This section explains when and why we share your data with third party organisations for BU and sometimes the third party’s own purposes. Unless an opt–out is in place, we will disclose limited staff data to a variety of recipients including:

  • our employees, agencies and contractors where there is a legitimate reason for their receiving the information (including service providers such as our external IT support providers, our insurers and external legal and financial advisers)
  • current, past or potential employers of our staff (to provide or obtain references with your consent)
  • reference requests from letting agents, banks, mortgage companies (to provide references with your consent)
  • professional and regulatory bodies (e.g. NMC, HCPC, BPS, SRA, BSB, ACCA,) in relation to the confirmation of conduct including complaints, job description and information provided as part of the recruitment process
  • government departments and agencies where we have a statutory obligation or other legal basis to provide information (e.g. Her Majesty's Revenue and Customs (HMRC), the Higher Education Funding Council for England (HEFCE), the Higher Education Statistics Agency (HESA), the Home Office (in connection with UK visas and immigration))
  • the Disclosure and Barring Service (DBS) where we require a DBS check for certain roles
  • third parties who work with us to provide staff support services (e.g. coaching and mentoring and occupational health services)
  • third parties who are contracted to provide out–of–hours IT services for us
  • other higher education providers or employers where the member of staff is taking part in an exchange programme or other collaboration as part of their employment
  • external organisations including funders and third party clients (for example, where our member of staff is named as part of a research application for external funding or is to be involved in providing consultancy services to an external organisation)
  • crime prevention or detection agencies (e.g. the police, security organisations, Department for Works and Pensions and local authorities)
  • pension providers (including, TPS, NHS, USS, LGPS)
  • relatives/next of kin (but only where we have consent from the member of staff or there is a legitimate reason for the disclosure)
  • healthcare, social and welfare organisations
  • representatives of a current, former or potential member of staff (but only where we have consent from the member of staff or there is a legitimate basis for the disclosure)
  • internal and external auditors
  • debt collection and tracing agencies
  • courts and tribunals
  • local and central government
  • trade union and staff associations (where information is already in the public domain or we have consent from the member of staff)
  • survey and research organisations, for example the annual staff survey
  • publications, press and the media.

Privacy Notice Contents

  1. Introduction

  2. When and how we collect your data

  3. How we hold your data

  4. How and why we process your data for BU purposes

  5. Sharing your data with third parties

  6. Transfer of your data outside the European Economic Area (EEA)

  7. Retention: how long will we keep your data for?

  8. Your rights as a data subject and how to exercise them