Privacy Policy

We may collect and process personal information in the course of our business operations. This information will be handled securely and in accordance with data protection laws, whether it is stored on paper, electronically, or in other formats. We prioritize the lawful and ethical management of personal data to ensure trust and transparency with our stakeholders. We fully comply with the General Data Protection Regulation (GDPR) and are committed to protecting personal information in all our operations.

This policy covers the processing of personal data in both manual and electronic records related to our human resources activities, including responses to data breaches and the exercise of rights under the GDPR. It applies to job applicants, employees (current and former), apprentices, volunteers, students, workers, and self-employed contractors, referred to collectively as “relevant individuals.”DPR).

This policy applies to the processing of personal data in manual and electronic records kept by us in connection with our human resources function as described below. It also covers our response to any data breach and other rights under the GDPR. This policy applies to the personal data of job applicants, existing and former employees, apprentices, volunteers, placement students, workers and self-employed contractors. These are referred to in this policy as relevant individuals.

“Personal data” is information that relates to an identifiable person who can be directly or indirectly identified from that information, for example, a person’s name, identification number, location, online identifier. It can also include pseudonymised data.

“Special categories of personal data” is data which relates to an individual’s health, sex life, sexual orientation, race, ethnic origin, political opinion, religion, and trade union membership. It also includes genetic and biometric data (where used for ID purposes).

“Criminal offence data” is data which relates to an individual’s criminal convictions and offences.

“Data processing” is any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

In line with the General Data Protection Regulation (GDPR), we are committed to processing personal data in accordance with core principles. Specifically, we ensure that:

• Fair, Lawful, and Transparent Processing: Personal data is processed in a manner that is fair, lawful, and transparent to individuals.
• Purpose Limitation: Data is collected only for specific, legitimate purposes and not further processed in a manner incompatible with those purposes.
• Data Minimization: We collect only the data that is adequate, relevant, and necessary for the intended purpose.
• Accuracy: We ensure that personal data is accurate and up to date. Inaccurate data will be promptly corrected or deleted.
• Storage Limitation: Personal data is not retained longer than necessary for its intended purpose.
• Security: Personal data is processed with appropriate security measures, ensuring protection against unauthorized or unlawful processing, accidental loss, destruction, or damage.
• International Data Transfers: We adhere to GDPR procedures for the transfer of personal data across borders to ensure continued protection.

The Company may be required to disclose certain data/information to any person. The circumstances leading to such disclosures include:

• any employee benefits operated by third parties;
• disabled individuals - whether any reasonable adjustments are required to assist them at work;
• individuals’ health data - to comply with health and safety or occupational health obligations towards the employee;
• for Statutory Sick Pay purposes;
• HR management and administration - to consider how an individual’s health affects his or her ability to do their job;
• the smooth operation of any employee insurance policies or pension plans;
• to assist law enforcement or a relevant authority to prevent or detect crime or prosecute offenders or to assess or collect any tax or duty.

These kinds of disclosures will only be made when strictly necessary for the purpose.

Where we engage third parties to process data on our behalf, we will ensure, via a data processing agreement with the third party, that the third party takes such measures in order to maintain the Company’s commitment to protecting data.

The Company may be required to transfer personal data to a country/countries outside of the EEA. Transfers may take place because of trade and subsidiary relationships. Where this occurs, the following safeguards are adopted:

• In compliance with GDPR code of practice based on Article 29 Working

All data breaches will be recorded on our Data Breach Register. Where legally required, we will report a breach to the Information Commissioner within 72 hours of discovery. In addition, where legally required, we will inform the individual whose data was subject to breach.

More information on breach notification is available in our Breach Notification policy.

All proprietary images, graphics, and visual assets on this website are the property of Eagle Trans Group unless otherwise stated. These materials are protected under applicable copyright laws and may not be reused without prior written permission.

Some images may be sourced from free stock image libraries (e.g., Pexels, Unsplash, Pixabay, freepik) and are used under their respective licenses. Image rights remain with the original creators.

We may also use AI-generated visuals to illustrate concepts or brand messages. These are either owned by Eagle Trans Group or generated using commercially licensed tools for illustrative purposes only.