Information on the processing of personal data for those taking part in the recruitment (Candidates)

  1. The controller of personal data processing for Candidates is IdoBooking sp. z o. o. (also referred to as the ‘Operator’) with its registered office at al. Piastów 30, 71-064 Szczecin, entered in the register of entrepreneurs kept by the District Court Szczecin-Centrum in Szczecin, XIII Economic Division of the National Court Register under the number 00001118562 NIP: 8522710288; REGON: 529324888; with the share capital of PLN 200,000.00.
  2. In matters concerning personal data, IdoBooking may be contacted by e-mail: sales@idobooking.com and by phone: +48 91 443 66 00.
  3. The Data Protection Officer at IdoBooking is Rafał Malujda, e-mail address: gdpr-inspector@idobooking.com.
  4. The processing of the personal data provided by the Candidate is carried out in order to carry out the recruitment for an employee position/ establish cooperation on the basis of:
    1. Article 6(1)(c) GDPR, i.e. when the processing is necessary for the fulfilment of a legal obligation incumbent on the employer, including in connection with the performance of duties imposed by Article 22 (1) § 1 of the Labour Code,
    2. Article 6(1)(a) GDPR, i.e. on the basis of consent given for the purposes set out each time in the consent forms provided,
    3. Article 6(1)(b) GDPR - taking action at the request of the data subject prior to entering into a contract.
  5. Recipients of the personal data processed by IdoBooking are IdoBooking's business partners, hosting companies, software providers, marketing agencies, online and card payment operators, accounting offices, law firms and other entities to which IdoBooking entrusts the candidate's personal data or makes them available on the basis of an appropriate contract for the purpose of providing services.
  6. Personal data may be transferred to entities located in third countries such as the USA and Canada for which the European Commission has determined an adequate level of protection for personal data (in the case of the USA, it is a condition that the entity concerned has joined the ‘EU-US Data Protection Framework’).
  7. The controller of personal data of the Candidate will be kept until the end of the respective recruitment procedure, unless the Candidate has given his/her consent to process his/her data also for future recruitment procedures.
  8. The Candidate has the right to request from the Administrator access to his/her personal data, rectification, erasure or restriction of processing, as well as the right to data portability.
  9. For data processed on the basis of consent, the Candidate has the right to withdraw consent at any time without affecting the lawfulness of the processing carried out on the basis of consent before its withdrawal.
  10. The Candidate has the right to lodge a complaint with the supervisory authority, which is the President of the Office for the Protection of Personal Data, if he/she considers that the processing of the Candidate's personal data by the Controller violates the provisions on the protection of personal data.
  11. The provision of personal data by the Candidate is partly a statutory requirement and partly a contractual requirement and, as a rule, is voluntary, but may be necessary for the proper conduct of the recruitment procedure. Failure to provide personal data may result in an inability to carry out the procedure with the Candidate.