Employee Privacy Notice

At AURA Care, we value the trust you place in us as part of our team. Protecting your personal information is a responsibility we take seriously, and we are committed to handling your data with transparency, care, and respect. This FAQ explains how we collect, use, and safeguard your information during your employment or engagement with us.

What laws govern how AURA Care handles my data?

We comply with the UK GDPR and the Data Protection Act 2018 to ensure your personal information is protected.

Whose data does this notice cover?

  • Employees

  • Agency staff

  • Contractors working with AURA Care

What personal data do you collect?

We collect information needed to manage your employment and ensure safe care operations, including:

  • Name, address, contact details, date of birth

  • National Insurance number, emergency contacts, bank details

  • Job title, employment history, training records, qualifications

  • DBS checks, disciplinary records, absence data, payroll information

  • Health data (only where relevant for occupational health, sick leave, or risk assessments)

Why do you process my data?

We use your data to manage HR functions such as:

  • Recruitment and contracts

  • Payroll and pensions

  • Training and compliance

  • Performance management

  • Safeguarding obligations

  • Legal and regulatory reporting

Sensitive data (e.g., health or criminal record information) is processed only under strict legal conditions  to comply with employment law, ensure workplace safety, or safeguard service users under our care. 

How is my data stored and protected?

  • Secure HR systems and encrypted digital storage

  • Access limited to authorized personnel

  • Retention in line with legal and regulatory requirements

  • Technical and organizational safeguards against loss, misuse, or unauthorized access

All personal data is securely stored, accessed only by authorised personnel, and retained in accordance with legal and regulatory requirements.

Do you share my data with third parties?

We only share data when legally required or necessary, for example with:

  • HM Revenue & Customs

  • Disclosure and Barring Service (DBS)

  • Care Quality Commission (CQC)

  • Local authorities

  • Pension providers

  • Payroll and benefits administrators

All third‑party providers must have appropriate data protection agreements in place.

What rights do I have under UK GDPR?

You have the right to:

  • Access the personal data we hold about you

  • Request corrections

  • Object to or restrict processing

  • Request erasure of data (where appropriate)

  • Raise complaints with the Information Commissioner’s Office (ICO) if you believe your data has been mishandled

Who can I contact with questions or requests?

If you have questions about how your data is used or wish to exercise your rights, please contact AURA Care’s data protection team.

Data Protection Officer – AURA Care
Email: info@theauracare.co.uk
Address: Great Yarmouth, Norfolk, United Kingdom