Privacy Policy

Effective Date: 1st June 2026  ·  enquiries@cainpartners.co

1. Introduction

This Privacy Policy explains how Cain Partners ("we", "us", "our") collects, uses, discloses, and protects personal information in the course of providing recruitment, talent sourcing, and related services.

We are committed to protecting your privacy and ensuring that all personal data is handled in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

By using our website or services, you agree to the practices described in this Policy.

2. Who We Are and What We Do

Cain Partners is an executive search specialist firm. We connect employers with candidates and provide hiring, search, and talent consulting services.

We act as:

  • Data Controller – when we collect and determine how personal data is used (e.g. candidate sourcing, client relationships, marketing).
  • Data Processor – when we process personal data on behalf of clients during recruitment engagements.

3. Information We Collect

We collect and process the following types of information:

A. Information you provide directly

  • Contact information (name, email address, phone number, address).
  • Professional details (CV, employment history, education, skills, references).
  • Identification information (where required for compliance checks).
  • Communications with us (emails, messages, interview feedback).

B. Information collected automatically

  • Device information (IP address, browser type, operating system).
  • Website usage data (pages visited, session duration, interactions).

C. Information from third parties

  • Professional networking platforms (e.g. LinkedIn).
  • Job boards and publicly available sources.
  • Referees and previous employers (where appropriate).
  • Clients in relation to job opportunities.

We do not knowingly collect personal data from individuals under 18 years of age.

4. How We Use Your Information

We use your personal data to:

  • Provide recruitment and talent matching services.
  • Assess your suitability for roles and present opportunities.
  • Communicate with you about job opportunities and career progression.
  • Manage client relationships and hiring processes.
  • Verify information and conduct reference checks (where applicable).
  • Improve our services and website functionality.
  • Comply with legal and regulatory obligations.

We may also use anonymised and aggregated data for internal analytics. This data cannot be used to identify individuals.

5. Legal Bases for Processing

We process personal data under the following legal bases:

  • Contractual necessity – to provide recruitment services and manage applications.
  • Legitimate interests – to match candidates with roles, communicate with clients and candidates, and improve our services.
  • Legal obligations – to comply with applicable laws and regulations.
  • Consent – where required, such as for marketing communications.

Where we rely on legitimate interests, we ensure that these do not override your rights and freedoms.

6. Data Sharing and Third Parties

We may share personal data with:

  • Clients (employers) for recruitment purposes.
  • Service providers (e.g. IT systems, CRM platforms, hosting providers).
  • Professional advisers (legal, accounting).
  • Background check providers (where applicable and lawful).

All third parties are required to respect the security of your personal data and process it in accordance with the law. We do not sell or rent personal data.

7. International Data Transfers

Where personal data is transferred outside the UK, we ensure appropriate safeguards are in place, including:

  • Transfers to countries deemed to provide adequate protection; or
  • Use of UK-approved Standard Contractual Clauses (SCCs).

8. Data Retention

We retain personal data only for as long as necessary:

  • Candidate data: up to 2 years from last meaningful contact.
  • Client data: up to 7 years for legal and business purposes.
  • Website and technical data: up to 12 months.

You may request deletion of your data at any time.

9. Data Security

We implement appropriate technical and organisational measures to protect personal data, including:

  • Secure data storage and encryption.
  • Access controls and authentication measures.
  • Regular system monitoring and staff training.

10. Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data.
  • Correct inaccurate or incomplete data.
  • Request deletion of your data.
  • Restrict processing of your data.
  • Data portability.
  • Object to processing.
  • Withdraw consent at any time.

To exercise your rights, contact: enquiries@cainpartners.co. We will respond within 30 days.

11. Cookies and Tracking

Our website uses cookies to improve user experience and analyse website performance. You can control cookies through your browser settings. A full Cookie Policy will be made available on our website.

12. Data Breaches

In the event of a data breach, we will:

  • Investigate and contain the breach promptly.
  • Notify the Information Commissioner's Office (ICO) where required.
  • Inform affected individuals where there is a high risk to their rights and freedoms.

13. Changes to this Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website with the effective date.

14. Contact Us

If you have any questions or concerns about this Privacy Policy or your data, please contact:

Cain Partners
Website: www.cainpartners.co
Email: enquiries@cainpartners.co

If you are not satisfied with our response, you may lodge a complaint with the Information Commissioner's Office (ICO) at www.ico.org.uk.