General Data Protection Regulation for job applicants

Information based on Article 13 of the General Data Protection Regulation (GDPR) for job applicants

Our company takes compliance with data protection law very seriously. In the following we would like to inform you about the collection of your personal data by us :

Responsible body :

The company to which you applied is responsible for data collection and processing.

The data we require :

During the application we process your data which we need for the application. This can include contact details and data associated with the application (CV, references, qualifications, responses to questions, etc).

The relevant legal basis is Section 26 of the German Federal Data Protection Act (BDSG).

Data erasure :

Insofar as a retention period set by statute does not apply, the data shall be erased as soon as retention is no longer required, or a legitimate interest in the storage no longer applies.

If the application does not lead to a job, erasure regularly takes place at the latest three months after the application process has been completed.

In individual cases, particular items of data can be retained for a longer period of time. The retention period is based on statutory retention obligations, for example those arising from the German Fiscal Code (6 years) or German Commercial Code (10 years).

If the application does not lead to a job and your application remains of interest to us, we will ask you whether we may retain your application for future vacancies.

Confidential handling of your data :

We treat your data confidentially. We do not send your data unauthorized to third parties. Access is therefore only granted to those who need it, to the responsible employees of the HR department and, if required by law, to the works council.

If necessary, we use service providers who are strictly bound by our instructions, who support us e.g. with data-processing work, or the archiving and destruction of documents and with whom we have entered into separate contracts for order processing.

Your data protection rights :

As a data subject, you have a right to access the personal data held about you, and to rectify or erase incorrect data provided that one of the grounds mentioned in Article 17 GDPR are met, for instance if the data are no longer necessary for the purposes for which they were collected.

There is also the right to restrict processing if one of the requirements mentioned in Article 18 GDPR are applies, and a right to data portability exists in the cases mentioned in Article 20 GDPR.

The data subject also has the right of appeal to a supervisory authority if it is of the belief that the processing of its personal data violates data protection regulations.

The right of appeal may be exercised in particular before a supervisory authority in the Member State where the data subject resides, works, or where the suspected infringement took place.