AURA Care – Norfolk, United Kingdom
Effective Date: September 2025

At AURA Care, we are committed to protecting the personal data of all employees in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This privacy notice explains how we collect, use, store, and protect the personal information of our employees, agency staff, and contractors working within our organisation.

During the course of your employment or engagement with AURA Care, we collect and process personal data that is necessary to manage the employment relationship, fulfil legal obligations, and ensure safe, effective care operations. This includes information such as your name, address, contact details, date of birth, National Insurance number, emergency contacts, bank details, job title, employment history, training records, qualifications, DBS checks, disciplinary records, absence data, payroll information, and health-related data where relevant for occupational health, sick leave, or risk assessments.

We process your personal data to carry out human resources functions such as recruitment, contract administration, performance management, payroll, pensions, training compliance, safeguarding obligations, and legal reporting. Certain sensitive data (such as health or criminal record information) is processed under strict legal conditions where necessary to comply with employment law, ensure workplace safety, or safeguard service users under our care.

All personal data is securely stored, accessed only by authorised personnel, and retained in accordance with legal and regulatory requirements. We use secure HR systems and encrypted digital storage where possible, and we take appropriate technical and organisational measures to protect against loss, misuse, or unauthorised access.

We will not share your information with third parties except where required by law, such as with HM Revenue & Customs, the Disclosure and Barring Service (DBS), the Care Quality Commission (CQC), local authorities, pension providers, or where necessary for payroll and benefits administration. Where third-party providers are used, we ensure appropriate data protection agreements are in place.

As a data subject, you have rights under UK GDPR, including the right to access the personal data we hold about you, request corrections, object to or restrict processing, request data erasure where appropriate, and raise complaints with the Information Commissioner’s Office (ICO) if you believe your data has been mishandled.

If you have any questions about how your data is used or wish to exercise your rights, you can contact:

Data Protection Officer – AURA Care
Email: info@theauracare.co.uk
Address: Great Yarmouth, Norfolk, United Kingdom

This privacy notice will be reviewed regularly and updated to reflect changes in legislation or operational practices.