The protection of personal data is important to us at TRIGON Consulting s.r.o. and we want to be transparent about our processing of your personal data. For this reason, we have defined clear rules that set out the conditions for the processing and protection of your personal data.This personal data processing policy provides a framework for understanding the personal data we collect as required by law, including the provisions of the General Data Protection Regulation of the European Union (hereinafter “GDPR”). Personal data will be controlled and processed by the Data Controller in accordance with the terms of this Personal Data Processing Policy.Controller
TRIGON Consulting s.r.o., with registered office in Majerská cesta 32, 974 01 Banská Bystrica, Slovak Republic, ID: 43932282, registered in the Commercial Register of the District Court Banská Bystrica, section: Sro, insert number: 14201/S.These principles of processing personal data apply to (1) persons whom we assist with job search and recipients of our career services, (2) our temporarily assigned employees whom we temporarily assign to other user employers (clients) and contractors (natural persons) that we use to fulfill the assigned contracts for our clients, (3) users of the website www.trigon-consulting.sk (hereinafter referred to as the “Site”), (4) representatives of our business partners, clients and suppliers, (5) persons whose personal data we use for our marketing activities and (6) persons who recommend us persons, potential candidates who are interested in employment intermediation.This personal data processing policy do not apply to employees who perform work directly for TRIGON Consulting s.r.o. The Personal Data Processing Policy describes the types of personal data or personal data we collect, how we use the information, how we process and protect the information we collect, how long we keep it, with whom we share it, to whom we transfer it, and the rights individuals may exercise in relation to the use of their personal data. We also describe how you can contact us about our privacy practices and exercise your rights.Registration of personal data
We may collect personal information about you in a variety of ways, for example, through our website, social media channels; by telephone and fax; in a face-to-face meeting in connection with job placement; or in connection with interactions with business partners and clients. Depending on the nature of the relationship with you, we may collect selected personal data, in particular (as permitted by local law) contact information (such as name, postal address, email and telephone contact);
information you provide about friends or other people you would like to contact. (The operator assumes that the other person has previously given authorisation/consent to such communication); and
other information that you may provide to us, e.g. in surveys or via the “Contact Us” button, or “Submit” on our site.
In addition, if you are a temporarily assigned employee or job seeker, apply for a job, or register to apply for a position, we may collect the following categories of personal data (as permitted by local law): employment history and education history;
level of foreign language proficiency and other job-related abilities and skills;
date of birth;
bank account information;
citizenship and work permit status;
information relating to taxes;
information provided by reference persons (provided by third parties as references);
information contained in your curriculum vitae (CV), cover letter;
information you provide regarding your career interests and other information about your abilities and skills, qualifications for the job;
information relating to your employment with our Company or with our client;
and where permitted or required by law: information on incapacity and health status;
results of drug use tests, information on criminal integrity and other reliability checks.
In addition, we may collect information that you provide to us about other individuals, such as contact information in the event of an emergency.How we use personal information
The Controller collects personal data for the following purposes of processing personal data (as permitted by local law): facilitating employment and providing solutions related to the workforce and involving people in work;
creating and managing online accounts;
managing our relationships with clients, business partners;
sending promotional materials, alerts regarding available jobs and other notifications in accordance with the Operator's notice on cookie data files;
informing and participating in special events, programmes, offers, surveys, bankruptcies and market surveys;
answering questions and requests
operating, evaluating and improving our business (including developing, improving, analysing and improving our services, managing our communications, performing data analyses and performing accounting, auditing and other internal functions);
protection, identification and efforts to prevent fraud and other illegal activity, claims and other liabilities; and
comply with and enforce applicable legal requirements, relevant industry standards, contractual obligations and our policies.
All processing activities will be carried out on the basis of a corresponding legal reason, which in particular includes:Your consent or the explicit consent of the data subject, if required by applicable law (e.g. processing of your personal data for our marketing activities or continuous employment intermediation);
ensuring that we comply with the obligations imposed on us by law (for example, to comply with our employer registration obligations or to remit taxes on your income to state institutions). In these cases, the provision of your personal data is a requirement of the law and there is an obligation to provide such personal data; if you do not provide the requested personal data, we or you may be harmed.
Necessity for the legitimate interest of the Operator, as described in more detail below (e.g. making the website available to the user in order to provide the offered services or calculating our remuneration that we charge our clients).
to provide you with human resources services;
provide other services such as training, career guidance and career change services;
assess your suitability as a candidate for the job and assess your qualifications for the position;
and perform data analyses such as: (i) analysing our database of job applicants and temporary staff; (ii) assessing individual performance and capabilities, including assessment of job skills and abilities; (iii) identifying skills gaps; (iv) using information to compare individuals and potential opportunities and (v) analysing so-called pipeline data trends (concerning recruitment procedures).
If we want to use this information also in other ways, we will inform you in advance. Lawfulness of processing
The Controller may process your personal data for a certain legitimate business purpose, which may be:improving and personalizing our services and communications for the benefit of our clients, job seekers and temporarily assigned employees;
identification of fraud and its prevention;
better understand the way people interact with our websites;
sending you communications and communications that we think may be of interest to you;
determining the effectiveness of promotional campaigns and advertising;
exercise of our rights against you or our clients and business partners;
fulfillment of contractual obligations towards our clients or business partners.
Whenever we process data for these purposes, we will ensure that your rights are respected and taken into account. You have the right to object to such processing and if you wish to exercise this right, please contact us. Please keep in mind that if you exercise your right to object, this may affect our ability to perform and deliver services for you and for your benefit. How we process and protect personal data
We process the personal data we collect for the purposes defined in this Policy and for a period of time that is only necessary for the purposes for which we collected it. Different laws may also require obligations for us to retain different data for different periods of time. We comply with administrative, technical and physical security measures designed to protect the personal data you provide from accidental, unlawful or unauthorized destruction, loss, alteration, access, disclosure or use. In order to ensure adequate security and confidentiality of personal data, we apply the following security measures:encryption of data in transit;
strong user verification controls;
tougher network infrastructure;
network monitoring solutions.
How long we keep the personal data we collect
In our systems, we store the personal data we collect in a way that allows the identification of data subjects for no longer than is necessary in view of the purposes for which the data was collected or for which the data is further processed. We will determine this specific period taking into account: the necessity of retaining the collected personal data in order to offer and provide you with the services requested by you;
in order to protect the lawfulness of the Controller's processing as described in these purposes;
the existence of specific legal or contractual obligations and obligations that the processing and related storage is necessary for a specific period of time.
Sharing of personal data
outside the European Union.
When transferring personal data from the European Union to countries or international organizations located outside the European Union, the transfer takes place on the basis of: decisions of the European Commission (hereinafter referred to as “the EC”) that an adequate level of protection of personal data is ensured in that country
in the absence of an adequacy decision, other legally permitted grounds, either on the basis of (a) a legally binding and enforceable instrument between public authorities or bodies; (b) binding corporate rules; or (c) standard contractual clauses on data protection (formerly called model clauses) adopted by the EC, etc.
Your rights and options as a data subject
Where permitted by applicable law, the data subject may exercise the following specific rights pursuant to Articles 15 to 22 of the GDPR: Right of access: The data subject has the right to access his or her personal data in order to verify that his or her personal data are processed in accordance with the law.
Right to rectification: The data subject has the right to request the rectification of any inaccurate or incomplete data held about him in order to protect the accuracy of such information and to adapt it to the data processing.
Right to erasure: The data subject has the right to request that the data controller delete information about him or her and that it no longer processes the data.
Right to restriction of processing: The data subject has the right to request that the data controller process his/her data to a limited extent.
Right to data portability: The data subject has the right to request data portability, which means that the data subject may receive the personal data initially provided in a structured and commonly used format, or that the data subject may request the transfer of the data of another data controller.
Right to object: The data subject who provides personal data to the data controller has the right to object at any time to the processing of the data for a number of reasons listed in the GDPR without having to justify his decision.
Right not to be subject to automated individual decision-making: The data subject has the right not to be subject to a decision based solely on automated processing, including profiling, if such profiling produces a legal effect concerning the data subject or similarly significantly affects him/her.
Right to lodge a complaint with a supervisory authority: Any data subject has the right to lodge a complaint with a supervisory authority, in particular in the EU Member State where he or she has his habitual residence, place of work or place of the alleged infringement, if the data subject considers that the processing of personal data concerning him or her infringes the GDPR.
Kapitulská 12, 974 01 Banská Bystrica, Slovakia