C75686B1-FD29-4CD8-B424-8D784E8B06E1376F3212-9609-49DB-9D09-E84DD839F9A0





Xanadu Recruitment Privacy Policy

Xanadu Recruitment Privacy Policy

Last Updated: 16 December 2025

This Recruitment Privacy Policy (the “Policy”) describes how Xanadu Consultancy Ltd (“Xanadu”, “we,” “us,” or “our”) collects, uses, and shares the personal data of job applicants, candidates, and prospective employees (“you”) through our recruitment website, careers pages, and during the application and recruitment process.

We are committed to protecting the privacy and security of your personal data and complying with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

1. Data Controller

Xanadu is the data controller responsible for the personal data collected under this Policy.

Contact Details:

Company Name: Xanadu
Address: Floor 2 River House, Blackpool Retail Park, Cork, T23 R5TF, Ireland
Email: recruitment@xanadu.ie

2. What Personal Data Do We Collect?

We may collect and process various categories of personal data from you during the recruitment process.

A. Information You Provide to Us

  • Identification and contact data
  • Professional and educational data
  • Application-specific data
  • References
  • Interview and assessment data
  • Website usage data

B. Information We Collect from Other Sources

  • Professional networking sites
  • Recruitment agencies
  • Background check providers
  • Referees

C. Sensitive Data (Special Categories of Personal Data)

  • Health information
  • Diversity and equal opportunities data

3. Lawful Basis for Processing (GDPR Article 6 & 9)

Legitimate Interests
Processing is necessary for recruiting suitable candidates and managing recruitment.

Pre-Contractual Steps
Processing necessary prior to entering an employment contract.

Legal Obligation
Processing required to comply with legal and regulatory obligations.

Consent
Processing special category data and retention for future opportunities.

4. How We Use Your Personal Data

  • Managing recruitment and applications
  • Equality and diversity monitoring
  • Legal and regulatory compliance
  • Onboarding successful candidates
  • Considering candidates for future opportunities

5. Sharing Your Personal Data

  • Internal recruitment and HR teams
  • Third-party service providers
  • Legal or regulatory authorities

6. International Data Transfers

Your data is primarily processed within the European Economic Area (EEA). Appropriate safeguards are applied for any transfers outside the EEA.

7. Data Security

We apply appropriate technical and organisational security measures to protect personal data.

8. Data Retention

Personal data is retained only for as long as necessary to meet legal, regulatory, and recruitment requirements.

9. Your Rights (Data Subject Rights)

  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restrict processing
  • Right to data portability
  • Right to object
  • Right to withdraw consent

10. Contact Details

Email: dataprivacy@matchbook.com

Data Protection & Privacy Officer
Floor 2 River House
Blackpool Retail Park
Cork, T23 R5TF
Ireland

Alternative contact: phil@enable-iso.com

11. Changes to This Policy

This Policy may be updated periodically. Changes will be posted with an updated “Last Updated” date.