Introduction

We are a talent agency. People use our services to find and be found for business opportunities. Our privacy policy applies to everyone (hirer and worker) who uses our services.

 

Why do we collect and process your personal data?

We need to collect and process some of your personal data to carry out job seeking on your behalf and fulfil our obligation as an agent.

 

Who do we share your personal data with?

We share the professional identities of our managed talent with potential hirers (casting directors, production companies, ad agencies etc). This also occurs in reverse. We may also share some of your data with service providers such as hosting and technology suppliers. However we will never use your data for profiling purposes.

​

Do we need a lawful basis to collect and process your personal data?

Yes. All companies must have a legitimate reason for collecting and processing your data. GDPR refers to this as the “lawful basis for processing” and sets out six different types of lawful basis. In our case, the main lawful bases allowing us to collect and process your data are ‘contractual’ and ‘legitimate interest.’

​

Who has access to the personal data that we hold?

Only authorised staff have access to your data. Other parties, such as production companies, may have different procedures and safeguards in place when handling your data.

​

What staff training are we providing on data protection?

All our staff receive training to help them understand and implement the latest data protection rules and guidelines. Ongoing training and development is in place.

​

What IT security do we have in place to protect our clients’ personal data while it’s being stored, transferred, or used by us?

Our computers are password protected, which means only staff with the correct passwords can view and process client data this also applies to remote access.

 

How do we dispose of hardware and the storage media containing personal data?

We treat the disposal of all hardware and storage media with the utmost care, ensuring it is dealt with securely and responsibly. All printed documentation is destroyed responsibly to meet British standards.

​

What procedure are in place to detect data security breaches?

We have 24/7 hardware and software anti-virus and security system, which covers the computing equipment (All software including emails, passwords and internet use).

​

How long do we keep your data?

We retain your personal data while your management contract is still in place with us and then contact information only, for 5 years after contract termination. This is to ensure you can receive residual payments from past jobs.

Rights to access and control your personal data.

• Delete Data: You can ask us to erase or delete all or some of your personal data.

• Change or Correct Data: You can ask us to change, update or fix your data, particularly if it’s inaccurate.

• Right to Access: You can ask us for a copy of your personal data that will be provided in machine readable format.

 

How to contact us

If you have any questions regarding this Privacy Notice

HAT MANAGEMENT

Kemsing Walk

Off Tunbridge Sq, Off Liverpool ST

Salford

M5 4BS

You may also email us at info@hatactorsmanagement.com