MyRef understands that your privacy is important to you and that you care about how your personal data is used. We respect and value the privacy of everyone who visits this website, www.MyRef.Online our site will only collect and use personal data in ways that are described here below, and in a way that is consistent with our obligations and your rights under law. We fully comply with the GDPR guidelines in storing, processing and protecting your personal data.


Owner and Data Controller


MyRef LTD – Data Controller
Address: 71-75 Shelton Street, Covent Garden, London WC2H 9JQ, United Kingdom

Owner contact email:


Types of Data collected


MYREF collects data when you register and use our platform. Including information related to previous employment and where a previous employer elects to provide this information related to an individual’s line managers at work. Personal Data may be freely provided by the User.

Please note that by submitting information about yourself through our website you are agreeing for MYREF to process and store that data. The data you submit to our website will never be shared with or transferred to a third-party organisation.



MyRef has implemented generally accepted standards of technology and operational security in order to protect personally identifiable data and information from loss, misuse, alteration or destruction. In particular, we ensure that all appropriate confidentiality obligations and technical and organisational security measures are in place to prevent any unauthorised or unlawful disclosure or processing of such information and data and the accidental loss or destruction of or damage to such information and data.


Use of data


Personal data may be used for any or all of the following purposes:



Where is the information held?


The Data is processed and stored using Microsoft Azure Cloud Services at one of Microsoft’s data centres in West Europe.

Depending on the User's location, data transfers may involve transferring the User's Data to a country other than their own.


How long do we hold information for?


Personal Data shall be processed and stored for as long as required by the purpose they have been collected for.


·         Personal Data collected for purposes related to the performance of a contract between the Owner and the User shall be retained until such contract has been fully performed.

·         Personal Data collected for the purposes of the Owner’s legitimate interests shall be retained as long as needed to fulfil such purposes. Users may find specific information regarding the legitimate interests pursued by the Owner within the relevant sections of this document or by contacting the Owner.

The Owner may be allowed to retain Personal Data for a longer period whenever the User has given consent to such processing, as long as such consent is not withdrawn. Furthermore, the Owner may be obliged to retain Personal Data for a longer period whenever required to do so for the performance of a legal obligation or upon order of an authority.

Once the retention period expires, Personal Data shall be deleted. Therefore, the right to access, the right to erasure, the right to rectification and the right to data portability cannot be enforced after expiration of the retention period.


The purposes of processing


The Data concerning the User is collected to allow the Owner to provide its service, comply with its legal obligations, respond to enforcement requests, protect its rights and detect any malicious or fraudulent activity.


1)      Important Information


a.      We do not knowingly collect information which relates to children and our website is not intended for children.

b.      This Privacy Policy complements the other notices (including our terms of use (Terms)) and was not created to supersede them.

c.       We are the information controller and accountable for your personal information.


2)      Your responsibility to inform us of updates


a.      It is imperative that the information we have about you is correct


3)      The information we collect about you


a.      Part 1 of Schedule provides you with the types of personal information we are likely to collect, use, store & transfer


4)      Failure to provide personal information


a.      If you fail to provide the necessary information it would be impossible to provide the service to you and you would benefit from it either


5)      How information is collected


a.      We gather information via the registration screen and through the use of the referencing service and inputting details


6)      Marketing


a.        From time to time, we may examine your personal information to ascertain what products and or services we think may be of interest to you.

  1. We do not sell any customer lists, accept advertising or profit from any third-party revenue based on the information gathered on this website.


7)      How to opt out


a.      You can remove your consent from receiving marketing emails by clicking the unsubscribe button within the specific marketing message. You can also remove your consent to marketing at any time by contacting our DPM.



8)      Change of Purpose


a.                  Your personal information will only be used for the reason it was initially collected for.


9)      Disclosure of your personal information


a.      We will not be sharing your personal information with any third parties.


10)  Information Security


a.      Your personal data is held in the highest regard and we do our utmost to ensure it is kept secure. Nonetheless, please note that no security system, however advanced, can provide guaranteed safety all of the time.


11) Your Legal Rights


a.      You have certain rights in certain situations under data protection law.

b.      You will not have to pay a fee to exercise any of your rights.


12) Changes to this Privacy Policy


a.      Any changes to this Policy will be communicated with you once they have been finalised. We recommend revising the policy in order to familiarise yourself with its contents.