Privacy
This Privacy Notice applies to the website(s), mobile applications and tools (together, the “Sites”) provided by CM Groups Inc., a company headquartered in Boston, Massachusetts, USA, and/or the other companies of the CM Groups group (“CM Groups”, “we”, “us”) who act as data controllers[1] with respect to the personal data you share with CM Groups under this Notice.
The Sites include cmgroups.co.uk and additional websites, mobile applications or tools produced and managed by CM Groups that link to this Notice.
CM Groups knows that your privacy is important to you and takes user privacy very seriously. We are committed to protecting your personal data[2] (i.e. any information you provide to us from which you can be identified) in accordance with this Privacy Notice.
CM Groups reserves the right, at its sole discretion, to alter and update this Privacy Notice from time to time. We therefore invite you to review the current version of the Privacy Notice each time you return to our Sites.
Some terms are defined throughout this Notice. Simply click on the terms in bold to obtain their definition or refer to the definitions at the bottom of this Notice.
CM Groups might collect personal data from you such as your name, contact details, occupation, company or university affiliation, industry, region/country, relationship to CM Groups, reason for contacting CM Groups, topics you are interested in and any other information you choose to share. By browsing our Sites or sending us information, you explicitly consent to CM Groups processing your personal data in accordance with this Privacy Notice. CM Groups might use your personal data to fulfil your request, send you marketing communications, process your job application or manage your CM Groups membership.
CM Groups collects personal data from you when you request information from CM Groups and/or supply, information through the Sites, such as when you fill out a subscription form or consulting expertise inquiry, opt in to receive emails from CM Groups, agree to participate in surveys, join our Alumni community, or apply for a role at CM Groups.
Personal data we collect might include your name, e-mail address, title, occupation, company or university affiliation, industry, region/country, relationship to CM Groups, reason for contacting CM Groups, topics you are interested in, any other background information provided with an application and any other information you have otherwise provided to us.
We might also collect information about how you use our Sites in accordance with our Cookie Policy. Please note that CM Groups is governed by a separate Cookie Policy, which you can review here.
By browsing our Sites and submitting this information to us, you explicitly consent to CM Groups using your personal data for the purposes and in the manner described in this Privacy Notice. Please do not send us any information you do not wish CM Groups to use.
We may also rely on other legal grounds, such as our legitimate interests, to process your personal data as explicitly stated in other sections of this Privacy Notice.
CM Groups will use your personal data to fulfil your request, provide you with the information you requested and/or send you marketing communications. If you have applied for a job at CM Groups, your data will be processed for the purposes of evaluating and processing your application and candidacy for the position to which you have applied. We may also use your information to analyze and improve our recruiting and onboarding processes as well as to communicate with you about CM Groups events and to send you publications that we think may be of interest to you. More detail can be found in the Job Applicants section.
CM Groups may collect personal data and may disclose such information to third party service providers in aggregate for marketing and promotional purposes. However, in these situations, we do not disclose to these entities any information that could be used to personally identify you.
If you register as a member on CM Groups, your data will be processed for purposes including conducting alumni-specific mailings and surveys as well as maintaining and sharing marketing and career development contacts. Your data might also be visible to other CM Groups members.
You do not have to provide us with any personal data. However, if you do not, we may be unable to handle your request or to provide you with the services you are requesting.
CM Groups will keep your personal data for as long as needed to handle your request or for as long as we have a relationship with you. If you have applied for a role with CM Groups, CM Groups will keep your personal data associated with your application for a period of up to five years.
Please note that CM Groups is not responsible for any information you may disclose publicly in any chat rooms, message boards, or similar web pages, including those hosted on or linked to on our Sites. You should keep in mind that, whenever you publicly disclose information about yourself online (for example, via message boards or chat rooms), such information could be collected and used by people whom you do not know. In addition, certain message boards and similar user forums may display IP addresses along with the message poster’s name and message. CM Groups bears no responsibility for any action or policies of any third parties who collect any information users may disclose on the message boards, chat areas or other user forums, if any, on the Sites.
We may use cookies or other technology (“cookies”) to obtain certain types of information when you browse our Sites. You can find information about what data is collected and how it is used in our Cookie Policy.
Please note that the use of cookies on CM Groups is governed by a separate Cookie Policy, which you can review here.
We may share your personal data with other companies of the CM Groups group as well as with other third parties that might be located in a different country than your country of residence. CM Groups will not share or sell your data to any third party for their own use.
We may share your personal data with others, such as:
other offices in the CM Groups group – for a complete list of our offices, please refer to the Offices page of the cmgroups.co.uk website;
carefully selected third party service providers, such as marketing service providers (if you have subscribed to our marketing communications), IT systems providers, background check providers, data cleansing providers or event organizers, so they can provide services to CM Groups;
recruitment service providers, including to conduct AI-driven assessments;
our advisors;
other alumni members if you have chosen to take part in the Alumni network; and
law enforcement authorities or other government bodies when we are required to do so.
Third parties, other than law enforcement authorities or government bodies, will only handle your personal data on behalf of CM Groups for the purposes described in this Notice. Such third parties are required to adhere to the same data protection obligations as outlined in this Notice. They are carefully selected and only process personal data in compliance with our instructions. We ensure that all processors are bound by appropriate contractual obligations, including data protection and security standards, in line with applicable data protection laws. CM Groups will not sell or otherwise share your personal data with such third parties for their own use without your consent.
The companies of the CM Groups group and other third parties we share your information with may be located in other countries, including countries that do not offer the same protection to your personal data as the country in which you reside. Where that is the case, CM Groups ensures that your personal data is protected by using appropriate legal mechanisms. If you reside in the European Union, such mechanisms include using contracts or wording approved by the European Commission (called “Standard Contractual Clauses”)[3].
Our Sites may contain links to third party websites that are governed by their own terms and privacy policies. CM Groups does not bear any liability and responsibility for the content or your use of these websites.
The Sites may contain links to third party websites, including social network sites. Such websites are governed by their own terms of use and privacy policies, which you should review before browsing or submitting information to them. CM Groups is not responsible for the privacy practices of such websites. In addition, a link to a third party website does not mean that CM Groups endorses or accepts any responsibility for the content or the use of such website. CM Groups shall not bear any liability and responsibility for such content or for your use of these websites.
CM Groups has implemented appropriate technical and organizational security measures in order to protect your personal data from loss, misuse, alteration, or destruction.
CM Groups has implemented appropriate technical and organizational security measures in order to protect your personal data from loss, misuse, alteration, or destruction. Such measures include anonymizing [4] or pseudonymizing[5] data where possible. Authorized CM Groups personnel and third parties mentioned above will only have access to your personal data to the extent they need it to do their job or provide their services. Despite these precautions, however, CM Groups cannot guarantee that unauthorized persons will not obtain access to your information.
Depending on where you reside you might have the right to request access to, rectification or erasure of your personal data and to object to or ask for the restriction of the processing of your personal data. You might also have the right to withdraw your consent and request that we stop processing or delete your personal data.
To exercise your rights, please submit your request using our data subject request form.
Depending on where you reside, you may be entitled to certain rights regarding the personal data CM Groups holds about you. For instance, you may have the right to request access to your information, obtain a copy of it as well as information about how we use it. You have the right to request that we correct incorrect, inaccurate or out-of-date information about you. You may also have the right to request that we stop processing your information and/or withdraw your consent to such processing and to ask us to delete your information.
In the event that CM Groups holds personal data about you and you no longer wish for this data to be processed as described in this Notice, or if you wish to access, rectify, cancel or oppose such processing, please submit your request using our data subject request form.
If you receive marketing communications from CM Groups, you can opt out of receiving future emails from CM Groups or unsubscribe from participating in our programs through the “preferences” page, which is accessible in every marketing email you receive from CM Groups. You can also submit an opt-out request by using our data subject request form.
If you think we are handling your information unlawfully, we encourage you to get in touch with us using our data subject request form. You may also have the right to lodge a complaint with your national supervisory authority.
Please note that we will take reasonable steps to check your identity before handling your request.
Our websites may track visitors’ behavior so we can show ads, products or services specifically targeted to you. Some browsers have a “Do Not Track” feature that lets you tell every website you visit, their advertisers and content providers that you do not want your browsing behavior tracked. While your browser settings may allow you to automatically transmit a “Do Not Track” signal to websites and online services you visit, we are not able to respond to “Do Not Track” requests.
If you apply for a job at CM Groups, you will be asked to submit information to CM Groups such as your name, contact details, information about your education and work history and any other background information that might be relevant for your application or that you choose to share with CM Groups. We may also process information gathered as part of interviews and other interactions with you as well as assessments (please see below for more information on these assessments). If you do not provide this information to us, we might not be able to process your application.
CM Groups will use this information to assess your application and candidacy for the position to which you have applied. Without limiting the generality of the foregoing, this may include: (i) evaluating your skills and experience in relation to the qualification required for the job to which you have applied; and (ii) tracking feedback and interactions we have with you throughout the recruiting process. We may also use your information when analyzing our internal recruiting processes to determine (i) which recruit sources to focus on; (ii) how to improve integration and training programs for new hires with different educational backgrounds and work experience; and (iii) how to enhance our interview model and assessments to improve hiring quality. The information you provide may also be used to communicate with you about CM Groups events and to send you publications that we think may be of interest to you.
We process your personal data based on the following legal grounds:
Legitimate interests: for purposes like assessing your application, managing our relationship with you and improving services or recruitment processes, provided our interests are not overridden by your rights;
Contractual or pre-contractual necessity: to fulfill our contract with you or to take measures prior to entering into an employment contract with you;
Legal obligation: for instance, to verify your right to work;
Consent: where you agree to participate in optional recruiting activities or in jurisdictions requiring explicit consent, especially for sensitive data or automated decision-making.
We may use automated tools, such as assessment platforms, to evaluate certain aspects of your application (e.g., cognitive and skill-based assessments). Some of these tools may use artificial intelligence (“AI”). Depending on the office(s) you apply to, the scores obtained with such tools may be considered alongside other factors in our decision-making process.
Personal data processed through these tools will be handled in compliance with all applicable laws including but not limited to the General Data Protection Regulation (“GDPR”), the California Consumer Privacy Act (“CCPA”), the California Privacy Rights Act (“CPRA”), and New York City’s Automated Employment Decision Tools (AEDT) Law, ensuring secure storage and processing. In California, candidates may have the right to request information about how AI influences their application, to opt out of automated processing, and to contest decisions.
Due to the high volume of applications received, we might also use automated tools to assist with recruitment decisions for certain consulting roles in some of our offices. In such cases, we might rely on internally developed algorithms to help evaluate your application and decide whether your candidacy should progress to the next stage. These tools apply predefined criteria relevant to the role, such as education, qualifications, skills, experience and/or assessment results. In some cases, decisions may be made solely on the basis of these automated tools, meaning that if your application does not meet certain criteria, it may be automatically rejected without further human review. Where this occurs, you have the right to obtain meaningful information about the logic involved in the decision, request human intervention, express your point of view and contest the decision. To exercise these rights, please complete the data subject request form.
We might share your personal data with other companies in the CM Groups group as well as with third parties such as recruitment service providers (including AI and other assessment platforms), background check providers and IT system providers. These CM Groups companies and third parties might be located in a different country than your country of residence. In particular, your data will be stored in a third-party database hosted by Avature LLC in the Netherlands.
We will keep your application data for up to five years. If you no longer wish for CM Groups to process your data or if you wish to exercise your rights, please complete the data subject request form.
Our Sites are not directed at children 16 years of age or younger. CM Groups, therefore, will not intentionally collect information about anyone under the age of 16, and requests that no such information be submitted to us.
If you have any questions about this Privacy Notice or how CM Groups handles your personal data, please complete the data subject request form.
You can contact following:
CONSULTANT & MANAGEMENT GROUP LTD
Company Registration Number: 07960732
Registered office: The Picasso Building, Caldervale Road, Wakefield, West Yorkshire, United Kingdom, WF1 5PF
Definitions
1. The data controller is the person or company that, together or jointly with others, determines the purposes (why) and means (how) of the processing of personal data.
2. Personal data is any information that relates to an individual who is identified or identifiable, for instance by reference to a name, an identification number or an online identifier.
3. Standard Contractual Clauses are an agreement that can be entered into by companies for transfers of personal data outside of the European Union. They are a mechanism approved by the European Commission to ensure adequate safeguards to personal data when it is transferred outside of the European Union.
4. Anonymizing means transforming data in such a way that it is no longer identifiable, i.e. the data can no longer be linked to an individual, even if combined with other information. Anonymous data is not considered “personal data”.
5. Pseudonymizing means transforming data in such a way that it is no longer identifiable without the use of additional information. Pseudonymous data is still considered “personal data”.