Learn more about what each cookie category does and choose your settings
Cookie policy
Strictly Necessary
Name
__RequestVerificationToken
Duration
Session
Description
Anti-forgery Token
Name
ASP.NET_SessionId
Duration
Session
Description
General purpose platform session cookie, used by sites written with Miscrosoft .NET based technologies. Usually used to maintain an anonymised user session by the server.
Name
NTX_Cookie_Preferences_Live
Duration
6 Months
Description
Your cookie preferences
Performance / Analytics
Name
_ga
Duration
2 Years
Description
This cookie name is associated with Google Universal Analytics - which is a significant update to Google's more commonly used analytics service. This cookie is used to distinguish unique users by assigning a randomly generated number as a client identifier. It is included in each page request in a site and used to calculate visitor, session and campaign data for the sites analytics reports. By default it is set to expire after 2 years, although this is customisable by website owners.
Name
_gat
Duration
A few seconds
Description
This is a pattern type cookie set by Google Analytics, where the pattern element on the name contains the unique identity number of the account or website it relates to. It appears to be a variation of the _gat cookie which is used to limit the amount of data recorded by Google on high traffic volume websites.
Name
_gid
Duration
1 Day
Description
This cookie name is asssociated with Google Universal Analytics. This appears to be a new cookie and as of Spring 2017 no information is available from Google. It appears to store and update a unique value for each page visited.
Name
NetworxTracking_AdvertClick
Duration
90 Days
Description
Used for tracking if the candidate has already clicked the advert - used for analytics
Name
NetworxTracking_AdvertLoad
Duration
90 Days
Description
Used for tracking if the candidate has already loaded the advert - used for analytics
Functional Cookies
Name
ApplicationIntroductionID
Duration
90 Days
Description
Check to see if the candidate has already read the introduction for the Application
Name
FavouriteVacancies
Duration
30 Days
Description
Store any jobs the candidate has flagged as a favourite
This is a Permanent, Full Time vacancy that will close in {x} days at {xx:xx} BST.
The Vacancy
Overall Job Purpose
The CRM Data Governance Manager will ensure all Salesforce platforms are adhering and meeting the company’s data standards, including, but not limited to, UK GDPR and Data Protection Act 2018. They will work closely with data architecture, development teams, and solution design colleagues to ensure all data related to new features and releases is being managed effectively. Data security will also form part of this role, ensuring the correct access levels on the platform have been implemented.
This role will be a key point of contact for any queries related to the handling of data within the Salesforce platforms.
Accountabilities
Ensuring Salesforce platforms are adheading to data standards, including GDPR
Utilising current information management principles, overseeing the implementation of ongoing data management processes
Develop relationships with other Data Protection Officers and provide advice and mentorship to the same across Vitality to share knowledge and best practices
Knowledge of data architecture, ensuring data can be correctly handled within the architecture being implemented
Logging all new data items, across multiple project streams, within Salesforce platforms with data protection teams, and ensuring business data standards are being met
Work with business stakeholders to share knowledge of data protection standards, assisting to align these with business processes
Ongoing analysis of all data processes within Salesforce, regularly reporting to senior management on any risks. Recommending projects or bug fixes which need to be implemented to resolve any risks. Supporting these projects throughout to ensure the risk is removed, resolved or mitigated
Ensure you understand and adhere to our Code of Conduct and where appropriate, comply with all relevant regulatory policies and mandatory training requirements
Skills Required
Essential
Educated to degree level, or equivalent experience
Experience working on Salesforce products, implementing data processes or overseeing data protection standards
Confident stakeholder management style, with expertise in managing ongoing data protection monitoring processes, including regular reporting
Has attained several Salesforce certifications, either in advanced administration or development, and also consultant fields
Working experience across marketing, sales and servicing capabilities, preferably in an insurance or financial service sector
Advanced investigative, analytical and logical problem solving skills
Desirable
Experience working in the insurance or financial services sector
About Us
Vitality is an award-winning, dynamic and vibrant financial services provider, with a ground-breaking vision for the future, where individuals are enabled to succeed and are rewarded and recognised for their contribution to our business. We’re the UK insurer and investment provider that rewards people for positive lifestyle choices – a key element of our Shared-value model. With 1.4m UK members and more than 25m globally, we’re out to make the world a healthier, happier place. This applies as much to our people as it does to our members.
Working for Vitality, you'll experience an exciting mix of creativity and innovation, within a framework of challenging objectives and a passion for delivering the best. We think work should be fun and sociable, and we want our people to get the most out of every day. Our people are chosen for their skills, knowledge, enthusiasm and attitude but above all, their belief that anything can be achieved. Wherever possible, we will consider a variety of working options to suit your lifestyle, whether that be hybrid home/office working, flexible working and part or full time employment. It’s what we call offering shared values, because a healthy happy team is good for us, good for our members and good for you.
Working for Vitality, you'll experience an exciting mix of creativity and innovation, within a framework of challenging objectives and a passion for delivering the best. We think work should be fun and sociable, and we want our people to get the most out of every day. Our people are chosen for their skills, knowledge, enthusiasm and attitude but above all, their belief that anything can be achieved. Wherever possible, we will consider a variety of working options to suit your lifestyle, whether that be working from home, flexible working and part or full time employment. It’s what we call offering shared values, because a healthy happy team is good for us, good for our members and good for you.
Our People
Our Perks
As well as a highly competitive pay package, you’ll enjoy: Free places to Vitality sponsored run events, online fitness classes and wellbeing workshops, competitions to win tickets to top-flight sporting events, health checks and access to our full range of partners and rewards.
At Vitality, we are committed to diversity and inclusion because it’s good for our employees, for our business, and for society. This means we treat all job applicants fairly and welcome applications from all communities and affinity groups.
If you want to find out more about our values, our people and our commitments visit our careers site here below:
You Have already applied for this vacancy, please go to your account to see your progress.
Privacy Policy
As defined by the General Data Protection Regulation (GDPR) Vitality, Marshall Point, 4 Richmond Gardens, Bournemouth, Dorset is the Data Controller and ultimately responsible for ensuring the data you provide is kept secure, processed correctly and that you understand your legal rights in relation to the data you provide. As part of our Data Controller responsibilities we have an assigned Data Protection Officer (or equivalent). Larry Coker can be contacted at Larry.Coker@vitality.co.uk
The recruitment software we use via this website is supplied by Net-Worx (2001) Ltd (trading as networx) and they are defined as a Data Processor under the GDPR. They will only process your data in accordance with our instructions.
networx can be contacted at: The Engine House, Wharfebank Business Centre, Ilkley Rd, Otley LS21 3JP.
Privacy notice for employees, workers and contractors
Vitality Corporate Services Limited (VCSL) is committed to protecting the privacy and security of your personal information.
VCSL is a ‘data controller’. This means that we are responsible for deciding how we hold and use personal information about you.
This privacy notice describes how we collect and use personal information about you during and after your working relationship with us, in accordance with the UK General Data Protection Regulation (GDPR) and the Data Protection Act 2018.
It applies to all employees, workers and contractors. This notice does not form part of any contract of employment or other contract to provide services. We may update this notice at any time. It is important that you read this notice, together with any other privacy notice we may provide on specific occasions when we are collecting or processing personal information about you, so that you are aware of how and why we are using such information.
Data protection principles
We will comply with data protection law. This says that the personal information we hold about you must be:
Used lawfully, fairly and in a transparent way.
Collected only for valid purposes that we have clearly explained to you and not used in any way that is incompatible with those purposes.
Relevant to the purposes we have told you about and limited only to those purposes.
Accurate and kept up to date.
Kept only as long as necessary for the purposes we have told you about.
Kept securely.
What information do we hold about you?
We collect and processes a range of information about you. This may include:
your full name, address and contact details, including email address and telephone number, date of birth and gender;
employment records including job titles, work history, working hours, training records and professional memberships;
details of your qualifications, skills, experience and employment history, including start and end dates, with previous employers and with the organisation;
information about your remuneration, including entitlement to benefits such as pensions or insurance cover;
details of your bank account, national insurance number and tax status information;
information about your marital status, next of kin, dependants and emergency contacts;
recruitment information, including copies of your right to work documentation, references and other information included in a CV or cover letter or as part of the application process;
copy of your driving licence;
location of employment or workplace
private medical membership details
details of your schedule, such as days of work and working hours and attendance at work;
details of periods of leave taken by you, including holiday, sickness absence, family leave and sabbaticals, and the reasons for the leave;
details of any disciplinary or grievance procedures in which you have been involved, including any warnings issued to you and related correspondence;
assessments of your performance, including appraisals, performance reviews and ratings, training you have participated in, performance improvement plans and related correspondence;
details on potential conflicts of interest
We may also collect, store and use the following ‘special categories’ of more sensitive personal information.
equal opportunities monitoring information, including information about your ethnic origin, sexual orientation, health and religion or belief;
trade union membership
information about medical or health conditions, including whether or not you have a disability for which the organisation needs to make reasonable adjustments;
genetic information and biometric data;
information about criminal convictions and offences, including in some cases adverse media checks, financial sanctions and money laundering checks
information about your financial record, including any live CCJ’s or IVA’s;
photographs;
information about your use of our information and communications systems
How do we collect this data?
We collect this information in a variety of ways. For example, data is collected through the application and recruitment process, either directly from candidates or sometimes from an employment agency or background check provider. We may sometimes collect additional information from third parties including former employees, credit reference agencies or other background check agencies.
Data is stored in a range of different places, including in your personnel file, in the organisation's HR management systems and in other IT systems, including the organisation's email system.
When will we use information about you?
We will only use your personal information when the law allows us to. Most commonly, we will use your personal information in the following circumstances:
Where we need to perform the contract we have entered into with you.
Where we need to comply with a legal obligation.
Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
We may also use your personal information in the following situations, which are likely to be rare:
Where we need to protect your interests (or someone else's interests).
Where it is needed in the public interest or for official purposes.
Primarily we use your data to allow us to perform our contract with you and to enable us to comply with legal obligations. For example, we may need to process your data to provide you with an employment contract, to pay you in accordance with your contract and to administer benefits, pension and insurance entitlements.
The situations in which we will process your personal data are listed below:
To run recruitment or appointment processes, including the appropriate screening checks;
determining the terms on which you work for us;
checking you are legally entitled to work in the UK;
paying you, and if you are an employee, deducting tax and National Insurance contributions;
maintaining accurate and up-to-date contract records and contact details including details of who to contact in the event of an emergency, and if you are an employee, your contractual and statutory rights;
to operate and keep a record of disciplinary and grievance processes, to ensure acceptable conduct within the workplace;
to operate and keep a record of performance and related processes, to manage performance and determining performance requirements;
managing sickness absence;
ascertaining fitness to work, which may involve obtaining occupational health advice;
to operate and keep a record of other types of leave (including maternity, paternity, adoption, parental and shared parental leave), to allow effective workforce management, to ensure that the organisation complies with duties in relation to leave entitlement, and to ensure that employees are receiving the pay or other benefits to which they are entitled;
administering the contract we have entered into with you;
to provide references on request for current or former employees;
to respond to and defend against legal claims involving you, or other employees, workers and contractors, including accidents at work;
to maintain and promote equality in the workplace;
providing private health insurance to you;
liaising with your pension provider;
business management and planning, including accounting and auditing;
making decisions about salary reviews and compensation;
assessing qualifications for a particular job or task, including decisions about promotions;
making arrangements for the termination of our working relationship;
education, training and development requirements;
complying with health and safety obligations’
to prevent fraud;
to monitor your use of our information and communication systems to ensure compliance with our IT policies;
to ensure network and information security, including preventing unauthorised access to our computer and electronic communications systems
to enable business continuity processes;
equal opportunities monitoring;
to enable data analysis to review and better understand employee metrics
How we use particularly sensitive personal information
“Special category” information requires higher levels of protection. We need to have further justification for collecting, storing and using this type of personal information. We may process special categories of personal information in the following circumstances:
In limited circumstances, with your explicit written consent.
Where we need to carry out our legal obligations and in line with our data protection policy.
Where it is needed in the public interest, such as for equal opportunities monitoring or in relation to our occupational pension scheme, and in line with our data protection policy.
Where it is needed to assess your working capacity on health grounds, subject to appropriate confidentiality safeguards.
Less commonly, we may process this type of information where it is needed in relation to legal claims or where it is needed to protect your interests (or someone else's interests) and you are not capable of giving your consent, or where you have already made the information public.
We will use your sensitive personal information in the following ways:
information relating to criminal convictions during pre-employment/appointment screening to make a decision on your recruitment or appointment and to assess you fitness and propriety to perform your role;
information relating to leaves of absence, which may include sickness absence of family related leaves
information about health or medical conditions, is processed to carry out employment law obligations, such as those in relation to employees with disabilities and for health and safety purposes;
information about trade union membership is processed to allow the organisation to operate check-off for union subscriptions; and
information about ethnic origin, sexual orientation, health or religion or belief, is processed for the purposes of equal opportunities monitoring. Data we use for these purposes is anonymised or is collected with the express consent of employees, which can be withdrawn at any time. Employees are entirely free to decide whether or not to provide such data and there are no consequences of failing to do so.
Do we need your consent?
We do not need your consent if we use special categories of your personal information in accordance with our written policy to carry out our legal obligations. In limited circumstances, we may approach you for your written consent to allow us to process certain particularly sensitive data. If we do so, we will provide you with full details of the information that we would like and the reason we need it, so that you can carefully consider whether you wish to consent. You should be aware that it is not a condition of your contract with us that you agree to any request for consent from us.
What if you do not provide personal data?
You have some obligations under your employment contract to provide the organisation with data. In particular, you are required to report absences from work and may be required to provide information about disciplinary or other matters under the implied duty of good faith. You may also have to provide the organisation with data in order to exercise your statutory rights, such as in relation to statutory leave entitlements. Failing to provide the data may mean that you are unable to exercise your statutory rights.
Certain information, such as contact details, your right to work in the UK and payment details, have to be provided to enable the organisation to enter a contract with you. If you do not provide other information, this will hinder the organisation's ability to administer the rights and obligations arising as a result of the working relationship efficiently
Data Sharing
Your information may be shared internally, including with:
members of the HR and recruitment team, including payroll;
your line manager;
managers in the business area in which you work;
IT staff, if access to the data is necessary for performance of their roles;
other internal teams who require this for the performance of their roles, such as teams who administer our staff PMI scheme and business continuity teams
Your information may be shared with third parties for the purpose of:
obtaining pre-employment references;
obtaining employment background checks;
immigration advice;
obtaining the necessary criminal records checks from the Disclosure and Barring Service;
processing the payroll;
pension administration;
benefits administration, including life insurance, private medical insurance, income protection;
engaging with occupational health
archiving your employee record
enabling business continuity processes;
processing a sale of parts, or all of the business. In those circumstances the data will be subject to confidentiality arrangements; and
providing the regulator with required information or to otherwise comply with the law.
All our third-party service providers and other entities in the group are required to take appropriate security measures to protect your personal information in line with our policies. We do not allow our third-party service providers to use your personal data for their own purposes. We only permit them to process your personal data for specified purposes and in accordance with our instructions. A list of our current data controllers/processors can be found at Annex 1.
We may transfer your personal information to South Africa for the purposes of setting up IT accounts. If we do, you can expect a similar degree of protection in respect of your personal information.
How do we protect your data?
We take the security of your data seriously. To that end we have internal policies and controls in place to try to ensure that your data is not lost, accidentally destroyed, misused or disclosed, and is not accessed except by its employees in the performance of their duties.
Where we engage with third parties to process personal data on our behalf, they do so on the basis of written instructions, are under a duty of confidentiality and are obliged to implement appropriate technical and organisational measures to ensure the security of data.
How long do we keep your data?
We will hold your personal data for the duration of your contract with us. The periods for which your data is held after the end of the contract are set out in the Information Retention Schedule.
In some circumstances we may anonymise your personal information so that it can no longer be associated with you, in which case we may use such information without further notice to you.
Your rights
As a data subject, you have a number of rights. You can:
Request access to your personal information (commonly known as “data subject access request”);
Request correction to change incorrect or incomplete data;
Request erasure to delete or stop processing your data, for example where the data is no longer necessary for the purposes of processing;
Object to the processing of your data where the organisation (or those of a third party) is relying on its legitimate interests as the legal ground for processing. You also have the right to object where we are processing your personal information for direct marketing purposes; and
ask the organisation to stop processing data for a period if data is inaccurate or there is a dispute about whether or not your interests override the organisation's legitimate grounds for processing data;
Request the transfer of your personal information to another party;
Right to withdraw consent
If you would like to exercise any of these rights, please contact HR, hr@vitality.co.uk, St Christopher House, 217 Wellington Road South, Stockport, SK2 6NG.
If you have any questions about this privacy notice, please contact HR.
Annex 1
Data controllers and processors
Third Party
Relationship
Purpose
Statutory obligation or contract
Networx
Processor
Recruitment
Contract
Success Factors
Processor
HR and payroll system
Contract
Epi-Use
Processor
Payroll provider
Contract
Reed
Processor
Employment screening
Contract
Prudential
Processor
Pension provider
Contract
Standard Life
Processor
Pension provider
Contract
Vitality PMI
Processor
Health insurance
Contract
HMRC
Controller
Tax
Statutory obligation
iThrive
Processor
Learning platform
Contract
Inntel
Processor
Travel booking system
Contract
Webexpenses
Processor
Expenses management
Contract
Social Login
To continue creating your account, please read the privacy policy and tick the box below
To complete creating your profile with , please read and agree with the privacy policy.
The email used for your profile is not a valid company domain name. In order to
continue to create your profile with you will need to select a profile which uses a company authorised email address.
