PERSONAL DATA PROCESSING – INFORMATION FOR JOB APPLICANTS
If you apply for a position within the Cybercom Group* (as defined below) (the “Employer”) we will store and process certain personal data about you. The service for handling recruitments and simplifying the hiring process (the "Service") is powered by Teamtailor on behalf of the Cybercom Group. We do this for the following purposes, lawful grounds and durations:
Lawful ground(s) for the processing
Necessary duration (unless laws or regulations to which we are subject obliges us to continue the processing)
To review your application and to start and conclude the recruitment process.
It is necessary for our legitimate interest of reviewing your application and concluding the recruitment process.
Until the position has been filled.
Upon your consent, we save the Data in order to contact you regarding other job openings or opportunities after the position has been filled.
This is made only with your consent.
Up to 24 months. You have the right to recall your consent at any time and the storage and processing will then cease and the Data will be removed from all Cybercom’s databases.
In case of a potential legal claim related to the recruitment, we may process your Data in order to meet such claim.
It is necessary for our legitimate interest of protecting ourselves from legal claims.
24 months after the position has been filled, or, if a claim against the Employer is raised, the time necessary for the legal process.
The Data consists of the information you have provided in your application and other information that you may provide during the recruitment process, such as name, personal identity number, address or any other data which might be processed in connection with the recruitment process (the “Data”). Some information may furthermore be collected from publicly accessible sources in case it is necessary for each purpose respectively. The company within the Cybercom Group to which you apply for a job will be the data controller of the Data.
Where processing of your personal data is based on your consent, you have a right to withdraw the consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
The Data may be shared within the Cybercom Group, with government authorities and/or with our trusted partners to achieve each purpose respectively. Such partner’s may for example provide HR- or recruitment services, storage space or other systems that the Employer has decided to use in the business. These companies may reside in a country outside the EU/EEA. In case such country is not regarded by the European Commission as a country with adequate level of protection of personal data, such transfer will be based on the standard data protection clauses for transfer of personal data to countries outside of the EU/EEA adopted by the European Commission, see articles 45-46 of the General Data Protection Regulation (the “GDPR”). A copy of these standard data protection clauses can be found at http://ec.europa.eu/justice/data-protection/international-transfers/transfer/.
In case you have any questions regarding our processing of the Data, please contact Ulrika Skantze by e-mail at Ulrika.email@example.com or by phone at +46736255110. You can also use these contact details if you would like to exercise any of your rights as a data subject under the GDPR. Please note that the rights under the GDPR are not unconditional. Therefore, an attempt to invoke any of the rights might not lead to an action. Your rights under the GDPR include the following:
Right to access – According to article 15 of the GDPR, you are entitled to access the Data and receive certain information about the processing. That information is provided in this document.
Right to rectification – According to article 16 of the GDPR, you are entitled to obtain rectification of inaccurate Data concerning you and to have incomplete personal data completed.
Right to erasure – Under certain circumstances, you are according to article 17 of the GDPR entitled to have the Data erased. This is the so-called “right to be forgotten”.
Right to restriction of processing – Under certain circumstances, you are according to article 18 of the GDPR entitled to restrict the processing of the Data that the we carry out.
Right to data portability – You are according to article 20 of the GDPR entitled to receive the Data (or have the Data directly transmitted to another data controller) in a structured, commonly used and machine-readable format from the Employer.
Right to object – According to article 21 of the GDPR, you are entitled to object to certain processing activities conducted by us on the Data, such as all our processing of the Data based on our legitimate interest.
*)”Cybercom Group” means:
Cybercom Group AB, Cybercom Group Stockholm AB, Cybercom IS/IT Services AB, Cybercom Poland Sp.Z.o.o, Cybercom Consulting A/S, Cybercom Netcom Consultants AB, Cybercom Finland Oy and Cybercom Sweden AB (as amended from time to time).