1. General information on data protection
1.1 Introduction
We are glad you have expressed interest in our company and our products and services, and we would like you to feel secure about the protection of your personal information when you visit our website at www.maandag.pl. This is why we consider personal data protection one of our top priority concerns. It is obvious for us to comply with the provisions of personal data protection regulations, in particular, such as GDPR, that is Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation), as well as other personal data protection laws. We would like you to know when and what personal data we collect and for what purposes we use it. We have taken certain technical and organizational measures to ensure that personal data protection regulations are respected by both us and third-party service providers.
1.1.1 Personal data
Personal data allow you to identify yourself. They include, for example, your first and last name, address, telephone number, e-mail address. When using our website, you are not required to provide your personal information. In certain cases, we require your name and address and other data in order to provide certain services. This also applies, for example, to sending information materials or responding to individual inquiries. We inform you accordingly if the provision of data is necessary. In addition, we only save and process personal data that you provide voluntarily and directly. If you use our maintenance services, we generally only collect data necessary to perform those services. If we ask you for other data, this is voluntary information. Personal data are processed only for the purposes of providing the specified service on our website and for the protection of the Personal Data Controller’s own and legitimate business interests. Your data are not sold or shared with unauthorized third parties. In accordance with the accepted principles for the processing of personal data, the personal data on all candidates are collected by the Personal Data Controller into own dataset of job candidates. The candidate may also consent to processing of data for recruitment purposes, which includes the sharing of data with future employers for the purpose of employment or the implementation of further stages of the recruitment procedure, which remains in accordance with the purpose of data collection, and which is confirmed in the information obligations presented to candidates.
1.1.2 Personal Data Controller
The Controller of your personal data is Maandag® Poland Sp. z o.o. with its registered seat in Wrocław, ul. Powstańców Śląskich 9, 53-332 Wrocław, entered in the National Court Register under KRS number 0000624281, using Tax ID (NIP) no. 5252663292, hereinafter referred to as the Controller. The Controller’s contact details will be available in the Contact tab at www.maandag.pl.
1.1.3 Data Protection Officer
Maandag® Poland Sp. z o.o. has appointed a Data Protection Officer who can be contacted at iod@maandag.pl.
1.1.4 Purposes and basis of personal data processing
The Controller processes your personal data for various purposes, but always in accordance with the law. The purposes of personal data processing are listed below, along with the legal basis for the same.
In order to carry out the recruitment process, we process such personal data as:
first and last name, date of birth, contact information, educational information, employment history and in some cases we process home address and image.
The legal basis for such processing is Article 6(1)(a) GDPR, which allows personal data to be processed if the data subject has given consent to the processing of his or her personal data for one or more specific purposes.
In order to contact you via social networks for recruitment purposes, we process personal data such as:
personal data to the extent provided in your social network profile, if your profile is public.
The legal basis for such processing is Article 6(1)(f) GDPR, which allows us to process personal data if processing is necessary for the purposes of the legitimate interests pursued by the controller. Our legitimate interest is to contact you.
In order to exchange correspondence regarding contracts, execution of orders, the course of the recruitment process or other issues to which the correspondence will relate, we process such personal data as:
First and last name, e-mail address, telephone number.
The legal basis for such processing is Article 6(1)(f) GDPR, which allows us to process personal data if processing is necessary for the purposes of the legitimate interests pursued by the controller. Our legitimate interest is to respond to your inquiries and to send you necessary information by e-mail.
1.1.5 Recipients of Personal Data
Like most businesses, we use help of other entities in our operations, which sometimes involves the transfer of personal data. Personal data may be shared with employers for the purpose of employment or further recruitment in accordance with the purpose of processing. Personal data may also be disclosed to our subcontractors only within the scope of services provided to us, in particular to IT and hosting providers, entities performing maintenance, consulting, auditing services and entities providing legal services. Data may also be provided to our clients, partners, or subcontractors if this is necessary for the performance of tasks under the concluded agreement.
1.1.6 Rights of Data Subjects
At any time, you have the right to obtain access to your personal data, to request the data be rectified or erased, or that the scope of their processing be restricted. You also have the right to object to the processing of your data, the right to data portability, and the right to lodge a complaint with a supervisory authority, i.e. the President of the Personal Data Protection Office (ul. Stawki 2, 00-193 Warszawa). Furthermore, at any time and without stating the reasons, you may revoke the consent you have previously expressed regarding the processing of your personal data without affecting the legality of the processing carried out on the basis of the consent before the latter was revoked.
1.1.7 Period of storage of personal data
In accordance with applicable laws, your personal data are kept for the time necessary to achieve the purpose of processing. We kindly inform you that we store your personal data:
where you consent to participate in future recruitment and presentation of job offers: until you withdraw your consent;
where you apply for a specific recruitment, without consenting to participate in future recruitment processes: for the duration of the recruitment process, whereafter the data are deleted of you do not take the position or completion of recruitment process;
if you take the position (when your temporary employer is Maandag®), the data will be kept throughout your employment and for 10 consecutive years thereafter;
in the case of conducting recruitment for third parties and where correspondence and communications are involved, your data will be processed for 6 years until the completion of pending cases until claims, our legal obligations cease or until you object to the processing.
1.1.8 Final provisions
To the extent not covered by this Privacy Policy, the data protection regulations shall apply.
1.1.9 Amendment of our data protection provisions.
We reserve the right to change our security and data protection measures if technical developments so require. In such cases, we will also adjust our personal data protection information accordingly. Therefore, please refer to the current version of our data protection document. You will recognize the current version by the date given at the end of the document.
1.2 Website
When you visit our website, we additionally process statistical and marketing data about our users. The statistical data only allow us to obtain information about the browser used, the type of page and the requested file, as well as the previous website from which the user came to us. However, it is not possible to link individual users to their visits in this way, especially regarding information on IP addresses. It is not possible to draw up usage profiles based on this data, nor is it in our interest to do so.
1.2.1 Cookies
We use cookies on our website. A cookie is a small text file that your web browser automatically receives from our server and stores on your computer. However, your privacy is protected. Under no circumstances are personal data stored that would allow you to be identified. Cookies make it possible for you to be recognized on subsequent visits to our website. Thus, you do not have to enter the same information again. This allows us to provide even better and faster service. We use two types of cookies:
Session cookies: these are text files that are stored on your device until you leave our website. In other words: once you leave our website, the cookies are deleted again and stop working.
Persistent cookies: this type of cookie is not deleted once you have finished using and logged out of our website.
We assure you that we therefore do not collect or save personal information, such as your name or e-mail address. In addition, we do not have the technical ability to use the cookies to track your computer’s hard drive or otherwise violate your privacy. You can also use our site without accepting the additional cookies. If you do not want our site to recognize your hardware, you can refuse to allow the cookies to be stored on your computer’s hard drive by selecting ‘I do not accept cookies’ via the cookie banner on our website or in your browser settings As for details, we refer you to the features used by your browser.
1.2.2 Links and references
In the case of direct or indirect links to external websites (‘hyperlinks’) which do not fall within the scope of responsibility of the service provider associated with this website, its liability may be limited only to the case in which it is familiar with the content of such websites and has the ability to prevent the use thereof in the event that illegal content is found on them. We hereby expressly declare that at the time of linking, no illegal content was published on the linked pages. The service provider that owns this website is not responsible for any unrecognized illegal and/or erroneous content on all linked/referenced sites of third-party service providers. Neither can it influence the current and future organization, content, or authorship of the linked/referenced websites. Therefore, it explicitly distances itself from any content published on all linked/referenced websites that has already been changed after the link was placed. This also applies to all links and references placed within our own Internet offerings. Our data protection statement does not apply to other websites.
1.3 Security regulations
We have taken appropriate technical and organizational measures to protect your personal data from loss, destruction, manipulation, and unauthorized access. All our employees and all persons involved in personal data processing are required to respect personal data protection regulations and handle personal data with confidentiality in mind. The protective measures we take will be updated on an ongoing basis according to technological developments.
2. Statistical analysis of website visitors
2.1 Google Analytics
This website uses Google Analytics, an advertising analysis tool from Google Inc. (Google). Google Analytics uses so-called ‘cookies’, that is text files stored on your computer to analyze your use of the website. The information generated by the cookies regarding your use of this website is generally transferred to and stored on a Google server in the USA. If IP anonymization is activated on this website, your IP address is shortened in advance by Google within the member states of the European Union or in other countries that are party to the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transferred to a Google server in the USA and only there shortened accordingly. On behalf of this website’s owner, Google will use this information to analyze your use of the website www.maandag.pl, to compile reports on indicated website activity and to provide further services to this website’s owner related to the use of the website www.maandag.pl and the Internet. The IP address transmitted by your browser as part of Google Analytics is not combined with other Google data.
You may refuse to consent to the storage of additional cookies by selecting the appropriate setting in your browser or via cookie settings on our website; however, please be advised that failure to do so may limit your ability to use certain features available on the website. In addition, you may refuse to consent to the collection of data generated and acquired by cookies during your use of the site (including your IP address) and to the processing of such data by Google by downloading from http://tools.google.com/dlpage/gaoptout?hl=en and installing a browser plug-in. Regarding the discussion of the use of analytical tools using full IP addresses, we kindly advise you that this website uses Google Analytics with the extension ‘_anonymizeIp()’ and therefore an abbreviated form of the IP addresses is processed to exclude the risk of direct acquisition of personal data.
2.2 Facebook Custom Audience tracker function
This website uses an ad analysis tool called the Facebook Custom Audience tracker. Facebook Custom Audience tracker uses tools such as Pixel, SDKs, and APIs (Facebook tools) and cookies to send data to Facebook, including through actions taken by users of this website (event data). Facebook uses the event data it receives to provide information on the effectiveness of adverts or website/app usage, or to prepare Custom Audience, an ad control tool. With the help of event data, we can better tailor adverts to the needs of specific target groups and optimize our systems. In connection with content targeting and optimization, Facebook does the following: (i) Facebook uses event data collected by the website or mobile apps to optimize adverts only after combining such data with other data that have been collected by other advertisers or third parties, or otherwise on the Facebook website, and (ii) Facebook does not consent to other advertisers’ or third parties’ ads targeting based solely on event data that have been collected on our website or mobile apps. Facebook does not share event data with other advertisers or third parties unless it obtains your consent or is required to do so by law. Facebook ensures the confidentiality and security of event data by, among other things, taking technical and physical security measures (a) to ensure the security and integrity of the data throughout their storage in Facebook’s systems and (b) to protect the data from accidental or unauthorized access, use, alteration, or disclosure within Facebook’s systems. Users who do not wish to participate in the tracking process can easily deactivate the Facebook Custom Audience tracker cookie by making appropriate setting changes in their web browser or via cookie settings on our website.
2.3 AppNexus
The site uses technology from AppNexus Inc., 28 W 23rd Street, 4th floor, New York, NY-10010, USA. Information on browsing activity is recorded for marketing purposes in a fully anonymized form and cookies are used for this purpose. No personal data are collected or processed.