Information clause regarding the processing of candidates' personal data
In order to comply with the obligations arising from Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter "GDPR", we inform you that:
The Controller of your personal data is Rebel Wolves sp. z o.o. with its registered office in Warsaw at Dereniowa 60/U4, (02-776) Warsaw, entered into the Register of Entrepreneurs of the National Court Register kept by the District Court for capital city of Warsaw in Warsaw, XIII Commercial Division of the National Court Register under KRS number 0000933935, REGON: 520497877, NIP: 9512529961 (hereinafter referred to as: "Controller").
The Controller can be contacted at the e-mail address: [email protected] or in writing to the Controller's address provided above.
In the case of job candidates (contract of employment):
Personal data will be processed for the purpose of:
considering your candidacy, conducting the current recruitment process and taking the necessary actions to conclude the agreement (if you are selected in the recruitment process);
establishing, pursuing or defending against claims;
conducting future recruitment for similar positions – if you have given your consent to this.
The basis for the processing of your personal data is:
the necessity of processing for taking steps prior to entering into an agreement (Article 6(1)(b) of the GDPR);
the necessity to perform a legal obligation incumbent on the Controller (Article 6(1)(c) of the GDPR in conjunction with Article 22(1) of the Act of 26 June 1974 on the Labour Code);
the Controller's legitimate interest consisting of the ability to establish, pursue or defend against potential claims (Article 6(1)(f) of the GDPR);
if you have given consent to the processing of your personal data for future recruitment for similar positions, as well as in the case of providing additional information in application documents (data other than those specified in applicable labour law regulations) - your consent (Article 6(1)(a) / Article 9(2)(a) of the GDPR).
In the case of candidates for cooperation (civil law contract):
Personal data will be processed for the purpose of:
considering your candidacy, conducting the current recruitment procedure and taking the necessary steps to conclude the agreement (if you are selected in the recruitment process);
establishing, pursuing or defending against claims;
conducting future recruitment for similar positions – if you have given your consent to this.
The basis for the processing of your personal data is:
the necessity of processing for taking steps prior to entering into a contract (Article 6(1)(b) of the GDPR);
the Controller's legitimate interest in the ability to establish, pursue or defend against potential claims (Article 6(1)(f) of the GDPR);
if you have given consent to the processing of your personal data for future recruitment for similar positions, or if you have provided the Controller with special categories of data – your consent (Article 6(1)(a) / Article 9(2)(a) GDPR).
Regarding all candidates:
Personal data has been obtained directly from you or from another entity (e.g. in the case of recommending your candidacy by a member of the Controller's team or a recruitment agency).
The Controller may process the following personal data: name(s) and surname, date of birth, contact details, education, professional qualifications, course of employment and additional information provided by you as part of the application documents, e.g. image, information regarding hobbies.
Providing personal data is voluntary, but necessary to participate in the recruitment process. Refusal to provide personal data prevents participation in the recruitment process.
Personal data may be made available by the Controller to entities authorized to obtain information on the basis of mandatory provisions of law and entities that are subcontractors of the Controller, acting on its behalf, which technically or organizationally help to conduct the recruitment.
Personal data will be stored for the period of:
1 year – from the end of the recruitment process or
2 years or until the withdrawal of your consent – from the moment the recruitment process ends, if you have given consent for your personal data to be used for future recruitment purposes.
You have the right to:
access to your personal data, including receiving a copy, rectification, deletion or restriction of processing;
to object - in the case of processing of personal data on the basis of the legitimate interest of the Controller (Article 6 (1)(f) GDPR);
portability of personal data - by receiving data from the Controller in a format that allows for its transfer to a third party of choice;
lodge a complaint to the supervisory authority - President of the Personal Data Protection Office;
if and to the extent that the basis for the processing of personal data is consent, you have the right to withdraw it in any way, at any time, without affecting the lawfulness of the processing that was carried out on the basis of consent before its withdrawal.
Personal data will not be processed in an automated manner, including through profiling.
Your personal data may be transferred outside the European Economic Area (EEA), but only to the extent necessary. In such cases, the Controller ensures the protection of personal data, in particular through transfer to countries for which the European Commission has issued a decision establishing an adequate level of protection or through the application of standard data protection clauses adopted under the decision of the European Commission. In such cases, you can obtain a copy of the security measures applied by contacting the Controller.