II. TERMS USED IN THE POLICY
Personal data – means Personal data within the meaning of the GDPR, i.e. all information about an identified or identifiable natural person. These data identify directly or indirectly a natural person with regard to the name, e-mail address or telephone number of the natural person and other data that, in connection with the above-mentioned, may identify the User.
GDPR – means Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / EC (general regulation on data protection), according to which ESS processes Users’ Personal Data.
Specialist – candidate for work at ESS.
User – a job applicant, newsletter subscriber, competition participant, person asking a question, training participant, person recommending a friend to work and a person visiting ESS websites.
Services – should be understood as services provided by ESS electronically, via the website, i.e .: subscribing to the newsletter, sending inquiries via the contact form, sending documents necessary in the recruitment process, application for participation in competitions, application for participation in training.
III. PROVISION OF PERSONAL DATA
By providing his Personal Data on the ess.etisoft.pl website and other websites belonging to ESS, the User confirms that he has the necessary permissions to disclose personal data that will be used by ESS in the manner described in this Policy.
IV. PERSONAL DATA ADMINISTRATOR
The administrator of Users’ Personal Data provided in connection with the use of ESS websites, in particular in connection with carrying out recruitment processes, conducting trainings, sending marketing information (including newsletters), accepting subscriptions for conferences, events, using other services contained on the website is Etisoft Smart Solutions sp. z oo based in Gliwice.
V. PURPOSES OF THE PROCESSING OF PERSONAL DATA AND THE LEGAL BASIS FOR THE PROCESSING
ESS processes Personal Data in order to:
- Sending Users, to the e-mail addresses provided by them, commercial and marketing information (including the ESS newsletter), provided that the User has consented to receive them.
- Sending Users, to the e-mail addresses or telephone numbers provided by them, answers to previously asked inquiries sent via the contact form.
- Organizing and conducting competitions by the ESS.
VI. SHARING OF PERSONAL DATA
ESS is entitled to disclose data to entities authorized under the applicable law.
Due to the fact that ESS cooperates with companies from the Etisoft sp. z o. o. capital group and Euvic sp. z o. o., personal data may be entrusted to companies of these capital groups under separate agreements.
VII. USER RIGHTS
Pursuant to Chapter III, Art. 15-22 of GDPR, the User has the following rights in connection with the processing of his Personal Data by ESS:
- The right to access your Personal Data,
- The right to rectify the processed data,
- The right to delete data (“the right to be forgotten”),
- The right to limit data processing,
- Right to data portability,
- The right to object to further data processing,
- The right not to be subject to decisions based solely on automated processing, including profiling,
- The right to withdraw consent to the processing of Personal Data.
The implementation of each of the above rights takes place at the User’s request sent to the address email@example.com. The ESS examines the submitted application and sends a reply within 1 month from the date of receipt of the application with an indication of the result of the examination – what specific actions have been taken with the estimated time for the implementation of the entire application, if specific activities require a longer implementation time.
Under the law specified in point 8, the User may at any time withdraw consent to further processing of Personal Data for purposes requiring consent, with the proviso that the withdrawal of consent does not affect the lawful use of Personal Data in activities based on consent before its withdrawal.
Under the right of access, the User is entitled to obtain the following information in the form of a copy:
- Purposes of processing Personal Data;
- Categories of Personal Data – what data we process, e.g. name, surname, telephone number;
Information on recipients or categories of recipients of data – to whom (a person, company, institution) this data may be transferred;
Information on the right to request the ESS to rectify data, delete them or limit their processing and to object to specific data processing;
- Information on the possibility of lodging a complaint to the Personal Data Protection Office;
Information about the data source, if the data has not been obtained directly from the User – indication of the person or company or institution that provided the Personal Data;
- On the use of profiling: on what terms it is undertaken, what may be the consequences of profiling for the User.
ESS informs that it may refuse to exercise any of the rights specified in Art. 15 – 22 of the GDPR in a situation where the User submits applications in a constant, excessive manner, without any justification. Each time, the ESS will justify the refusal to implement the right indicated in the application. By persistent and excessive nature, we understand the sending of subsequent requests with a similar request to the first one, despite the consideration and notification of its implementation, e.g. the User sends the request for access to information, the ESS executes – sends a summary of the information held, and the User sends the second and again this the request itself, without explaining the reason for re-requesting information.
VIII. SAFETY RULES
ESS has implemented security measures (organizational and technical) to protect Personal Data from loss, misuse, unlawful processing or modification. ESS undertakes to protect all information disclosed by Users in accordance with the standards of security protection and confidentiality.