Sláintecare Recruitment Logo

Sláintecare

Recruitment

HomeAboutServicesContactTestimonialsGalleryContact Us
Professional desk with planning documents
Legal

Privacy Policy

How Sláinte Care Recruitment Agency Limited collects, uses and protects your personal data.

SLAINTE CARE RECRUITMENT AGENCY LIMITED

Privacy Policy

Healthcare staffing and recruitment agency — Republic of Ireland

Effective Date

4 June 2026

Last Reviewed

4 June 2026

Website

slaintecare.com

Privacy Contact

slaintecare@slaintecare.com

Contents

  1. 1. Who We Are
  2. 2. Summary of How We Use Personal Data
  3. 3. Scope of This Privacy Policy
  4. 4. Types of Personal Data We Collect
  5. 5. How We Collect Personal Data
  6. 6. How We Use Personal Data
  7. 7. GDPR Processing Matrix
  8. 8. Lawful Bases for Processing
  9. 9. Special Category Data and Healthcare Recruitment Data
  10. 10. Garda Vetting and Criminal-Offence-Related Data
  11. 11. How Candidate Data is Shared with Healthcare Employers and Clients
  12. 12. Third-Party Service Providers, Processors and Independent Controllers
  13. 13. Cookies, Browser Storage and Telemetry
  14. 14. International Data Transfers
  15. 15. Data Retention
  16. 16. Secure Deletion and Minimisation Commitments
  17. 17. Data Security
  18. 18. Personal Data Breaches
  19. 19. Automated Decision-Making, Profiling and AI-Assisted Recruitment Tools
  20. 20. Your Data Protection Rights
  21. 21. How to Exercise Your Rights
  22. 22. Right to Lodge a Complaint with the Irish Data Protection Commission
  23. 23. Marketing, Newsletters and Job Alerts
  24. 24. Accuracy of Information
  25. 25. Links to Other Websites
  26. 26. Updates to This Privacy Policy
  27. 27. Contact Information
  28. Appendix 1: GDPR Processing Matrix

1. Who We Are

SLAINTE CARE RECRUITMENT AGENCY LIMITED is a healthcare staffing and recruitment agency operating in the Republic of Ireland.

We support candidates seeking work and client organisations seeking suitable staff, including nursing homes, hospitals, care facilities, residential care services, healthcare providers, catering services, domestic services, housekeeping services and other care-related organisations.

For the purposes of the General Data Protection Regulation, the Irish Data Protection Act 2018 and related data protection law, SLAINTE CARE RECRUITMENT AGENCY LIMITED is the data controller for the personal data described in this Privacy Policy, unless we state otherwise in a separate notice or agreement.

ControllerSLAINTE CARE RECRUITMENT AGENCY LIMITED
Websiteslaintecare.com
Operating JurisdictionRepublic of Ireland
Privacy Contact Emailslaintecare@slaintecare.com

2. Summary of How We Use Personal Data

In simple terms, we use personal data to:

Review Applications

Review job applications and CVs.

Register Candidates

Register suitable candidates for work opportunities.

Match Roles

Match candidates with appropriate healthcare, care, catering, domestic, housekeeping or related roles.

Complete Compliance Checks

Complete checks required for healthcare and care settings.

Verify Eligibility

Confirm right-to-work status, training, professional registration and suitability where required.

Support Safeguarding

Support safeguarding, patient safety, resident safety and public health requirements.

Communicate

Communicate with candidates, agency workers, clients and business contacts.

Share Candidate Details

Share suitable candidate details with relevant client organisations where necessary and lawful.

Manage Work

Manage onboarding, placements, assignments, rosters, timesheets, payroll, billing and business administration.

Meet Legal Duties

Meet legal, tax, employment, health and safety, safeguarding and regulatory requirements.

Data minimisation commitment

We only collect personal data that is relevant to our recruitment, staffing, compliance, client service and business purposes. We do not request unnecessary medical history, Garda Vetting detail, or sensitive information unless it is genuinely necessary, lawful and proportionate for a specific role, placement, safeguarding requirement or legal obligation.

3. Scope of This Privacy Policy

This Privacy Policy applies to personal data we process about:

Candidates

Job seekers and candidates.

Workers

Agency workers and applicants.

Healthcare Professionals

Healthcare professionals applying for or carrying out relevant roles.

Support Staff Applicants

Catering, domestic, housekeeping, kitchen, administrative and support staff applicants.

Referees

People named by candidates as referees.

Clients

Client organisations, employer contacts, hiring managers and site contacts.

Website Visitors

People who visit or interact with slaintecare.com.

Website Form Users

Individuals who submit forms, upload CVs or contact us through the website.

Job Alert Users

Individuals who sign up for job alerts, newsletters or recruitment updates.

Business Contacts

Suppliers, service providers, advisers and other business contacts.

Former Contacts

Former candidates, workers, agency workers and client contacts where we retain records for lawful purposes.

This Privacy Policy covers personal data collected through online application forms, candidate registration forms or portals, CV upload features, client enquiry forms, job alert forms, communications, recruitment activity, onboarding, assignments, automatic web server logs, cookies, browser storage and security telemetry.

This Privacy Policy should be read together with any other privacy notice, consent wording, employment document, agency worker document, candidate notice, contract, onboarding form or data protection notice we may provide in specific circumstances.

4. Types of Personal Data We Collect

We collect different categories of personal data depending on your relationship with us.

4.1 Candidate and Job Seeker Data

Identity Data

Full name.

Contact Data

Email address, phone number and home address.

CV and Employment Data

CV, employment history and education history.

Qualifications Data

Qualifications, professional certifications, skills, experience and role preferences.

Availability Data

Availability, preferred working locations, and location and travel or transport information relevant to assignments.

Right-to-Work Data

Right-to-work status, visa, work permit, passport, Irish Residence Permit or immigration-related information where relevant.

Verification Data

Proof of identity and proof of address.

Professional Registration Data

Professional registration numbers or details, including NMBI registration where applicable.

Training and Certification Data

Training certificates and clinical, healthcare, care, catering, domestic or role-related certification records.

Reference Data

Reference contact details and references received from referees.

Screening Data

Interview notes, candidate screening notes and application history.

Communication Data

Candidate communication records and job alert preferences.

Suitability Data

Client-site suitability notes, availability updates and onboarding status.

Additional Information

Information you provide through forms, emails, phone calls, CVs, interviews, messages or documents uploaded to us.

4.2 Healthcare Recruitment and Compliance Data

Because we operate in healthcare staffing and may place staff in care environments, we may need to process additional information to assess suitability, compliance, safeguarding and role-specific requirements.

  • Professional registration details, including NMBI registration where applicable
  • Nursing, healthcare, care or clinical qualifications
  • Mandatory training records
  • Manual handling or patient handling certificates
  • Infection prevention and control training
  • Fire safety training
  • Safeguarding training
  • CPR, BLS or first aid certification
  • Food safety or HACCP training where relevant
  • Fitness-to-work confirmation where required for a role
  • Occupational health or immunisation-related information where relevant and lawful
  • Information needed to consider reasonable adjustments where applicable
  • Garda Vetting application/status information where required
  • Background-check information where lawful and relevant
  • Compliance status for healthcare or care placements
  • Information relating to safeguarding, public health, patient safety, resident safety or suitability for care environments

We only collect this information where it is necessary, lawful and relevant to the role, placement, assignment, safeguarding obligation or compliance requirement being considered.

4.3 Agency Worker and Employment-Related Data

  • PPS number and bank details for payroll
  • Emergency contact details
  • Employment contract or agency worker contract details
  • Payroll records and tax and Revenue-related information
  • Timesheets, attendance records, clock-in and clock-out data, shift records and roster records
  • Client assignment records
  • Annual leave records, absence and sick leave records, and medical certificates where required and lawful
  • Training expiry records
  • Garda Vetting status records where required and lawful
  • Performance or conduct records, and disciplinary or grievance records where applicable
  • Health and safety incident records
  • Client feedback relating to assignments
  • Compliance and audit records

4.4 Client and Employer Data

  • Name and job title
  • Business email address, business phone number, organisation name and corporate contact details
  • Business address and billing address
  • Job descriptions and staffing requirements
  • Client communication records
  • Contract and service information, placement records and feedback about candidates, workers or assignments
  • Invoicing and financial transaction history, payment and account information
  • Complaint, incident or service records where applicable

4.5 Website Visitor Data

  • IP address
  • Browser type and version, device type and operating system
  • Pages visited, date and time of visit, referring website or link and website usage information
  • Cookie identifiers or browser storage identifiers required for essential website function
  • Form telemetry
  • Security logs and session data

5. How We Collect Personal Data

Online Applications

Directly from you when you complete an online application form.

Candidate Registration

Directly from you when you register as a candidate.

Document Uploads

Directly from you when you upload a CV or supporting documents.

Direct Communications

Directly from you when you contact us by email, phone, website form, text message, WhatsApp or another communication method.

Client Forms

Through client enquiry forms.

Job Alerts

Through newsletter or job alert sign-up boxes.

Candidate Systems

Through candidate registration portals or applicant tracking systems.

Recruitment Discussions

Through recruitment conversations, screening calls and interviews.

Referees

From referees whose details you provide.

Clients

From client organisations where you are considered for work, placed on assignment or have completed work.

Registration Bodies

From professional registration bodies where checks are required and lawful.

Training Providers

From training providers where certification checks are required and lawful.

Background Checks

From background-check, Garda Vetting or reference verification processes where relevant and lawful.

Recruitment Tools

From applicant tracking systems and recruitment management tools.

Website Systems

From web server logs, essential cookies, browser storage and website security systems.

We may also receive information from third parties where lawful and relevant to recruitment, placement, compliance, safeguarding, client service or legal purposes.

6. How We Use Personal Data

6.1 Candidate and Worker Personal Data

  • Receiving and reviewing job applications
  • Registering candidates for healthcare staffing opportunities
  • Assessing suitability for available roles
  • Matching candidates with suitable healthcare, care, domestic, catering, housekeeping or related roles
  • Contacting candidates about applications, interviews, onboarding and assignments
  • Verifying qualifications, experience and training
  • Checking professional registration where required, including NMBI registration where applicable
  • Assessing eligibility to work in Ireland
  • Requesting and reviewing references
  • Managing candidate pipelines
  • Maintaining recruitment and placement records
  • Submitting suitable candidate profiles to prospective healthcare employers or clients where lawful and appropriate
  • Carrying out compliance checks required for healthcare staffing
  • Supporting safeguarding, public health, patient safety and resident safety requirements
  • Preventing fraudulent, misleading or unsuitable applications
  • Managing job alerts, newsletters or future opportunity communications where applicable
  • Managing onboarding, contracts, payroll setup and HR administration where a candidate progresses
  • Managing assignments, availability, rosters, timesheets and attendance where a candidate becomes an agency worker
  • Managing absence, sickness, medical certificates, complaints, incidents, disciplinary matters and grievances where applicable
  • Complying with legal, regulatory, tax, employment, health and safety and safeguarding obligations
  • Establishing, exercising or defending legal claims

6.2 Client and Business Contact Data

  • Responding to client enquiries
  • Managing business relationships
  • Understanding staffing requirements
  • Providing recruitment and staffing services
  • Sending candidate profiles for consideration
  • Arranging interviews, placements and assignments
  • Managing contracts, service delivery and communications
  • Processing invoices and payments
  • Maintaining billing and financial records
  • Handling feedback, complaints, incidents or placement issues
  • Complying with legal, tax, accounting and regulatory obligations
  • Protecting our business, candidates, workers, clients, residents, patients and service users

7. GDPR Processing Matrix

A detailed GDPR processing matrix is included in Appendix 1. It summarises the main processing activities, purposes, personal data used, lawful bases, safeguards, recipients and retention criteria. The exact data used may vary depending on the role, client requirement, legal requirement and stage of the recruitment or employment process.

8. Lawful Bases for Processing

We process personal data under one or more lawful bases under GDPR.

8.1 Candidates and Job Seekers

Performance of a contract or pre-contractual steps

We process your personal data to take steps at your request before entering into an employment, agency work, placement or recruitment-related arrangement. This includes reviewing your application, contacting you, assessing your suitability and progressing your registration.

Contractual necessity

Where you work with us, we process personal data where necessary to manage our employment, agency worker or service relationship with you. This includes HR administration, rostering, payroll, assignments, communication, compliance and related processes.

Legal obligation

We process personal data where necessary to comply with Irish and EU legal obligations, including employment law, tax law, working time obligations, health and safety requirements, right-to-work obligations, safeguarding requirements, payroll obligations and regulatory duties.

Legitimate interests

We process personal data where necessary for our legitimate business interests, provided those interests are not overridden by your rights and freedoms. These interests include managing recruitment pipelines, matching candidates with roles, verifying experience and qualifications, preventing fraud, protecting public health and safety in healthcare placements, maintaining service quality, managing client relationships, keeping accurate records, investigating incidents and protecting our legal position.

Consent

We may rely on consent for specific optional activities, including marketing communications, job alerts, long-term talent pool retention beyond our normal retention period, or passing a candidate profile directly to a prospective healthcare employer where consent is required.

Consent is not the only basis we use for recruitment processing. Much of our recruitment, onboarding, compliance, payroll and staffing activity is necessary for pre-contractual steps, contract performance, legal obligations or legitimate interests. Where we rely on consent, you may withdraw your consent at any time. Withdrawal of consent will not affect processing carried out before consent was withdrawn.

8.2 Clients and Business Contacts

Contractual necessity

We process business contact and service data to provide recruitment and staffing services, manage client relationships, respond to staffing requests and administer contracts.

Legitimate interests

We process business contact data for legitimate business purposes, including client relationship management, service delivery, billing administration, communication, business development, complaint handling and record keeping.

Legal obligation

We process billing, payment, tax and financial records where required for tax, accounting, audit and legal compliance.

9. Special Category Data and Healthcare Recruitment Data

Some data we process may be classed as special category data under GDPR. This includes health-related information, fitness-to-work information, occupational health information, immunisation information, disability-related information, medical certification or other health information where relevant to a role. We only process special category data where it is necessary, lawful and proportionate.

In healthcare recruitment, this may be necessary to:

  • Assess whether a candidate is fit or suitable for a healthcare or care-related role
  • Consider reasonable adjustments where applicable
  • Meet health and safety requirements
  • Meet safeguarding requirements
  • Protect residents, patients, clients, staff and the public
  • Comply with employment, occupational health, public health or legal obligations
  • Support placement decisions in healthcare or care environments
  • Establish, exercise or defend legal claims

Where special category data is processed, we rely on an appropriate Article 9 GDPR condition where applicable. These may include employment/social protection law, occupational medicine or assessment of working capacity, public health, substantial public interest, legal claims, or explicit consent where genuinely appropriate and freely given.

We do not request detailed medical history unless it is genuinely necessary, lawful and proportionate for a specific role, placement, health and safety requirement, safeguarding requirement, public health requirement, reasonable adjustment request or legal obligation. Where a fitness-to-work certificate, immunisation confirmation, occupational health clearance, role restriction note, medical certificate or summary confirmation is sufficient, we will generally avoid collecting unnecessary underlying medical details.

Access to special category data is restricted to authorised persons who need access for recruitment, compliance, safeguarding, HR, occupational health, legal or client placement purposes.

10. Garda Vetting and Criminal-Offence-Related Data

Some roles may require Garda Vetting or other lawful background checks because the work may involve contact with vulnerable adults, residents, patients, children or regulated care environments. We only process Garda Vetting or criminal-offence-related information where it is authorised by Irish law, necessary and relevant to the role, placement, safeguarding requirement or legal obligation.

We may process:

  • Garda Vetting application status
  • Vetting completion status
  • Vetting outcome or confirmation where lawful
  • Records showing whether a candidate is eligible, cleared or suitable for a relevant role
  • Related compliance notes where necessary and proportionate

Where possible, we share only confirmation of vetting, safeguarding or compliance status rather than full underlying vetting information, unless further disclosure is lawful, necessary and proportionate. We do not collect, store, use or disclose Garda Vetting or criminal-offence-related information for general recruitment curiosity, convenience or unnecessary screening.

11. How Candidate Data is Shared with Healthcare Employers and Clients

As a healthcare recruitment and staffing agency, we may share candidate information with prospective healthcare employers and client organisations where necessary for recruitment, placement, compliance, safeguarding and assignment purposes.

The information shared may include:

  • Candidate name and contact details where appropriate
  • CV and employment history
  • Relevant qualifications and training
  • Professional registration details, such as NMBI registration where applicable
  • Role suitability information, availability, location or travel suitability
  • Right-to-work confirmation where relevant
  • Compliance status, reference information, Garda Vetting or safeguarding confirmation where required and lawful
  • Relevant placement or assignment information and client-site suitability information

We will only share the information that is necessary for the relevant recruitment, placement, compliance, safeguarding, assignment or client service purpose. Where consent is required before sharing a candidate profile directly with a prospective healthcare employer, we will seek that consent. We do not sell candidate personal data.

12. Third-Party Service Providers, Processors and Independent Controllers

We may use trusted third-party service providers to help operate our recruitment business and website. Some third parties act as processors; others may act as independent controllers for their own legal, regulatory or professional purposes.

  • Applicant tracking systems, recruitment management tools and CV parsing
  • Cloud hosting providers, secure document storage and website hosting
  • Email hosting, communications tools, SMS and job alert systems
  • IT support, cybersecurity providers and website monitoring
  • Reference verification, Garda Vetting and background-check systems
  • Training verification providers
  • HR systems, rostering systems, payroll systems and accounting/invoicing tools
  • Payment providers and professional advisers (legal, HR, insurance, tax, accounting and compliance)

Where a third party processes personal data on our behalf as a processor, we require appropriate data protection arrangements to be in place where required by GDPR. Where a third party acts as an independent controller, that third party is responsible for its own compliance with data protection law.

13. Cookies, Browser Storage and Telemetry

Our website may use essential cookies, browser storage and similar technologies to operate the website, support security, manage forms and maintain basic website functionality.

At present, we do not intentionally use non-essential analytics, marketing, advertising, retargeting or tracking cookies on our website. Strictly necessary cookies or browser storage may be used for website security, form operation, session management, spam prevention, saved preferences or similar essential functions.

If this changes in the future, we will update this Privacy Policy and request consent where required by law before placing non-essential technologies on your device. We do not use pre-ticked consent boxes for non-essential cookies.

14. International Data Transfers

Our recruitment operations are based in the Republic of Ireland and are governed by Irish and EU data protection law. Some service providers may process or store personal data outside Ireland or outside the European Economic Area.

Where personal data is transferred outside the European Economic Area, we will ensure that an appropriate GDPR transfer mechanism is in place, such as European Commission adequacy decisions, EU Standard Contractual Clauses, transfer risk assessments, supplementary safeguards, encryption and access controls.

15. Data Retention

We keep personal data only for as long as necessary for the purposes for which it was collected. Retention depends on the purpose of processing, whether the relationship remains active, legal and compliance requirements, audit requirements, complaints, incidents, disputes or legal claims, and whether the data can be deleted, anonymised or minimised.

Record TypeRetention Commitment
Active candidate profiles and application historiesUp to 2 years from the last point of meaningful engagement.
Candidate records no longer requiredMay be deleted or anonymised earlier where they are no longer required.
Candidate records requiring longer retentionMay be retained for longer where required for legal claims, safeguarding, compliance, audit, investigation or ongoing placement administration.
Long-term talent pool recordsOnly retained where lawful and, where required, with consent.
Successful applicant and agency worker recordsRetained as part of the worker file for the duration of the working relationship and for a legally appropriate period afterwards.
Client, placement, invoicing and transaction recordsRetained for statutory tax, accounting and legal purposes.
Billing and financial recordsGenerally retained for up to 6 years in line with Irish tax and Revenue record-keeping obligations.
Working time, roster, timesheet and leave recordsRetained for the legally required period and any additional period necessary for audit, employment rights, client billing or legal purposes.
Website logs and telemetryRetained only for as long as necessary for website security and operational purposes.
Marketing and job alert recordsRetained until you unsubscribe or until they are no longer required.
Garda Vetting, health, immunisation and occupational-health informationRetained only for as long as necessary and lawful for the relevant role, safeguarding, compliance or legal purpose, and reviewed periodically.
Complaint, disciplinary, grievance, incident and legal recordsRetained for as long as necessary to manage the matter, comply with legal obligations, protect safeguarding interests and defend legal claims.

For the purpose of this policy, “meaningful engagement” may include submitting an application, updating a CV, responding to a recruitment message, attending an interview, accepting or declining work, completing onboarding steps, working a shift, updating availability, providing compliance documents, or otherwise actively engaging with SLAINTE CARE RECRUITMENT AGENCY LIMITED about work opportunities.

16. Secure Deletion and Minimisation Commitments

When deleting personal data, we take reasonable steps to ensure it is securely removed from active systems. Where data exists in backups, archives or disaster recovery systems, deletion may not be immediate but will be protected from routine use and deleted or overwritten in line with normal backup retention cycles.

Anonymised data that can no longer identify an individual may be retained for statistical, reporting, compliance or business analysis purposes. We aim to collect, use and retain only the personal data that is relevant and necessary for the recruitment, employment, staffing, compliance, client service or legal purpose involved.

17. Data Security

We take appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, disclosure or destruction, including:

  • Access controls and password-protected systems
  • Secure cloud storage and restricted access to candidate and client records
  • Staff confidentiality obligations and use of reputable software and hosting providers
  • Secure document handling procedures and encryption where appropriate
  • Regular access reviews and need-to-know access principles
  • Secure disposal or deletion of data no longer required
  • Monitoring systems for security and fraud prevention
  • Staff awareness of data protection responsibilities
  • Restricting access when staff leave or change roles
  • Additional care for Garda Vetting, health, immunisation, occupational-health, safeguarding and payroll information

No website, email or digital system is completely risk-free. However, we take reasonable and appropriate steps to protect the personal data we process.

18. Personal Data Breaches

A personal data breach may include accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or unauthorised access to, personal data. If SLAINTE CARE RECRUITMENT AGENCY LIMITED becomes aware of a personal data breach, we will assess the nature, scope and potential impact, take reasonable steps to contain and limit the breach, investigate what happened, keep an internal record, notify the Irish Data Protection Commission where legally required, and notify affected individuals where legally required.

19. Automated Decision-Making, Profiling and AI-Assisted Recruitment Tools

SLAINTE CARE RECRUITMENT AGENCY LIMITED may use recruitment systems, applicant tracking systems, CV parsing, keyword searching, filtering, matching or similar tools to help organise applications and manage candidate pipelines. Such tools are intended to assist recruitment administration and human review.

We do not make final recruitment, registration, suitability or placement decisions based solely on automated processing, including profiling, where that decision would have legal or similarly significant effects, unless this is legally permitted and appropriate safeguards are in place. Candidates may contact us to ask about automated processing or to request human involvement where applicable.

20. Your Data Protection Rights

Subject to legal limits and exemptions, you have the following rights under GDPR:

RightWhat It Means
Right of AccessYou have the right to request a copy of the personal data we hold about you.
Right to RectificationYou have the right to ask us to correct inaccurate or incomplete personal data.
Right to ErasureYou have the right to request deletion of your personal data in certain circumstances. We may not always be able to delete data immediately where we need to retain it for legal, compliance, safeguarding, tax, accounting, dispute, audit, employment or legal claims purposes.
Right to RestrictionYou have the right to request that we restrict the processing of your personal data in certain circumstances.
Right to ObjectYou have the right to object to certain processing based on legitimate interests or direct marketing.
Right to Data PortabilityWhere applicable, you have the right to receive certain personal data in a structured, commonly used and machine-readable format.
Right to Withdraw ConsentWhere we rely on consent, you have the right to withdraw that consent at any time. Withdrawal of consent does not affect processing carried out before consent was withdrawn.
Right Not to Be Subject to Certain Automated DecisionsYou have the right not to be subject to certain decisions based solely on automated processing, including profiling, where that decision produces legal or similarly significant effects, unless permitted by law.

Data protection rights are not absolute. We may refuse, limit or delay a request where permitted by law, for example where we must retain records for legal, safeguarding, tax, audit, employment, regulatory, dispute or legal claims purposes.

21. How to Exercise Your Rights

To exercise your data protection rights, contact us at: slaintecare@slaintecare.com

We may need to verify your identity before responding to a request. We will respond within the timeframe required by law.

22. Right to Lodge a Complaint with the Irish Data Protection Commission

If you are unhappy with how we handle your personal data, please contact us first so that we can try to resolve the issue. You also have the right to lodge a complaint with the Irish Data Protection Commission.

Irish Data Protection CommissionWebsite: dataprotection.ie

dataprotection.ie

23. Marketing, Newsletters and Job Alerts

If you sign up for newsletters, job alerts or marketing communications, we may use your contact details to send you relevant updates. You can unsubscribe at any time by using the unsubscribe option in the message or by contacting us at slaintecare@slaintecare.com.

We may still send essential non-marketing communications where necessary, such as application updates, onboarding requests, compliance queries, client placement matters, shift communications, legal notices or service-related messages.

24. Accuracy of Information

You are responsible for ensuring that the information you provide to us is accurate and up to date. You should inform us promptly if your contact details, right-to-work status, professional registration, training status, availability, work preferences or other relevant information changes.

Providing false, misleading or incomplete information may affect your application, registration, onboarding, placement, assignment eligibility or working relationship with us.

26. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our business, website, recruitment processes, legal obligations, technology, service providers or data protection practices. The latest version will be published on this page. Where changes are significant, we may take additional steps to bring them to your attention.

27. Contact Information

For questions about this Privacy Policy, how we process personal data, or to exercise your data protection rights, please contact:

CompanySLAINTE CARE RECRUITMENT AGENCY LIMITED
Websiteslaintecare.com
Privacy Contact Emailslaintecare@slaintecare.com
Effective Date4 June 2026
Last Reviewed4 June 2026

Appendix 1: GDPR Processing Matrix

This appendix summarises the main processing activities. The exact data used may vary depending on the role, client requirement, legal requirement and stage of the recruitment or employment process.

Processing ActivityPurposePersonal Data UsedLawful Basis and SafeguardsRecipientsRetention
Job application reviewReview applications and assess initial suitability.Identity, contact, CV, employment history, education, qualifications, role preferences and application notes.Pre-contractual steps and legitimate interests. Special category or criminal-offence data is not normally required at this stage unless necessary and lawful.Authorised Authorised Sláinte Care Recruitment Agency Limited staff and recruitment systems.Normally up to 2 years from last meaningful engagement unless earlier deletion or longer lawful retention applies.
Candidate registrationRegister candidates for suitable work opportunities.Identity, contact, CV, employment history, availability, role preferences, location and screening notes.Pre-contractual steps, legitimate interests, and consent where used for optional long-term talent pool retention.Authorised Authorised Sláinte Care Recruitment Agency Limited staff and recruitment tools where used.Up to 2 years from last meaningful engagement unless longer retention is lawful and necessary.
Role matchingMatch candidates to appropriate roles, clients and assignments.CV, skills, experience, qualifications, training, availability, location, right-to-work status and suitability notes.Pre-contractual steps, contractual necessity where applicable, and legitimate interests. Special category or vetting information is used only where relevant, lawful and proportionate.Authorised Authorised Sláinte Care Recruitment Agency Limited staff and relevant client organisations where appropriate.For active recruitment or assignment purposes and up to 2 years from last meaningful engagement unless longer lawful retention applies.
Recruitment communicationsContact candidates about applications, interviews, onboarding, assignments and compliance.Identity, contact details, communication records, application status, availability and onboarding status.Pre-contractual steps, contractual necessity and legitimate interests.Email, SMS, messaging, communications or HR systems where used.For the recruitment or working relationship and a lawful period afterwards.
Right-to-work checksConfirm eligibility to work in Ireland.Identity, proof of identity, passport, visa, work permit, Irish Residence Permit and right-to-work status.Legal obligation, pre-contractual steps and legitimate interests.Authorised Authorised Sláinte Care Recruitment Agency Limited staff, relevant authorities where required by law, and clients where confirmation is necessary and lawful.Retained for the working relationship and a legally appropriate period afterwards, subject to review and minimisation.
Professional registration checksVerify professional registration and suitability for regulated healthcare roles, including NMBI where applicable.Professional registration number, NMBI details where applicable, role, qualifications and compliance notes.Legal obligation where applicable, legitimate interests and pre-contractual steps.Authorised Authorised Sláinte Care Recruitment Agency Limited staff, professional registration bodies where lawful, and relevant clients where necessary.Only as long as necessary for role suitability, compliance, audit or legal purposes.
Training and certification verificationConfirm mandatory training and role-specific competency.Training certificates, expiry dates, provider information, role requirements and compliance status.Legal obligation where applicable, legitimate interests and contractual necessity where applicable.Authorised Authorised Sláinte Care Recruitment Agency Limited staff, training providers where lawful, and relevant clients where necessary.Only as long as necessary for compliance, assignment, audit and legal purposes.
Healthcare compliance checksConfirm suitability for healthcare/care environments and client requirements.Training, professional registration, right-to-work, identity, safeguarding, compliance status and role suitability notes.Legal obligation, legitimate interests and contractual necessity where applicable. Special category data may rely on employment/social protection law, occupational medicine, public health, substantial public interest or legal claims where relevant.Authorised Authorised Sláinte Care Recruitment Agency Limited staff, clients, compliance systems and advisers where necessary.Only as long as necessary and lawful for healthcare compliance, safeguarding, audit and legal purposes.
Fitness-to-work / occupational-health checksAssess fitness for relevant work and protect health and safety.Fitness-to-work confirmation, occupational-health clearance, medical certificate where required and role restrictions where applicable.Legal obligation, legitimate interests and contractual necessity where applicable. Article 9 conditions may include employment/social protection law, occupational medicine, assessment of working capacity, public health, legal claims or explicit consent where genuinely appropriate.Authorised Authorised Sláinte Care Recruitment Agency Limited staff, occupational-health providers where used, and relevant clients where necessary and proportionate.No longer than necessary for the role, health and safety, safeguarding, compliance or legal purpose.
Immunisation-related checksConfirm suitability for particular healthcare or care settings where immunisation evidence is required.Immunisation confirmation, immunity evidence or clearance status where lawful and relevant.Legal obligation where applicable, legitimate interests and contractual necessity where applicable. Article 9 conditions may include employment/social protection law, occupational medicine, assessment of working capacity, public health or substantial public interest where applicable.Authorised Authorised Sláinte Care Recruitment Agency Limited staff, occupational-health providers where used, and relevant clients where necessary, generally as confirmation/status only.No longer than necessary and lawful for the relevant role, compliance, safeguarding or public health purpose.
Reasonable adjustmentsConsider and manage reasonable adjustments where applicable.Adjustment request, relevant health/disability information, role restrictions or supports required.Legal obligation, legitimate interests and contractual necessity where applicable. Article 9 conditions may include employment/social protection law, assessment of working capacity, legal claims or explicit consent where appropriate.Authorised Authorised Sláinte Care Recruitment Agency Limited staff, relevant clients or occupational-health providers where necessary and proportionate.No longer than necessary for the adjustment, role, legal or employment purpose.
Garda Vetting / safeguarding checksConfirm eligibility and safeguarding suitability for roles involving vulnerable persons or regulated environments.Garda Vetting application/status, completion status, outcome/confirmation where lawful, eligibility records and safeguarding notes where necessary.Legal obligation where applicable, legitimate interests and contractual necessity where applicable. Article 10 GDPR and Irish-law safeguards apply where criminal-offence-related data is processed.Authorised Authorised Sláinte Care Recruitment Agency Limited staff, vetting/background-check systems and clients where lawful and necessary, normally confirmation/status only.No longer than necessary and lawful for role eligibility, safeguarding, compliance, audit or legal purposes.
Reference checksConfirm employment history, suitability and reliability.Referee contact details, reference responses, employment history and role suitability notes.Pre-contractual steps, legitimate interests and consent where appropriate.Authorised Authorised Sláinte Care Recruitment Agency Limited staff, referees and relevant clients where appropriate and lawful.Up to 2 years from last meaningful engagement or as part of worker file where candidate progresses, subject to legal retention criteria.
Candidate submission to clientsPresent suitable candidates to healthcare/care clients for roles or assignments.Candidate name, CV, employment history, qualifications, training, availability, right-to-work confirmation, compliance status, registration details and suitability information.Pre-contractual steps, legitimate interests, consent where required and contractual necessity where applicable. Sensitive or vetting information is shared only where lawful, necessary and proportionate.Nursing homes, hospitals, care facilities, healthcare providers, residential care services, catering, domestic or support service clients.Only as long as necessary for recruitment, placement, client service, compliance or legal purposes.
OnboardingComplete steps required before work can be offered or started.Identity, contact, right-to-work, contract, payroll setup, training, vetting status, references, professional registration and compliance documents.Pre-contractual steps, contractual necessity, legal obligation and legitimate interests.Authorised Authorised Sláinte Care Recruitment Agency Limited staff, HR systems, payroll systems, clients where necessary and relevant compliance providers.For the working relationship and a legally appropriate period afterwards.
Agency worker administrationManage agency worker relationship, HR records and assignments.Contract, contact, emergency contact, assignment data, training status, communications and compliance records.Contractual necessity, legal obligation and legitimate interests.Authorised Authorised Sláinte Care Recruitment Agency Limited staff, HR/rostering systems and clients where necessary.For the working relationship and a legally appropriate period afterwards.
Payroll and taxPay workers and comply with tax/payroll obligations.PPS number, bank details, payroll records, tax information, hours worked, pay rates and lawful deductions.Contractual necessity and legal obligation.Payroll/accounting systems, Revenue where required, banks/payment providers and accountants.Generally up to 6 years for tax/accounting records or longer where legally required.
Rostering, timesheets and attendanceAllocate shifts, record attendance, calculate pay and bill clients.Availability, rosters, shift records, timesheets, clock-in/out data and client assignment records.Contractual necessity, legal obligation and legitimate interests.Authorised Authorised Sláinte Care Recruitment Agency Limited staff, clients, HR/rostering/payroll systems.Legally required period plus any additional period necessary for audit, employment rights, client billing or legal claims.
Absence, sick leave and medical certificatesManage absence, sick leave, statutory obligations and fitness for work.Absence records, sick leave records, medical certificates where required and communication records.Legal obligation, contractual necessity and legitimate interests. Article 9 conditions may include employment/social protection law, assessment of working capacity, occupational medicine or legal claims.Authorised Authorised Sláinte Care Recruitment Agency Limited staff, payroll/HR systems, occupational-health providers where used, and clients only where necessary and proportionate.No longer than necessary for employment, statutory, payroll, health and safety, dispute or legal claims purposes.
Incident, complaint, disciplinary and grievance handlingInvestigate and manage workplace issues, complaints, safeguarding concerns, conduct and disputes.Incident reports, complaint records, witness information, client feedback, conduct records, communications and relevant supporting documents.Legal obligation, legitimate interests and contractual necessity. Special category or criminal-offence-related data is used only where lawful, necessary and safeguarded.Authorised Authorised Sláinte Care Recruitment Agency Limited staff, clients, legal/HR advisers, insurers, regulators or authorities where required.As long as necessary to manage the matter, comply with legal obligations, protect safeguarding interests and defend legal claims.
Client relationship managementProvide services and manage client relationships.Business contact details, job requirements, communications, service records and placement records.Contractual necessity and legitimate interests.Authorised Authorised Sláinte Care Recruitment Agency Limited staff, client contacts and CRM/account systems where used.As needed for service delivery, relationship management, accounting, audit and legal purposes.
Billing and accountingInvoice clients, manage accounts and meet Revenue/accounting obligations.Client billing details, invoices, payments, transaction records, contact details and placement records.Contractual necessity, legal obligation and legitimate interests.Accounting systems, payment providers, banks, accountants and Revenue where required.Generally up to 6 years for tax/accounting records or longer where legally required.
Website securityProtect website, systems and users from misuse, fraud, spam and cyber threats.IP address, device/browser information, server logs, security telemetry and form telemetry.Legitimate interests and legal obligation where applicable.Website host, cybersecurity providers, IT support and security tools where used.Only as long as necessary for website security, investigation and operational purposes.
Essential cookies / browser storageOperate the website, support security, manage forms and maintain basic functionality.Essential cookie identifiers, browser storage identifiers, session data and security-related technical data.Legitimate interests and strictly necessary ePrivacy exemption where applicable.Website host, IT support and website/security tools where used.Only as long as necessary for the essential website function.
Marketing, newsletters and job alertsSend job alerts, newsletters or recruitment updates.Contact details, job preferences, communication preferences and consent/opt-out records.Consent where required and legitimate interests for limited existing business contact communications where lawful.Email/communications providers and marketing/job alert tools where used.Until unsubscribe, withdrawal of consent, or until no longer required.
Legal claims and regulatory complianceComply with law, respond to regulators, audits or claims, and protect legal rights.Relevant records depending on the matter, including recruitment, assignment, payroll, incident, complaint, compliance and communication records.Legal obligation and legitimate interests. Special category/criminal-offence data is processed only where lawful and necessary.Legal/HR advisers, insurers, courts, regulators, authorities and auditors where required.As long as necessary for the legal, regulatory, audit, dispute or claims purpose.
Effective 4 June 2026
Last reviewed 4 June 2026