Datenschutzerklärung

pracuj w Sgp

Valid from: February 28, 2024

PRIVACY POLICY

1. General provisions

  1. This privacy policy is for informational purposes only. The privacy policy primarily contains the rules concerning the processing of personal data by the Data Controller on the Website, including the basis, purposes of processing and the rights of data subjects, as well as information on cookies and analytical tools used on the Website.
  2. The Data Controller collected via the Website is SGP – SORTING GROUP POLAND SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ with its registered office in Częstochowa at ul. Legionów 92, 42-202 Częstochowa, entered into the National Court Register with number KRS: 0000300466; the district court where the company’s documentation is kept: District Court in Częstochowa, 17th Commercial Division of the National Court Register; share capital amounts to PLN 50,000.00, NIP [Tax Id. No.]: 9492069403, REGON [Business Statistical No.]: 240833412, hereinafter referred to as the Data Controller, and at the same time the Website Service Provider.
  3. The Data Controller can be reached by phone at:+48 34 361 31 18, or electronically via e-mail at rekruterzy@human-hunter.eu
  4. The Data Controller has appointed the Data Protection Inspector, Ms. Magdalena Cichoń, who can be reached at the address of the Data Controller’s registered office or at the e-mail address: iodo@sgpgroup.eu.
  5. Personal data are processed by the Data Controller under applicable provisions of law, in particular under the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement such data and repealing Directive 95/46/EC (General Data Protection Regulation) – hereinafter referred to as GDPR.
  6. Using the Website, including participation in recruitment processes, is voluntary, same as providing personal data on the Website. However, the lack of personal data will prevent the candidate from participating in recruitment processes and obtaining information about current job offers.
  7. The Data Controller makes every effort to protect the interests of data subjects, in particular the Controller ensures that the data collected is processed in compliance with provisions of law, collected for specified, lawful purposes and not subjected to further processing inconsistent with such purposes, substantively correct and adequate in relation to the purposes for which data is processed, stored in a form enabling identification of data subjects for no longer than is necessary to achieve the purpose of processing, and processed in a way that ensures appropriate data security, including protection against unauthorized or unlawful processing and accidental loss, destruction or damage, using appropriate means technical or organizational.

2. Basis for personal data processing

  1. The Data Controller is entitled to process personal data when at least one condition is met (1) the data subject agreed to the processing of their personal data for one or more purposes; (2) processing is necessary to fulfil the legal obligation of the Data Controller or (3) processing is necessary for the purposes of the legitimate interests pursued by the Data Controller or a third party, except for situations where these interests are overridden by the interests or fundamental rights and freedoms of the data subject, requiring protection of personal data.

3. Purpose, basis and period for which personal data is processed osobowych

The Data Controller may process personal data for the purposes and under basis specified below and for the specified period of time:

Purpose of processing Basis of processing Storage period
Conducting the recruitment process Article 6(1)(a) of the GDPR Regulations – the data subject agreed to participate in the recruitment process Data is stored until the consent is withdrawn, however not longer than 3 years of providing the consent
Determining, pursuing or defending claims that may be raised by the Data Controller or against the Data Controller Article 6(1)(f) of the GDPR Regulations – processing is necessary for purposes arising from the legitimate interests of the Data Controller consisting in determining, pursuing or defending claims that may be raised by the Data Controller or against the Data Controller The data is stored for the duration of the Data Controller’s legitimate interest, however not longer than the limitation period for claims that may be raised by the Data Controller (the basic limitation period for claims is 6 years).
Using the Website and ensuring its proper functioning Article 6(1)(f) of the GDPR Regulations – processing is necessary for purposes arising from the legitimate interests of the Data Controller consisting in keeping and maintaining the Website The data is stored for the duration of the Data Controller’s legitimate interest, however not longer than the limitation period for claims that may be raised by the Data Controller against the data subject due to business activity carried out by the Data Controller. The limitation period is determined by legal provisions, in particular the Polish Civil Code (the basic limitation period for claims related to business activity is 3 years).
Keeping the statistics and analysis of traffic on the Website Article 6(1)(f) of the GDPR Regulations – processing is necessary for purposes arising from the legitimate interests of the Data Controller consisting in keeping statistics and analysis of traffic on the Website to improve its functioning The data is stored for the duration of the Data Controller’s legitimate interest, however not longer than the limitation period for claims that may be raised by the Data Controller against the data subject due to business activity carried out by the Data Controller. The limitation period is determined by legal provisions, in particular the Polish Civil Code (the basic limitation period for claims related to business activity is 3 years).

4. Data recipients

  1. Personal data of Website Users may be transferred to the following recipients:
    1. Service providers supplying the Data Controller with technical, IT and organizational solutions enabling the Data Controller to conduct business activities (in particular software, e-mail, hosting, company management software providers and entities providing technical assistance to the Data Controller) – access is granted only in the event and to the extent necessary to achieve the purpose of processing arising from this privacy policy.
    2. Legal service providers providing the Data Controller with legal support – access is granted only in the event and to the extent necessary to achieve the purpose of processing arising from this privacy policy.
    3. Entities commissioning the recruitment process to the Data Controller in the basic scope (name, surname) based on the consent granted
    4. Entities belonging to the SGP Group (SGP APT sp. z o.o., Human & Hunter sp. z o.o., H&H sp. z o.o.) as part of recruitment processes based on the consent granted
    5. Suppliers of social plug-ins placed on the Website
      1. Meta Platforms Ireland Ltd. – the Data Controller uses plug-ins
        of social networking sites Facebook and Instagramon on the Website and therefore shares the Website user’s data with Facebook and Instagram to the extent and in compliance with the privacy policies available at the links, respectively for Facebook: https://www.facebook.com/privacy/policy, and Instagram: https://privacycenter.instagram.com/policy/?entry_point=ig_help_center_data_policy_redirect
      2. Linkedin Ireland Unlimited Company – the Data Controller uses plug-ins
        of social networking site Linkedin on the Website and therefore shares the Website user’s data with Linkedin to the extent and in compliance with the privacy policies available at the link: https://pl.linkedin.com/legal/privacy-policy
      3. Data Controller of TikTok Technology Limited and TikTok Information Technologies UK Limited uses plug-ins of social networking site TikTok on the Website and therefore shares the Website user’s data with TikTok to the extent and in compliance with the privacy policies available at the link: https://www.tiktok.com/legal/page/eea/privacy-policy/pl
      4. Google Ireland Limited – the Data Controller uses plug-ins
        of social networking site YouTube on the Website and therefore shares the Website user’s data with Google to the extent and in compliance with the privacy policies available at the link: https://policies.google.com/privacy?hl=pl
      5. Callpage sp. z o.o., with the registered office in Warsaw – the Data Controller uses the Website of Callpage on its Website and
        and therefore shares the Website user’s data with Callpage sp. z o.o., with the registered office in Warsaw (00-511), ul. Nowogrodzka 31, in compliance with the privacy policies available at the link: https://www.callpage.pl/polityka-prywatnosci
    6. The Data Controller does not transfer data outside the European Economic Area, subject to the transnational nature of data flow within Facebook, Instagram, Linkedin, TikTok, YouTube, using contractual clauses used by these websites approved by the European Commission and decisions of the European Commission confirming the adequate level of protection of data for specific countries.
    7. Information on automated decision making, including profiling, referred to in Article 22(1) and (4) of the GDPR, as well as essential information on the principles of their implementation, as well as on the importance and expected consequences of such processing for the data subject – currently, the Data Controller does not undertake and does not plan to undertake this type of activities.

5. Rights of data subjects

  1. The right of access, rectify, restrict, delete or transfer – the data subject has the right to request from the Data Controller access to their personal data, as well as data rectification and deletion (“right to be forgotten”), or limitation of processing, as well as has the right to object to processing and transfer their data. Detailed terms and conditions for exercising the said rights are defined in Article 15-21 of the GDPR.
  2. The right to withdraw consent at any time – data subject whose data is processed by the Data Controller based on the consent (under Article 6(1)(a) or Article 9(2)(1) of the GDPR, has the right to withdraw consent at any time without affecting the lawfulness of the processing carried out on the basis of consent before its withdrawal.
  3. The right to lodge a complaint with the supervisory authority – data subject whose data is processed by the Data Controller has the right to lodge a complaint with the supervisory authority in the manner specified in the provisions of the GDPR and Polish law. In Poland, the supervisory authority for personal data is the President of the Personal Data Protection Office.
  4. The right to object – data subject has the right to object at any time – for reasons related to their particular situation – to the processing of their personal data under Article 6(1)(e) (public interest or tasks) or (f) (legitimate interest of the data controller), including to object to profiling based on these provisions. In such an event, the Data Controller is no longer allowed to process such personal data, unless the Data Controller demonstrates the existence of valid legally justified grounds for processing, overriding the interests, rights and freedoms of the data subject, or grounds for establishing, pursuing or defending claims.

To exercise the rights referred to in this clause of the privacy policy, you can contact the Data Controller by sending an appropriate message in writing or by e-mail to the Data Controller’s address indicated at the beginning of the privacy policy.

6. Cookies files on the Website and analysis

  1. The Website uses cookies and similar technologies, including, in order to adapt the Website to the needs of users and for statistical purposes.
  2. Cookies are small pieces of information in the form of text files sent by the server and saved on the part of the person visiting the Website. Cookies that can be sent by the Website can be divided according to the following criteria:
    1. By supplier:
      1. Own (created by the Website)
      2. Owned by third parties
    2. Due to the period of their storage on the Website visitor’s device:
      1. Permanent – stored for a specified period of time defined by the file parameters or until they are manually deleted
    3. Due to the purpose of their use:
      1. Necessary – enabling functioning of the website
      2. Functional – enabling tailoring the website to the user
      3. Analytical and performance – collecting information about how the website is used
  3. Analytical cookies are not automatically installed on the website user’s device. The User may consent to the installation of analytical cookies by agreeing to the banner displayed when opening the Website. After clicking the “Accept all” button, the Administrator will be entitled to install cookies in accordance with the settings of the browser used by the Website User.The user may also consent to the installation of only selected analytical cookies. To do this, click the “Customize” button on the banner displayed when opening the Website and select the cookies to which the Website User wants to consent.

    You can withdraw your consent at any time. To do this, click the icon in the lower left corner (consent preferences) and change the analytical file settings by turning off the previously granted consent.

  4. Most web browsers accept cookies by default. However, everyone can define the conditions for the use of cookies in the browser they use. This means that you can partially limit or completely disable the possibility to save cookies. In the latter case, it may affect the Website functionality. Detailed information on changing cookie settings and deleting them yourself is available in the browser’s help section.
    1. Chrome browser: https://support.google.com/chrome/answer/95647?hl=pl
    2. Firefox browser: https://support.mozilla.org/pl/kb/wzmocniona-ochrona-przed-sledzeniem-firefox-desktop?redirectlocale=pl&redirectslug=wlaczanie-i-wylaczanie-ciasteczek-sledzacych
    3. Internet Explorer browser: https://support.microsoft.com/pl-pl/windows/usuwanie-plik%c3%b3w-cookie-i-zarz%c4%85dzanie-nimi-168dab11-0753-043d-7c16-ede5947fc64d
    4. Opera browser: https://help.opera.com/pl/latest/web-preferences/%23cookies
    5. Safari website: https://support.apple.com/pl-pl/guide/safari/sfri11471/11.0/mac/10.13
    6. Microsoft Edge software: https://support.microsoft.com/pl-pl/windows/program-microsoft-edge-i-przegl%c4%85danie-danych-a-prywatno%c5%9b%c4%87-bb8174ba-9d73-dcf2-9b4a-c582b4e640dd
  5. The Data Controller may use Google Analytics services provided by Google Ireland Limited on the Website. These services help the Data Controller conduct statistics and analyse traffic on the Website. The data collected as part of the above service is processed to generate statistics helpful in administering the website and analysing traffic on the Website. The data is aggregated. Full information on the processing of personal data of persons visiting the Website by Google Ireland Ltd. can be found in the privacy policy of Google services. https://policies.google.com/technologies/partner-sites
  6. The Data Controller may use the Facebook pixel function provided by Meta Platforms Inc. Facebook pixel is a short code placed on the website used to measure the effectiveness of displayed ads based on the analysis of actions taken by the Users. Facebook pixel is used to target ads to the right recipients, automatically configure marketing messages and measure the results of displayed ads. Detailed information on the principles of processing and protection of personal data processed by Meta Platforms Inc. are described in Facebook’s privacy policy. https://www.facebook.com/privacy/policy

7. Final provisions

The Website may contain links to other websites. After going to other websites, the Data Controller encourages you to read their privacy policy. This privacy policy applies only to the Website of the Data Controller.