Website privacy policy

This is the RPC Tyche Website privacy policy

This website is provided by RPC Tyche LLP, a limited liability partnership, registered in England and Wales with registered number OC398435, whose registered office is at 30th Floor, The Leadenhall Building, Leadenhall Street, London, England, EC3V 4AB. It is a body corporate, which has members whom we refer to as "partners". A list of members' names is available for inspection at the registered office.

Your information will be held by RPC Tyche LLP. The RPC Tyche Businesses are:

- RPC TYCHE LLP (a limited liability partnership incorporated and registered in England and Wales with registered number OC398435) and whose registered office is at 30th Floor, The Leadenhall Building, 122 Leadenhall Street, London, EC3V 4AB. RPCT offers actuarial and general management consultancy services and software.

- RPC FRANCE is a société par actions simplifiée, incorporated under the laws of France under company number 819 637 364. Its registered office is 21 Boulevard Haussmann – 75009 Paris. RPC France provides management and actuarial consultancy services. RPC France is owned by RPCT.

- RPC CONSULTING (US) LLC is a State of Delaware limited liability company, incorporated under the laws of Delaware with Employer identification number EIN - 38-4118842 and with principal place of business at 200 S.Wacker, Suite 3100, Chicago, IL 60606, USA.


RPC Tyche LLP (ICO registration ZA568408) herein referred to as “RPC Tyche”/“we”/“us”/“our” is therefore the data controller responsible for processing the personal data you provide to us.

RPC Tyche is committed to managing personal data securely and effectively. We will only keep the personal data required to undertake our business processes and will only share or transfer the data you provide us for the purposes outlined below. We will always provide you with the ability to opt-out of electronic direct marketing and provide options to select which news and information you receive.


Our data protection policy and procedures have been developed in line with the requirements of the 1995 European Union Data Protection Directive (Directive 95/46/EC) and the General Data Protection Regulation and applicable national law.  


What information do we collect and from whom?

We collect and process personal data about you when you use our website, register an interest in an event, or request that we contact you voluntarily. The personal data we process includes:

- your name;

- your email address;

- your IP address and information related to the browser or device you use to access our website and other analytics data;

- your username and password when accessing restricted website content;

- any other information you may provide.

Additionally, if you choose to contact us or register for an event we may also collect:

- your phone number, organisation and your job title.

How do we use this information and what is the legal basis for this use?

We process the personal data listed in paragraph 1 above for the following purposes:


- we may use information you provide to personalise (i) our communications to you; (ii) our website; and (iii) products or services for you, in accordance with our legitimate interests;

- to monitor use of our websites, communications and online services and we may use your information to help us check, improve, promote and protect our products, content, services and websites, both online and offline, in accordance with our legitimate interests;

- we may use your information to invite you to take part in market research, surveys, or promotions where you have consented to us doing so.

- to contact you if we change our products and services or terms or if we need to give you notice of those terms;

- to comply with applicable law and regulation and for the prevention of fraud;

- to manage risk for RPC Tyche;

- to respond to any enquiries or complaints we may receive from you, and/or in accordance with our legitimate interests including to investigate any complaints received from you or from others, about our website or our services;

We may also send you direct marketing in relation to our relevant products and services or other products and services provided by us. We will always provide the ability to opt-out of electronic direct marketing and to select your preferences for receiving news and information. You will be able to continue to opt-out of electronic direct marketing at any time by following the instructions in the relevant communication.


With whom and where will we share your personal data?

We do not share, sell or distribute personal data to or with third parties unless: (i) the transfer of your data to third parties is strictly necessary for the performance of the Purposes; (ii) you have consented to this; or (iii) this is required to enforce or apply our website terms and conditions or other agreements, or to protect the rights, property, or safety of RPC Tyche, our clients or others (this includes exchanging information with other companies and organisations for fraud protection and credit risk reduction).

We may disclose, transfer, sell or assign any of the information described above, including personally identifiable information, to third parties, as a result of or in preparation for the sale, merger, consolidation, change in control, transfer of substantial assets, re-organisation or liquidation of RPC Tyche and you consent to such disclosure, transfer, sale or assignment.


How long will you keep my personal data?

We will not keep your personal information for any purpose(s) for longer than is necessary and we will only retain the relevant personal information that is necessary in relation to the purpose. We are also required to retain certain information by law or if it is reasonably necessary to meet regulatory requirements, resolve disputes, prevent fraud and abuse, or enforce our terms and conditions.

We will retain your data until you opt-out of receiving electronic direct marketing or for two years from the date of your last consent to receive electronic marketing.


We may retain your data for a short time beyond the specified retention period, to allow for information to be reviewed and any disposal to take place.


Where is my data stored?

The personal data that we collect from you may be stored on a mix of RPC Tyche and various cloud provider platforms and may be transferred to, and stored outside the European Economic Area ("EEA"). It may also be processed by staff operating outside of the EEA who works for us , one of the RPC Businesses or for one of our suppliers. Where we do so, the third country's data protection laws will have been approved as adequate by the European Commission or other applicable safeguards are in place.


Where such transfers occur, we ensure the confidentiality and protection of all data is preserved through compliance with legal requirements and the current Data Protection legislation. This is managed by all RPC Businesses , including those outside of the EEA by entering into Data Transfer Agreements with each other, which all contain the model clause agreements approved by the relevant regulatory authority. Data encryption, integrity and confidentiality are enforced by following best practice. RPC Tyche also ensures that cryptographic controls are implemented following industry best practice, through the use of VPN tunnels, TLS and by conducting regular testing.


How is my data protected?

We endeavour to protect the security of your personal information. We use current industry standard technology to maintain the confidentiality and accuracy of the information you provide to us via the website. We also have security measures in place in respect of our physical facilities to protect against loss, misuse or unauthorised alteration of the information which you provide to us.

As you may be aware, no data transmission over the internet can be entirely secure. As a result, while we will always use reasonable endeavours to protect your personal information, we cannot guarantee that any information you submit to us will be free from unauthorised third party use or intrusion. Therefore, we cannot guarantee the security of your personal information nor the use of the website and accordingly we do not accept any responsibility for any damage or loss caused as a result.

We cannot guarantee that the website is free from viruses or malicious codes and accordingly we do not accept any responsibility for any damage or loss caused by any such viruses or codes. You agree that it is your responsibility to satisfy yourself that your own information technology/equipment used to access the website is protected against such viruses and/or codes.

The website may contain links to other websites. Please be aware that we are not responsible for the practices of such other websites. When you leave the website you should ensure that you read the privacy policies of websites you visit.


What are my rights in relation to my personal data?

You have the right to ask us not to process the personal data you provide for direct marketing purposes. You can exercise your right to prevent such processing by clicking the unsubscribe button on any communication we have sent to you or by contacting us.

Where you have consented to us using your personal data, you can withdraw that consent at any time.

If the information we hold about you is inaccurate or incomplete, you can notify us and ask us to correct or supplement it.


You also have the right, with some exceptions, to ask us to provide a copy of any personal data we hold about you.


Where you have provided your data to us and it is processed by automated means, you may be able to request that we provide it to you in a structured, machine readable format.


If you have a complaint about how we have handled your personal data, you may be able to ask us to restrict how we use your personal data while your complaint is resolved. In some circumstances you can ask us to erase your personal data if you withdraw your consent, it is no longer necessary for us to use your personal data, you object to the use of your personal data and we don't have a good reason to continue to use it, or we haven't handled your personal data in accordance with our obligations.


Does this website use cookies?

In addition to asking you to submit personal information, we may collect information about you automatically when you visit the website. This information is not normally personally identifiable and includes general information about your computer settings, your connection to the internet, your IP address, your browsing patterns, your geographical location and your username and password. We may collect this information through the use of cookies.


A cookie is information which is sent to and stored on your computer's hard drive when you first visit the website, and allows us to identify your computer (but not you) the next time you visit the website. We may use the information collected in this way to (i) track website usage (though we will not use an IP address to track an individual's specific usage of the website); and (ii) adapt the website so that it better suits you and your interests. Most internet browsers give you the option to reject all cookies, accept all cookies, erase cookies stored on your computer or be notified before a cookie is stored on your computer. Your ease of use of the website may be reduced if you reject all cookies. You will need to refer to your internet browser instructions to find out more about these options and how to use them. For more information please see our  Cookie Policy


Where can I find more information about how RPC Tyche handles my data?

From time to time we may need to make changes to this notice. This may happen as the result of government regulation, new technologies, or other developments in the area of data protection. Any updates to our privacy notice will be clearly posted on this website. We advise you to regularly review this notice when you visit the website to learn more about how we are safeguarding your privacy.

If you have any queries please Contact Us or by writing to RPC Tyche LLP, 30th Floor, The Leadenhall Building, Leadenhall Street, London, England, EC3V 4AB.

If you are not happy with our response, you can contact the Information Commissioner's Office: https://ico.org.uk/

Recruitment Privacy Policy

This is the RPC Tyche Recruitment Privacy Policy

Introduction

As part of any recruitment process, RPC Tyche collects and processes personal data relating to job applicants. RPC Tyche is committed in ensuring transparency and meeting data protection obligations.


This policy applies to everyone working for RPC Tyche LLP.

What information do we collect?

RPC Tyche collects a range of information about you. This includes:

 •  your name, address and contact details, including email address and telephone number;

 •  details of your qualifications, skills, experience and employment history;

 •  information about your current level of remuneration, including benefit entitlements;

 •  whether or not you have a disability for which the organisation needs to make reasonable adjustments during the recruitment process; and

 •  information about your entitlement to work in the relevant jurisdiction.

RPC Tyche may collect this information in a variety of ways. For example, data might be contained in application forms, email correspondence, CVs or resumes, obtained from your passport or other identity documents, or collected through interviews or other forms of assessment.


We may also collect personal data about you from third parties, such as references supplied by former employers or record checks from government bodies on criminal convictions or driver checks. We will seek information from third parties only once a job offer to you has been made and will inform you that we are doing so.


We may also collect sensitive personal data on a consent, optional basis in relation to yourselves purely for government run organisations (we will collect for the purposes of Equal opportunities employer).


Data will be stored in a range of different places on RPC Tyche's IT systems (including email) but also on third party providers systems such as our recruitment portal, with whom RPC Tyche has ensured that the appropriate legal framework is in place to protect your data. If you require more information as to where your data is stored, please Contact Us.

Why does RPC Tyche process personal data?

We process your data generally for recruitment purposes and may also process your data to enter into a contract with you.


In some cases, we need to process data to ensure that we are complying with our legal obligations. For example, it is mandatory to check a successful applicant's eligibility to work in the relevant jurisdiction before employment starts.


RPC Tyche has a legitimate interest in processing personal data during the recruitment process and for keeping records of the process. Processing data from job applicants allows us to manage the recruitment process, assess and confirm a candidate's suitability for employment. We may also need to process data from job applicants to respond to and defend against legal claims.


RPC Tyche may process special categories of data, such as ethnic origin, sexual orientation, religion or belief, to monitor recruitment statistics in relation to equal opportunities employment. We may also collect information about whether or not applicants are disabled to make reasonable adjustments for candidates who have a disability. We process such information to carry out our obligations and exercise specific rights in relation to employment.


If your application is unsuccessful, RPC Tyche may keep your personal data within our recruitment portal in case there are future employment opportunities for which you may be suited. You are free to withdraw your application at any time, thus erasing all your personal data from our recruitment portal. If you wish to delete or withdraw your data, you can do this from within your recruitment portal account. You are under no statutory or contractual obligation to provide data to RPC Tyche during the recruitment process. However, if you do not provide the information, we may not be able to process your application.

Who has access to the data?

Your application will be submitted via our recruitment portal which is provided by a third party, CV Mail (provided by Thomson Reuters). We will not share your data with other third parties, unless your application for employment is successful and we make you an offer of employment.


Your information may be shared internally for the purposes of the recruitment process. This includes members of the People & Talent team, interviewers involved in the recruitment process, managers in the business area with a vacancy and IT staff if access to the data is necessary for the performance of their roles.


Once an offer is accepted and a start date is agreed, we will share your data with our third party reference checking provider Sterling Backcheck, who will liaise with you directly with regards to details such as past employment and former employers in order to obtain references for you and to complete pre-employment background checks.

How does RPC Tyche protect data?

We take the security of your data seriously. We have internal policies and controls in place to ensure that your data is not lost, accidentally destroyed, misused or disclosed, and is not accessed except by our relevant employees in the proper performance of their duties.

For how long does RPC Tyche keep data?

If your application for employment is unsuccessful, the organisation will hold your data on file for 2 (two) years from the date of application date. At the end of that period, or once you withdraw your consent, or if we have not had contact with you within the 2 year period your data is deleted or destroyed.


If your application for employment is successful, personal data gathered during the recruitment process will be transferred to your personal file (electronic and paper based) and retained during your employment as per our Data Protection Retention Policy. Should you require details on the retention periods for your data, please Contact Us.

As a data subject, you have a number of rights. You can:

 •  access and obtain a copy of your data on request;

 •  require RPC Tyche to change incorrect or incomplete data;

 •  require RPC Tyche to delete or stop processing your data, for example where the data is no longer necessary for the purposes of processing; and

 •  whether or not you have a disability for which the organisation needs to make reasonable adjustments during the recruitment process; and

 •  object to the processing of your data where RPC Tyche is relying on its legitimate interests as the legal ground for processing.

If you would like to exercise any of these rights, please Contact Us.