What is GDPR?

GDPR (General Data Protection Regulation), in force throughout the European Union from May 25, 2018, means Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.

The GDPR Regulation applies to all personal data held by the Administrator, i.e. in

in particular: data: employees, co-workers and job candidates.

Who is the Administrator of personal data?

The administrator, i.e. the entity deciding on the purposes and methods of processing your personal data, is ConnectHR Sp. z o.o., with its registered office in Gdynia (81-341), ul. Węglowa 22/09.

How to contact the Administrator for more information

about the processing of personal data?

The Administrator has appointed a Personal Data Protection Officer, who can be contacted via e-mail: office@connecthr.pl You can contact him in all matters relating to the protection of personal data.

For what purpose is personal data processed?

Personal data is processed by the Administrator for the following purposes:

  • verification and employment of an employee, based on his consent to the processing of personal data (see Art. Article 6 (1) 1a of the GDPR Regulation and Article 1a of the GDPR Article 9(2a) for special categories of personal data),
  • implementation of the provisions of the employment contract and civil law contracts (pursuant to Art. Article 6 (1) 1b of the GDPR),
  • fulfillment of the legal obligation incumbent on the Administrator, including but not limited to employees and co-workers in connection with paying their taxes, paying social, health and other contributions required by law, as well as providing non-mandatory (including commercial) employee benefits (pursuant to Article Article 6 (1) 1c of the GDPR),
  • disclosure of the employee’s image, based on his consent (see Art. Article 6 (1) 1a of the GDPR),
  • contact a person who leaves their personal data in the contact form on the http://connecthr.pl website (pursuant to Art. Article 6 (1) 1f of the GDPR Regulation, as necessary for the purposes of the legitimate interests pursued by the Administrator),
  • take action to conclude a contract or in connection with the performance of a contract with a customer to which the owner of personal data is a party (pursuant to Art. Article 6 (1) 1b of the GDPR),
  • take action to conclude a contract or in connection with the performance of a contract with a supplier (service or product/good), including m.in with subcontractors (pursuant to Article I. Article 6 (1) 1b of the GDPR),
  • direct marketing, including sending e-mails (based on Art. Article 6 (1) 1f of the GDPR Regulation, as the legitimate interest of the Administrator),
  • pursuing or securing possible claims (pursuant to Art. Article 6 (1) 1f of the GDPR).

For what period of time may the Administrator process personal data?

The administrator will process personal data for the period of:

  • 10 years in the case of employment contracts,
  • 6 years in the case of civil law contracts, including with persons conducting business activity,
  • performance of the contract with the customer and after its completion as long as it results from mutual arrangements,
  • until any claims are time-barred.

In other cases, personal data will be processed until the objection or withdrawal of the previously expressed consent by their owner.

What rights are vested in a person whose personal data is processed by

Administrator?

In connection with the processing of personal data, the person whose data is processed has the following rights:

  • access to the content of the data and rectify it,
  • request deletion or restriction of processing,
  • object to the processing of data,
  • data portability,
  • withdraw consent to processing at any time,
  • lodge a complaint with the supervisory authority, i.e. Office for Personal Data Protection (https://uodo.gov.pl/), in

in the event of the Administrator’s failures.

Does the Administrator process special categories of personal data (so-called sensitive data)?

The administrator processes special categories of personal data in the form of biometric data (photos) and information about the health of job candidates.

Is there an obligation to provide your personal data?

Providing personal data is not mandatory. This is a voluntary action and takes place only with the consent of the data owner, but failure to do so will prevent the implementation of the above-mentioned purposes, including the conclusion and performance of the contract.

Who can the Administrator share data with?

Your personal data may be made available to entities cooperating with the Administrator, as part of the implementation of the purpose of processing, including m.in. shipowners, employers, subcontractors, units and organizations providing subsidies, as well as an external accounting office, legal advisor and banks.

The Administrator reserves the right to disclose selected information to competent authorities or third parties who submit a request for such information based on an appropriate legal basis and in accordance with the provisions of applicable law.

Does the Administrator transfer personal data outside the EU?

The administrator transfers personal data to countries outside the European Economic Agreement. All data located both inside and outside the EU is adequately protected against theft, destruction, overwriting, accidental disclosure, etc.

Does the Administrator process personal data in an automated manner?

The Administrator does not automatically process personal data (so-called profiling), does not monitor or collect information, apart from cookies, about the activity on the website.

Additional Information

The Administrator reserves the right to update the content of this document, as well as to introduce a new document, by way of unilateral action.

Cookies

Because the protection of privacy of website users is important to us, we provide below the “cookies” policy document, explaining the principles of processing, i.e. collecting and using information about website users.

Cookies (also called. “cookies”) are IT data, in particular text files, which are stored in the end device (computer, laptop, smartphone) of the website user (usually a web browser). They do not serve to identify users and on their basis in no way the identity of anyone is determined.

Cookies usually contain the name of the website from which they come, their storage time on the end device and a unique number. Servers can read cookies from this end device with each subsequent visit.

Our website uses two basic types of cookies. “Session”, i.e. temporary files stored in the browser’s memory until the browser is closed. “Persistent” cookies are also used, remaining in the browser’s memory for a long time. They make it easier to use more frequently visited pages. The time they are stored depends on your browser settings.

Thanks to cookies:

  • adapts the content of websites to your preferences and individual needs, m.in i.e. the selected language of the website, color, layout, content placement,
  • anonymous statistics of website visits are created, as well as the way the website is used, which allows improving its structure and content,
  • logging in to the website is remembered on each of the subpages available on a given website, thanks to which you do not have to re-enter your login and password every now and then,

We use the following types of cookies on our website:

  • necessary – files enabling the use of services available on the website, without them the website does not work

correctly

  • functional – “remember” the settings selected by the User and personalization of the interface, e.g. in terms of the selected language or region, font size, website appearance, etc.,
  • ensuring security – e.g. to detect fraud in the field of authentication under the

Service

  • performance – enable the collection of information on how to use the website, help to fix errors occurring on the website, etc.,
  • advertising – they provide advertising content more tailored to the interests of the recipient, thanks to which the same advertisement is not shown over and over again.

It is worth remembering that in many cases the web browser or other software used to browse websites allows cookies to be stored by default. At any time, it is possible to independently manage cookies – by changing the settings of your web browser. It is possible, for example, to manage cookies at the level of individual websites selected by the user. Detailed information about the possibilities and ways of handling cookies are available in the software settings (Web browser).

The Website Administrator informs that restrictions on the use of cookies may affect some of the functionalities available on the Website.

Cookies placed on the Website User’s device may also be used by advertisers and partners cooperating with the Website operator.