Privacy
Privacy Notice
Last updated: August 2025
Oscar Thomas Group (“we”, “our”, “us”) is a professional recruitment and contractor services provider. We are committed to protecting your privacy and handling your personal information in compliance with applicable privacy and data protection laws, including the Australian Privacy Act 1988 (Cth) and, where applicable, the EU/UK General Data Protection Regulation (GDPR).
Information We Collect
We may collect the following types of personal information:
- Contact details: name, phone number, email address, residential or mailing address
- Professional details: CV/resume, employment history, education history, qualifications, references
- Identification documents: passport, driver’s licence, visa, or other right-to-work evidence
- Date of birth/age: where required for identity verification
- Payroll and tax details: bank account, tax file number, superannuation, managed via our payroll partner (People2.0)
- Background check information: police or criminal record checks (only where required by law or client request)
- Public professional information: data from platforms such as SEEK, LinkedIn, or company websites
We do not collect special categories of data (e.g. racial/ethnic origin, religious beliefs, health or biometric data) unless required for legal or contractual reasons.
How We Collect Your Information
We use personal information for:
- Recruitment and placement into roles with our clients (including Accenture)
- Assessing suitability for roles and verifying qualifications
- Payroll and contractor management (via People2.0)
- Legal and regulatory compliance (e.g. right-to-work checks)
- Communication with you about opportunities, placements, and compliance requirements
We will never sell your data or use it for unrelated marketing purposes.
Legal Basis for Processing (GDPR/UK GDPR)
Where GDPR applies, we rely on the following legal bases:
- Consent: before submitting your CV to clients or conducting background checks
- Contractual necessity: to process data required for placement, payroll, or contractor management
- Legitimate interests: for core recruitment activities such as sourcing, candidate management, and communication
You may withdraw your consent at any time by contacting us (see Section 9).
Sharing Your Information
We may share your personal information with:
- Clients (e.g. Accenture) for role consideration and placement
- Payroll/compliance provider: People2.0
- Applicant tracking system: JobAdder
- IT service providers: Microsoft 365
- Background check providers: only where required by law or client request
All third parties are bound by data protection obligations and may only use the data for the agreed purpose.
International Transfers
- While we take care to ensure the information on this site is accurate and up-to-date, we make no warranties or guarantees as to its completeness or reliability.
- We are not liable for any loss or damage arising from reliance on information provided on this site.
Governing Law
Some service providers (e.g. Microsoft, JobAdder, People2.0) may process data outside Australia. Where such transfers involve jurisdictions without an EU adequacy decision, safeguards such as Standard Contractual Clauses (SCCs) are used.
Data Retention
We retain personal information only for as long as necessary to provide services, comply with legal/contractual obligations, or until you request deletion. When data is no longer required, it is securely deleted or anonymised.
Your Rights
Depending on your jurisdiction, you may have the right to:
- Access your data
- Request correction or deletion
- Withdraw consent at any time
- Request portability of your data
- Restrict or object to certain processing
- Opt out of direct communications
We will respond to all verified requests within the legally required timeframe (usually 30 days).
Cookies and Tracking
Our website may use cookies or similar technologies to improve user experience. Only essential cookies are used without consent. We are implementing a cookie banner to allow visitors to opt-in/out of non-essential cookies in line with GDPR/ePrivacy requirements.
Data Security
We implement technical and organisational measures to protect personal data, including:
- Access controls and authentication
- Secure storage in trusted third-party systems (Microsoft 365, JobAdder, People2.0)
- Encryption of data in transit and at rest where applicable
- Staff confidentiality obligations and privacy training
Data Breaches
In the event of a data breach, we maintain an incident response process, including logging, investigation, containment, and notification to affected parties and regulators (where required by law).
Contact Us
For any questions, or to exercise your rights, please contact:
Oscar Thomas Group
Email: [insert email address]
Phone: [insert phone number]
Website: www.oscarthomasgroup.com.au
Complaints
- Australia: You may contact the Office of the Australian Information Commissioner (OAIC) if you are unsatisfied with our response.
- EEA/UK: You may contact your local Data Protection Authority.