We operate as a data controller in accordance with current data protection legislation. The purpose of processing users' personal data is to manage and facilitate the recruitment of employees to our company.
2. Collection of personal data
We are responsible for the processing of Service-related personal data provided by users through the Service or collected in other ways.
When and how we collect personal data
We collect users' personal data when users;
- make an application through the Service or otherwise by adding personal information about themselves, either by themselves or by using a third-party source such as Facebook or LinkedIn; and
- use the Service to contact our staff by adding personal information about themselves, either by themselves or by using a third-party source such as Facebook or LinkedIn.
- provide identifying information in chat (accessible through the website using the Service) and that information is relevant to the application process;
We collect information from third parties such as Facebook and LinkedIn and through other public sources. This is referred to as "procurement" and can be carried out either manually by our employees or automatically in the Service.
Collected and processed personal data
The categories of personal data collected through the Service can be used to identify natural persons from names, e-mail addresses, pictures and videos, information from Facebook and LinkedIn user accounts, answers to questions asked during recruitment, titles, education and other information that the user or others have provided through the Service. Only information relevant to the recruitment process is collected and processed.
Purpose and legality of processing personal data
The purpose of collecting and processing personal data is to manage recruitment. The legality of personal data processing is based on our legitimate interest in simplifying and facilitating recruitment.
Personal data, the purpose of which is to perform an overall analysis or market research, is always made non-identifiable. No specific user can be identified from such information. For this reason, such information is not considered personal information.
Consent of the registered user
The user consents to the processing of their personal data for the recruitment purposes of the controller. The user agrees that their personal data is collected through the Service when the user:
- makes an application through the Service adding personal data about themself either themself or by using a third-party source such as Facebook or LinkedIn, and that the data controller can use external acquisition tools to add additional data; and
- when they use the Service to contact the controller's recruitment department, adding personal information about themself, either by themself or by using a third-party source such as Facebook or LinkedIn.
The user also agrees that the data controller collects publicly available information about the user and compiles it to be used for recruitment purposes.
The user agrees that personal data is a) collected in accordance with the above-mentioned conditions and b) and processed in accordance with the sections "Storage and transfer" and "How long will personal data be used" below.
The user has the right to withdraw their consent at any time by contacting the controller using the contact information mentioned in section 9. However, exercising this right may mean that the user cannot apply for a specific job or otherwise use the Service.
Storage and transfer
The personal data used in the Service is stored and processed within the EU/EEA in a third country that the European Commission believes can guarantee an adequate level of protection, or is processed by suppliers who have entered into such binding agreements that fully comply with the legislation on transfers to third countries (such as Privacy Shield) or transfer the information to other suppliers who use adequate safeguards to protect the data subject's rights. To obtain such safeguards documents, please contact us using the contact information provided in section 9.
How long will personal data be used
If the user does not object to the processing of their personal data in writing, the personal data will be stored and processed by us for as long as we deem it necessary for the purposes mentioned above. Please note that the applicant (user) may be of interest for subsequent recruitment, in which case we may retain users' personal data until they no longer have value as potential recruits. If you, as a user, do not want your personal data to be stored for such a purpose (for later recruitment), contact us using the contact information mentioned in section 9.
3. User's rights
The user has the right to request information related to the personal data we process in writing using the contact information mentioned in section 9. The user has the right to one (1) free copy of the processed personal data. For the additional copies requested, the controller has the right to charge a reasonable fee based on the administrative costs arising from the request.
The user has the right, if necessary, to correct incorrect personal data concerning them with a written request using the contact information mentioned in section 9.
The user has the right to demand the deletion of their personal data or the restriction of their processing, as well as the right to refuse processing based on a legitimate interest in certain cases.
The user has the right to withdraw the consent they have given to the controller for data processing. Exercising this right may, however, mean that the user cannot apply for a specific job or otherwise use the Service.
In certain cases, the user has the right to data transfer, which means the right to access personal data and transfer it to another data controller, as long as this does not negatively affect the rights and freedoms of others.
The user has the right to file a complaint with the supervisory authority regarding the processing of their personal data if the user believes that the processing of personal data violates data protection legislation.
We consider privacy a priority, and we actively strive to process users' personal data with the utmost care. We take reasonable security measures to ensure that the personal data of users and others is processed securely and in accordance with this privacy statement and the GDPR regulation.
However, data transfer via the internet and mobile networks is never risk-free, so the person performing the data transfer always acts at their own risk. It is important that users also take responsibility for protecting their own personal data. It is the user's responsibility to keep their login information confidential.
5. Transfer of personal data to a third party
We do not sell or otherwise transfer users' personal data to third parties.
We may transfer users' personal data to:
- our contractors and subcontractors who act to provide the Service as our processors and subprocessors in accordance with our instructions;
- to authorities or legal assistants if criminal or inappropriate activity is suspected; and
- to the authorities, legal assistants, or other actors, if we are required to do so under legislation or an official order.
We only transfer users' personal data to third parties we trust. We choose our partners carefully to guarantee that users' personal data is processed in accordance with current data protection legislation. We cooperate with the following personal data processors: Teamtailor, which provides the Service; server and hosting companies, email recommendation companies, video processing companies, information acquisition companies, companies offering analytical Services, and other companies related to Service provision.
6. Aggregated information (non-identified personal information)
We may share aggregated information with third parties. In such cases, aggregated information is compiled from information collected through the Service and may consist of, for example, internet traffic statistics or the geographic location where the Service is used. Aggregated data does not contain any information from which individual persons could be identified, and is therefore not considered personal data.
Users can disable cookies at any time by changing the local settings of their devices. Deactivating cookies can affect the user experience of the Service, for example by disabling some of the Service's functions.
We have the right to make changes or additions to the privacy statement at any time. The latest version of the privacy statement is always available through the Service. The user is considered to have been notified of the new version when the user has either received an email message informing the user of the new version (using the email address the user provided in connection with the use of the Service), or when the user has otherwise been notified of the new privacy statement.
If you have any questions, want more information about the processing of personal data, or want to contact us regarding another matter, please use the contact information below:
WaveCrest Group firstname.lastname@example.org