You are currently not logged in. Any progress made will be lost.

Transferring Data 

As a recruiter you will transfer data to and from clients and care has to be taken to keep this data secure. It is best practice to transfer the least amount of data so that if a data security breach occurs the minimum amount of information is at risk of being accessed or used by unauthorised persons.

Data being sent to you from clients, such as a client database, should be sent to you encrypted and any passwords sent in a separate email or another mode of communication. Any personal data or sensitive personal data should be sent encrypted.

When you are transferring personal data to a client you should use a method that has adequate security measures e.g. file transfer protocols (FTP).  Well known websites may not be suitable for the transfer of personal data and data transferred via such mechanisms may result in data being transferred outside the EU/EEA.


Some companies may require you to use their own file transfer protocol system.


It is the client’s responsibility to transfer personal data to venues if they have booked the venue. It is also the client’s responsibility to ensure that they have an agreement with the venue to ensure that  data is collected, processed and retained in accordance with the Data Protection Act and that the data will only be used for the purpose it is intended.

The transfer of personal data outside the EU or EEA has very specific requirements and it is advisable to make sure that you are allowed to transfer the personal data of EU nationals before you take on a project for a client outside these areas. This applies even if the research itself takes place in the UK.