA, click here. Please note that your data rights under CCPA are limited to the extent they relate to information we are legally obligated to maintain and process, such as job applicant information.

Only you or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your personal information. You may also make a verifiable consumer request on behalf of your minor child. You may only make a verifiable consumer request for access or data portability twice within a 12-month period.

We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not:

  • Deny you goods or services;
  • Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties;
  • Provide you a different level or quality of goods or services;
  • Suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services.
Contact Information

You can contact privacy@extremereach.com or 1-800-324-5672 if you have questions about this privacy policy, or for requests related to your privacy rights.

Last updated: July 2020 to include Privacy Shield Compliance information