fbpx

Candidate information

Dear Candidate,
Pursuant to Art. 13 of EU Regulation 2016/679 (hereafter “GDPR”), please be informed that the data you provided will be processed using methods and procedures designed to guarantee that personal data are processed in respect of the data subject’s rights, fundamental liberties, and dignity, with particular reference to confidentiality and security, personal identity and the right to protection of personal data.

Please note that processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction (Art. 4 GDPR).

1        Subject-matter of the processing

The data processed by STUDIO INTERPRETI di SILVIA HASSAN S.r.l. refer to:

  • personal identifying data (such as name, age, place and date of birth, telephone number, email, tax code);
  • information on employment status (such as job classification level and remuneration);
  • information on education as well as professional and work experience;
  • particular data necessary for compliance with legal obligations (such as accident reports, pregnancy status, medical file, member of a protected category, participation in worker representation bodies).

2        Legal basis for processing

The legal basis for the processing is your unequivocal express consent (Art. 6.1, lett. a) of the GDPR).

3        Origin of the data

The personal data in the Controller’s possession are collected directly from the data subject and may only potentially come from third parties, registries, or public lists.

4        Purpose of processing

Personal data and any changes you may communicate to STUDIO INTERPRETI di SILVIA HASSAN S.r.l. in the future are collected and processed solely for the following purposes:

  • Staff recruitment and selection by the Controller’s employees and/or assistants appointed as data processors or persons in charge of the processing

The personal data in the Controller’s possession are collected directly from the data subject and may only potentially come from third parties, registries, or public lists.

5        Methods of processing

Processing is limited to the following operations using the following methods:

  • collection of data from the data subject, by completing paper forms or company applications;
  • registration and processing on electronic and paper media;
  • primarily automated archiving, through company applications and computerized registries.

Data will be processed using tools that can suitably ensure its confidentiality, integrity and availability, and using adequate technical and organizational methods of security as provided by the GDPR.

Data will be processed both electronically and on paper, using IT and/or automated systems and will include all the operations or sets of operations pursuant to Art. 4 GDPR that are necessary for the processing, including communication to the parties in charge of said processing. The data in question will not be disseminated, while it will be or might be communicated to public or private parties operating within the sphere of the aforementioned purposes.

6        Data storage

The Controller will process your personal data for the time necessary to meet the aforementioned purposes, and in any event for no longer than:

  • one year for paper format;
  • three years for digital format.

7        Access to processing

The data will be made available, for the purposes set out in point 4:

– to employees/collaborators who have been appropriately appointed and authorized to process data.

8        Communication of data

The data will not be communicated or disseminated to unauthorized third parties in any way. To this end, processing is performed using security measures sufficient to prevent unauthorized access to data by third parties and to ensure data confidentiality.

9        Transfer of data

Personal data will be managed and stored on servers based in the European Union owned by the Controller and/or third-party companies duly appointed as Data Processors.

The data will not be transferred outside the European Union.

10      Data provision and refusal to comply

Data provision is mandatory for the purposes set out in point 4. Failing to provide such data will make it impossible for us to include your application in the selection process

11      Rights of the data subject

According to the provisions of the GDPR, the data subject has the following rights towards the Data Controller:

  • to obtain confirmation of whether or not personal data concerning him or her are being processed, and if so, to obtain access to the personal data (Right of acccess Art. 15);
  • to obtain the rectification of inaccurate personal data concerning him or her without undue delay. (Right of rectification Art. 16);
  • to obtain the erasure of personal data concerning him or her without undue delay, and the Controller shall have the obligation to erase personal data without undue delay under certain conditions (Right to be forgotten Art. 17);
  • to obtain restriction of processing in certain situations (Right to restriction of processing Art. 18)
  • to receive the personal data concerning him or her, which he or she has provided, in a structured, commonly used and machine-readable format and to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, in certain cases (Right to data portability Art. 20);
  • to object, on grounds relating to his or her particular situation, at any time to processing of personal data concerning him or her (Right to object Art. 21);
  • to receive notice of a personal data breach incurred by the Data Controller, without undue delay. (Art. 34);
  • to revoke consent at any time (Conditions for consent Art. 7).

Where applicable, in addition to the rights pursuant to Articles 16-21 GDPR (Right to rectification, right to be forgotten, right to restriction of processing, right to data portability, right to object), the data subject has the right to file a complaint with the Italian Data Protection Authority.

12      Procedure for exercising such rights

Registered letter with return receipt to STUDIO INTERPRETI di SILVIA HASSAN S.r.l. – Via G. Boccaccio, 35 – 20123 Milan – Tel. 0248018252 – email: enrica@studiointerpreti.it

13      Data Controller

The Data Controller is STUDIO INTERPRETI di SILVIA HASSAN S.r.l. – Via G. Boccaccio, 35 – 20123 Milan – Tel. 0248018252 – email: enrica@studiointerpreti.it

The list of data processors and persons in charge of the processing is available at the Controller’s office indicated above.

14      Update of this policy

This Policy may be updated. Any substantive changes shall be transmitted to the data subjects through a notice or publication on the company website.

Date

Legible signature of the data subject

Pursuant to EU Regulation 2016/679, I declare that I have read the above policy and consent to the processing of my personal data for the purposes indicated in point 4.