1) Dear applicant,
2) In accordance with the provisions of Articles 13, 14 and 21 of the General Data Protection Regulation (GDPR), we hereby inform you about the processing of your personal data and your rights under data protection law in this regard. To ensure you are fully informed about the processing of your personal data during the recruitment process, please take note of the following information.
Zesavi GmbH
Fellhornstr. 4
87477 Sulzberg
Deutschland
1) We have appointed a Data Protection Officer who is responsible for monitoring the data protection strategy and compliance with data protection laws and regulations.
2) The contact details of the Data Protection Officer are as follows:
Kertos GmbH
Brienner Str. 41
D-80333 Munich
Email: dsb@kertos.io
1) We process the personal data you have submitted to us in connection with your application to assess your suitability for the position (or other open positions within our company) and to carry out the application process.
1) The primary legal basis for processing your personal data during the application process is Art. 6 para. 1 lit. b) GDPR. This allows the processing of data necessary for decisions regarding the establishment of an employment relationship.
2) If the data is required after the application process for legal purposes, such as to defend or pursue legal claims, the data may be processed based on Art. 6 GDPR, specifically for the protection of legitimate interests under Art. 6 para. 1 lit. f) GDPR. Our legitimate interest in such cases is the assertion or defense of claims.
3) In cases where special categories of personal data (e.g., health data) are processed, the legal basis is § 26 para. 3 BDSG in conjunction with Art. 9 para. 2 lit. b) GDPR and Art. 6 para. 1 lit. b) GDPR.
1) The categories of personal data processed include, in particular, your personal details (e.g., name, date of birth, contact details), professional qualifications (e.g., education, work history, certifications), and data provided during the application process (e.g., cover letter, resume, references).
2) In general, we process the personal data you provide to us as part of the application process. We may also collect data from other sources, such as recruitment agencies, job portals, or references provided by you.
1) In the event of an unsuccessful application, your data will be deleted six months after the conclusion of the application process.
2) If you have given consent for your data to be retained, we will transfer your data to our applicant pool, where it will be stored for a maximum of two years before being deleted.
3) If your application is successful and you accept a position with us, your data will be transferred from the applicant management system to our employee management system.
1) Internal Recipients: Your application data will be reviewed by our HR department, and suitable applications will be forwarded to the relevant department heads for the open position. Within the company, only those individuals involved in the recruitment process will have access to your data.
2) External Recipients: We use a specialized software provider for our application process. This provider acts as a data processor on our behalf and may gain knowledge of your personal data as part of maintaining and servicing the system. We have concluded a data processing agreement with this provider to ensure that your data is processed lawfully.
1) Every data subject has the right of access under Art. 15 GDPR, the right to rectification under Art. 16 GDPR, the right to erasure under Art. 17 GDPR, the right to restriction of processing under Art. 18 GDPR, the right to notification under Art. 19 GDPR and the right to data portability under Art. 20 GDPR.
2) In addition, you have the right to lodge a complaint with a data protection supervisory authority in accordance with Art. 77 GDPR if you believe that your personal data is being processed unlawfully. The right to lodge a complaint is without prejudice to any other administrative or judicial remedy.
3) If the processing of data is based on your consent, you are entitled under Art. 7 GDPR to withdraw your consent to the use of your personal data at any time. Please note that the revocation only takes effect for the future. This does not affect processing that took place before the revocation. Please also note that we may have to retain certain data for a certain period of time in order to fulfil legal requirements (see section 8 of this data protection information).
4) Insofar as your personal data is processed in accordance with Art. 6 para. 1 lit. f GDPR to protect
legitimate interests, you have the right to object to the processing of this data at any time in accordance with Art. 21 GDPR for reasons arising from your particular situation. We will then no longer process this personal data unless we can demonstrate compelling legitimate grounds for the processing. These must outweigh your interests, rights and freedoms, or the processing must serve the assertion, exercise or defence of legal claims.
1) The provision of personal data is voluntary. However, if you do not provide the required data, we may not be able to consider your application for the recruitment process.
1) Decisions during the recruitment process are not based on automated processing, including profiling, as defined in Art. 22 GDPR