Privacy policy
1. Protecting your privacy
Our company is aware that the protection of your privacy is an important issue when completing your application. We take the protection of your personal data very seriously. This is why we would like you to know when we save which data, and how we use it. This privacy policy therefore informs you of our data protection measures.
2. Scope of this privacy policy
Depending on their area of application, the provisions of relevant data protection laws shall apply to the respective data processing. In particular, this may relate to the EU’s General Data Protection Regulation (GDPR) or the Swiss Federal Act on Data Protection (FADP).
3. Controller and EU representative
Depending on the company to which you are submitting your application (you can also find this in the job advertisement), the controller under data protection law is either Burckhardt+Partner AG (Dornacherstrasse 210, 4002 Basel, Switzerland), Burckhardt+Partner GmbH (Kaiserin-Augusta-Allee 14, 10553 Berlin, Germany) or Burckhardt+Partner GmbH (Hebelstrasse 1, 79639 Grenzach-Wyhlen, Germany).
The EU representative for Burckhardt+Partner AG is Burckhardt+Partner GmbH (Hebelstrasse 1, D-79639 Grenzach-Wyhlen,grenzach@burckhardtpartner.de)
You can find more information about our company and how to contact us on our website.
4. Our data protection officer
We have appointed a data protection officer in our company. You can contact him using the following information:
Swiss Infosec AG
Ref: DPO Burckhardt+Partner AG
Centralstrasse 8A
CH-6210 Sursee
Switzerland
E-mail:bp.dpo@infosec.ch
5. Processing personal data
During the application process, the usual correspondence data such as address, e-mail address and telephone number are stored in the applicant database along with the title, surname, first name, date of birth and nationality. In addition, all documents submitted by you as part of the application will be recorded or references may be obtained from the referees you previously provided for us. This data will be stored, evaluated, processed or passed on internally only within the context of your application. The data may be processed for statistical purposes (e.g. reporting). This does not allow individuals to be identified.
6. Purpose of use of your personal data
Your personal data will only be processed within the context of your application and in connection with the decision to create an employment relationship.
7. Legal basis of data processing
If the data is required for legal proceedings after the application procedure is completed without the candidate being appointed, data processing may also take place to safeguard legitimate interests according to Art. 6 (1f) GDPR or Art. 13 (2) FADP. Our interests will then involve the assertion or defence of claims. A legal basis for data processing may also result from compliance with legal regulations.
8. Software partner
Your data is stored and processed on our software partner Refline AG’s systems.
9. Data protection and confidentiality
Our company and Refline AG have taken the necessary organisational and technical measures to ensure the confidentiality, integrity and availability of your application. All employees at our company and our software partner’s employees as well as third parties contracted to provide support are obliged to maintain strict confidentiality in relation to personal data as part of their contractual (employment) relationship. Data is transmitted using SSL encryption. Data is processed using general data security standards in accordance with state-of-the-art technology.
In addition, our company has put technical and organisational measures in place to protect your data from accidental or intentional manipulation, loss, alteration, damage or access by unauthorised persons. In the case of the collection and processing of personal data, the information is transmitted in encrypted form to prevent misuse of the data by third parties. The security measures are continuously adjusted in line with technological developments.
10. Access to the data
The data you provide to us shall be treated in confidence. Only people within our company who are involved in recruitment have access to the data you provide within the framework of a specific application. If you have given us your consent, we reserve the right to also accept and examine your application with regard to other suitable positions within our company.
In particular, our company's HR specialists and the line manager responsible for selecting the candidate have access to the data you have provided. All employees in the personnel department of our company can view the application pool (unsolicited applications). The line manager in question only gets access to the data you have provided if your application for a specific position has been shortlisted.
In exceptional circumstances, employees at our software partner, which is contracted to provide support, may also be able to view the data you provide.
Your data shall never be passed on to other companies or persons or used for other purposes.
Data processing in Switzerland takes place in a country that the EU Commission has deemed as having an adequate level of protection.
11. Data protection law
You have various rights depending on the applicable data protection law, even if these are not are not specifically referred to below.
Insofar as the GDPR is applicable, the following applies: each data subject has the right of access in accordance with Art. 15 GDPR, the right to rectification in accordance with Art. 16 GDPR, the right to erasure in accordance with Art. 17 GDPR, the right to restriction of processing in accordance with Art. 18 GDPR, the right to object arising from Art. 21 GDPR and the right to data portability arising from Art. 20 GDPR. In addition, there is the right to lodge a complaint with the responsible data protection supervisory authority (Art. 77 GDPR).
You can revoke your consent for the processing of personal data at any time. This also applies to revoking declarations of consent which were issued to us before the General Data Protection Regulation came into force, i.e. before 25 May 2018. Please note that such revocation only applies to the future. Any processing which took place prior to revocation is not affected.
12. Data protection authorities
Each German state has its own data protection supervisory authority. The Swiss Federal Data Protection and Information Commissioner (FDPIC) is the supervisory authority for data protection matters in Switzerland.
13. Deleting application documents
Application documents from candidates who have not been successful with regard to a specific application for a job vacancy shall be erased six (6) months after the position has been filled. The application documents of people who enter into an employment relationship following the application procedure are stored in a personnel file.