1. How do we protect your privacy?
From here on we refer to survey respondents as Candidates and customers who sign up for the web application as Clients.
Throughout this policy, when we write “Nederlia” or “we” or “us,” we’re referring to Nederlia SL.
If you have any questions about how we protect your privacy, drop us a line at email@example.com.
2. What type of data do we collect?
We do not collect any personal data from Candidates. The We Like Talent online survey is completely anonymous.
3. How do we collect data?
We need to process certain information about you and the company you work for, if applicable, in order to provide a customised service.
We collect the personal data of clients in three ways:
- personal information we receive directly from you
- personal information we receive from other sources
- personal information we collect automatically
Personal information we receive directly from you
We receive the data you provide to us directly in two ways:
- when you first contact us, usually by phone, email or through a form on our website
- during the customer qualification process, usually by phone, email or in person
Personal information we receive from other sources
Where appropriate and in accordance with local legislation and requirements, we may request more information about you or your colleagues from other sources, either through due diligence or other market information mechanisms, including:
- through market studies of third parties or the analysis of online and offline media (that we perform ourselves or entrust to other organisations we hire);
- through other limited sources and third parties
Personal information we collect automatically
Users of the website:
When you visit our website, we collect certain information automatically, whether you finally decide to use our services or not. This includes your IP address; the date, the hours and the frequency with which you access the website and the way in which you browse its content. We also collect your data when you contact us through the website, for example through email.
4. How do we use this data?
Once we have obtained your data, we use it in different ways, depending on the service we need to provide.
We may use your data for the following purposes:
- application usage
- marketing activities
- for the formulation, exercise or defence of a right in a judicial proceeding
Below, each of them is explained in greater detail.
The logical use of the www.weliketalent.com application.
It is possible that we may periodically send you information that we think may be of interest to you. We will only send you this information if you gave us consent to receive marketing communication. In particular, we may use your data for the purposes listed below, where appropriate and in accordance with local legislation and requirements. Keep in mind that the list is not exhaustive.
- send you information, including reports, promotions, events and other general information we believe may interest you
- publish your testimonial on our website, but only in cases where we’ve received the testimonial from you and obtained your explicit consent to publish it
5. Who do we share your personal data with?
When appropriate and in accordance with local legislation and requirements, we may exchange your personal data, in various ways, for recruitment or legal and contractual obligations, with the following categories of people:
- tax, auditing or other financial or legal authorities where we believe, in good faith, that the law or another regulation obliges us to share your data with them (for example, in response to a request from a tax authority or in relation to possible litigation)
- third party service providers that perform functions on our behalf and with whom we have signed contracts (including external consultants and professional advisors, such as lawyers, auditors and accountants or technical support teams and IT consultants who carry out the testing or development of IT systems)
- If Nederlia merges with another business or company in the future or is acquired by one (or is in serious conversations about that possibility) we may share your personal information with the possible new owners of the business or the company
6. How do we protect your personal data?
We are committed to taking all reasonable measures to protect the personal information we store against any unauthorised use, loss or access. These include measures to address any suspected data breach.
We endeavour to protect your data by storing it on secure servers and using a series of technical and organisational security measures to safeguard your personal data and to reduce the risk of loss, misuse, unauthorised access, disclosure and alteration. Some of the safeguards we use include firewalls, data encryption and password hashing.
Although we believe we have taken adequate and appropriate measures, no system is perfect and we, therefore, cannot guarantee that unauthorised access or theft will not occur.
If you suspect that there may be an improper use of your personal information or unauthorised access to it, please let us know immediately by sending us an email to firstname.lastname@example.org.
7. How long do we keep your personal data?
If we have not entered into a relevant contact with you (or with the company you work for) for a period of three years (or for a longer period if we believe in good faith that the law or another regulation obliges us to keep them), we will contact you again to make sure that the information we store about you are is up-to-date and that you are happy to stay in our database. If we do not hear from you, we will then proceed to delete your personal data from our systems.
8. What are your rights?
You have the following rights with regard to your personal information:
- The right to access: You have the right to access the data we hold about you. We will, however, need you to prove your identity before we release any personal data to you. We have one month to collect and send you this information, although there are exceptions for requests that are unfounded, repetitive or excessive.
- The right to rectification: If you discover that the information we hold about you is inaccurate or incomplete, you can request for it to be updated. As with the right to access, we have one month to do this, and the same exceptions apply.
- The right to erasure (‘the right to be forgotten’): You can request that we erase your data in certain circumstances, such as when the data is no longer necessary, the data was unlawfully processed or if it no longer meets the lawful ground for which it was collected.
- Right to withdraw Consent: You can withdraw the consent you gave us to process your data at any time.
- The right to restrict processing: You can request that we limit the way we use your personal data. It’s an alternative to requesting the erasure of data, and might be used when you contest the accuracy of your personal data or when you no longer need the information but we are required to keep it to establish, exercise or defend a legal claim.
- The right to data portability: You have the right to obtain the personal data we hold about you in a structured, electronic format, and to transmit such data to another data controller, where this is (a) personal data which you have provided to us and (b) if we are processing that data on the basis of your consent or to perform a contract with you.
- The right to object: You can object to the processing of personal data that is collected on the grounds of legitimate interests or the performance of a task in the interest or exercise of official authority. We must stop processing information unless we can demonstrate compelling legitimate grounds for the processing that overrides the interests, rights and freedoms of the individual or if the processing is for the establishment or exercise of defence of legal claims.
- Rights related to automated decision-making including profiling: The GDPR includes provisions for decisions made with no human involvement, such as profiling, which uses personal data to make calculated assumptions about individuals. There are strict rules about this kind of processing, and individuals are permitted to challenge and request a review of the processing if they believe the rules aren’t being followed.
- The right to complain If for any reason you are not happy with the way we have handled your personal data, please contact us. If you are still not happy, you have the right to make a complaint to the relevant control authority (Spanish Agency for Data Protection, www.agpd.es)
To exercise any of these rights, please write to us:
Nederlia Ref. Data protection
Calle America 1, 1-1
Or send an email to email@example.com
9. Where is your data stored and who can access it?
Data we collect is transferred to and stored by MongoDB, Inc: database. Only specific employees of Nederlia can access this database to efficiently perform our services and marketing communication in cases where we received your consent for such communication.
We endeavour to protect your data by storing it on secure servers and by using technical and organisational security measures to safeguard your personal data and to reduce the risk of loss, misuse, and unauthorised access, disclosure and alteration. Some of the safeguards we use include firewalls and data encryption. Although we believe we have taken adequate and appropriate measures, no system is perfect and we therefore cannot guarantee that unauthorised access or theft will not occur.
10. What is the legal bases for processing your data?
We have set out a short description of main ways we collect, store, process, share and disclose your personal data and the legal bases we rely on to do so. We have also identified what our legitimate interests are, where appropriate.
We will only use your data when the law allows us to do so. We will primarily use your personal data in the following circumstances:
- to fulfil a contract we are about to enter into or have entered into with you
- where it is in our legitimate interests
- when it is our legal or regulatory duty
- when you consent
A legitimate interest is when we have a business or commercial reason to use your information in conducting and managing our business. We will consider and balance any potential impact on you and your legal rights when we process your personal Information for our legitimate interests. We do not use your personal data for activities where our interests are overridden by the impact on you, unless we are required to do so for compliance with a legal or regulatory obligation.
Where consent is required in order to use your personal information, by ticking the appropriate consent box or otherwise communicating your consent (for example, by email, verbally in person or on a call, or by voluntarily providing non-mandatory information) you consent to our use of that personal information for the purposes covered by the specific consent that you have given. For example, we will only process your personal information for marketing purposes if we have your consent to do so.
What are cookies?
Cookies are text files that are stored in a computer system via your internet browser. Cookies are not viruses. A cookie does not contain information that identifies a person, but instead allows your computer to be linked to the information provided by you on the website (such as: linking your IP address and other information about your experience on the website to your preferences expressed while choosing services). They do not damage your computer or slow operation. You can block cookies by activating the setting on your browser.
What type of cookies do we use?
Analytical Cookies: These cookies are used to measure and analyse how visitors use the website (for example: site traffic, most-visited pages or pages that display error messages or bounce rate) in order to continuously improve the website and your experience when visiting our site. All information collected by these cookies is in an anonymous form (even if passed onto third parties) and cannot be used to identify you.
For more detailed information about cookies and how they can be managed and deleted, please visit www.allaboutcookies.org.
This notice was last updated on 18/12/2020. We may change this page from time to time, to reflect how we are processing your data or changes in law. If we make significant changes, we will make them clear on our website or by email, so that you are able to review the changes.