Updated on: 8th May 2021.
The purpose of this privacy statement is to provide preliminary information for the users (hereinafter referred to as the ‘User(s)’ or ‘Data Subject(s)’) of the website eudevelopers.com (hereinafter referred to as the ‘Website’) concerning the data and facts related to the data processing performed on and by the Website.
The Users are not required to provide their personal data in order to get access to the Website; however, the use of certain services of the Website may be subject to the provision of personal data.
Hereby we inform you that your personal data will be processed in a confidential manner, in accordance with the prevailing data protection laws and regulations, under the term of this privacy statement by KnowCamp HR Kft (registered seat: 2089 Telki, Áfonya utca 5. (Hungary), company reg. no.: 13-09-205149; EU VAT number: HU27914951; hereinafter referred to as the ‘Data Controller’/’we’).
The Data Controller’s contact details in connection with data processing issues:
- e-mail address: firstname.lastname@example.org
1. Data processing methods on the Website
1.1. Application as a Job Seeker
In case you are registering on our Website as a Job Seeker, you acknowledge and agree on our “Terms and Conditions” and we process your given personal data as follows:
The scope of the data processed: full name, email, optionally: CV details.
The purpose of data processing: to provide recruitment services to the registrant person
The legal basis of data processing:
- to perform contractual obligations according to the Job Seeker-user Agreement and
- the legitimate interest of the Data Controller to enforce our claims against our Partner
The term of data processing: the personal data provided shall be deleted within 5 years following the termination of the contract between the parties.
Data transfer: IMPORTANT: in case you apply as a Job Seeker we might transfer your data to our partner(s) who is(/are) searching for a candidate like you. Due to the recruitment service’s nature we are not able to tell in advance each of the specific partner. Our partners are companies who are looking for candidates. By registering as a Job Seeker you accept, that your data will be transferred to our partner companies.
We only send personal data for those companies, which are processing personal data in compliance with the GDPR or provides the same level of data-protection and security.
1.2. Application as an Employer
In case you are connecting us as representative of a company, who is searching for an Employee or a freelancer-worker, you fill our ‘Sign up as an Employer’ form and we process your personal data as follows:
The scope of the data processed: name, email, company, position, company website, company billing details
The purpose of data processing: to answer to any request, keep in contact with the potential partners
The legal basis of data processing: legitimate interest of the Data Controller to contact the potential partners through their contact person
The term of data processing: the personal data provided shall be deleted within 5 years following the last contact with the given company – in case the company and the Data Controller conclude an agreement, the personal data will be processed within 5 years after the termination of the agreement.
1.3. Newsletter subscription
If you subscribe to our newsletter, we will send you relevant information on the labour market or just send you our latest job opportunities or any further information, which we find relevant.
The scope of the data processed: name, email
The purpose of data processing: to send direct marketing and informational newsletters
The legal basis of data processing: consent of the person
The term of data processing: the personal data provided shall be deleted within 8 years following the subscription
1.4. Contact in any other cases
Should you have any question or need further information on Data Controller or the products and services of the Data Controller, you may contact the Data Controller by filling out the respective form on the Website.
The scope of the data processed: name, email, subject, message, optionally any other data disclosed in the course of the communication (e.g. employer’s name, phone number)
The purpose of data processing: to answer the User’s questions, to provide the requested information
The legal basis of data processing: the voluntary consent of the Data Subject
The term of data processing: the personal data provided shall be deleted within 30 days following the provision of the answer to the question raised or the information requested.
2. Website visitors’ data – server log files
The data recorded in the log files during the process of use of the Website are stored and used for technical (e.g. analysis of the safe operation of servers, subsequent controls, identification, prevention and investigation of attacks against the Website) and statistical purposes only. To this end, the internet service provider of the Website records and logs automatically the so-called server log file information, transferred to us by your web browser. These information include your IP address, the data of your browser and language settings, your operation system, your internet provider, date/time settings as well as the URLs of the current and the recently visited websites. These series of data will not be combined by the Data Controller with other information from different sources, suitable to identify the data subject natural person. Should we become aware of any specific suspicion concerning the illegal or unlawful use of the Website, we reserve the right to evaluate these data subsequently.
The term of data processing: 30 day(s). After the expiry of this term, the data will be stored only if it is required for the purpose to investigate any attack against the Website.
The legal basis of data processing: The legitimate interest of the data controller (the achievement of the above purposes).
3. Entrusted data processors
For the above purposes, the Data Controller uses the services of the following data processors:
I. Data processor used for the provision of web hosting services:
Name and contact details of Data Processor: Amazon Web Services, Inc.
410 Terry Avenue North Seattle, WA 98109 United States
Activity related to data processing: web hosting services
II. Data processor used for the provision of job board management services:
Name and contact details of Data Processor: Keen Steps Inc
1005 Terminal Way, Ste. 102, Reno, NV 89502, USA
Activity related to data processing: job board management services
III. Data processor used for the provision of newsletter services:
Name and contact details of Data Processor: The Rocket Science Group LLC d/b/a Mailchimp (registered seat:675 Ponce de Leon Ave NE, Suite 5000
Atlanta, GA 30308 USA; contact details: email@example.com)
Activity related to data processing: newsletter services
IV. Data processor used to Google services:
Name and contact details of Data Processor: Google Ireland Limited (registered seat: Gordon House, Barrow Street, Dublin 4, Ireland; contact details: https://www.google.com/contact/)
Activity related to data processing: Google Analytics and DoubleClick
4. Data transfer
We do not transfer your personal data in addition to what is described in this policy.
5. Data security
The Controller and the data processors shall handle the personal data disclosed by the Users in a confidential manner and observe the prevailing data protection laws and regulations, in particular Act CXII of 2011 on Informational Self-Determination and Freedom of Information, Act VI of 1998 on the ratification of Strasbourg Convention of 28 January 1981 for the Protection of Individuals with regard to Automatic Processing of Personal Data and Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
In order to ensure the safe processing of data, the Data Controller shall take all IT and other measures required to the safe and secure storage, processing and transfer of data. The Data Controller shall take the expectable measures to protect the personal data processed by it against unauthorized use, alteration, disclosure, deletion, damage or destruction and to ensure the technical conditions required thereto.
The persons authorized to have access to data: The data provided by the Users will be available only for the Data Controller, the data processors and their employees and agents, the performance of whose tasks and duties require the knowledge of such data.
6. Your rights
You are entitled to obtain confirmation as to whether or not your personal data is being processed, and, where that is the case, access to the personal data and to the following information:
(a) the purposes of data processing:
(b) categories of the affected personal data;
(c) the recipients or categories of recipient to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organizations;
(d) where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;
(e) the existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing;
(f) the right to lodge a complaint with a supervisory authority;
(g) where the personal data is not collected from the data subject, any available information as to their source;
(h) the existence of automated decision-making, including profiling and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.
Upon request, the Data Controller shall provide you with a copy of your personal data which is the subject of the data processing.
You may request at any time the correction or supplementation of erroneous personal data; the Data Controller shall take the requested measures without undue delay.
You are entitled to withdraw your consent to data processing at any time. The consent may be withdrawn by cancelling the subscription by using the adequate link or, in any other case of data processing, by sending your request for cancelling the subscription to the Data Controller, as described herein. In case you cancel your subscription / withdraw your consent, the Data Controller shall delete your personal data from its registration immediately, but at latest within 30 working days from the cancellation / withdrawal.
Your consent to the storage of cookies may be withdrawn according to the method described in the section titled ‘Manage cookies’ herein.
The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
Upon the request of the Data Subject, the Data Controller shall delete the personal data concerning him or her, without undue delay, if
– the personal data is no longer necessary in relation to the purposes for which they were collected or otherwise processed;
– the Data Subject withdraws consent on which the processing is based, and there is no other legal ground for the processing;
– the processing of the personal data is for direct marketing purposes, and the Data Subject objects to the processing and there are no overriding legitimate grounds for the processing;
– the personal data has been unlawfully processed; or
– the personal data has to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject;
Where the Data Controller has made the personal data public and is obliged pursuant to the present section to erase the personal data, the Data Controller, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform data processors which are processing the personal data, that the Data Subject has requested the erasure by such processors of any links to, or copy or replication of, those personal data.
The above provisions shall not apply to the extent that processing is necessary:
(a) for exercising the right of freedom of expression and information;
(b) for compliance with a legal obligation by European Union or Member State law to which the Data Controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data Controller;
(c) for reasons of public interest in the area of public health;
(d) for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes, in so far as the right to deletion is likely to render impossible or seriously impair the achievement of the objectives of that processing; or
(e) for the establishment, exercise or defense of legal claims.
The Data Controller shall restrict data processing upon the request of the Data Subject, if
– the accuracy of the personal data is contested by the Data Subject, for a period enabling the Data Controller to verify the accuracy of the personal data;
– the processing is unlawful and the Data Subject opposes the erasure of the personal data and requests the restriction of their use instead;
– the Data Controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defense of legal claims; or
– if the processing of personal data takes place for direct marketing purposes and the Data Subject has objected to processing; in this case, the restriction shall be valid as long as it is verified whether the legitimate grounds of the controller override those of the Data Subject.
Where processing has been restricted according to the above, such personal data shall, with the exception of storage, only be processed with the Data Subject’s consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State. A Data Subject, who has obtained restriction of processing pursuant to the above provisions, shall be informed by the Data Controller before the restriction of processing is lifted.
In addition to the above, the Data Subject shall have the right to receive the personal data concerning him or her, which he or she has provided to the Data Controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another Controller without hindrance from the controller to which the personal data have been provided.
Requests may be submitted via e-mail, sent to firstname.lastname@example.org
For the sake of identification, correct and accurate personal data shall be provided.
The Data Controller shall notify the Data Subject of the measures taken upon the request for exercising his/her rights without undue delay, but in any case, within 30 days of the receipt of the request.
Where the Data Subject makes the request by electronic form means, the information shall be provided by electronic means where possible, unless otherwise requested by the Data Subject.
The correction, restriction and deletion of data shall be reported by the Data Controller to the concerned Data Subject and those, to whom the affected data were previously transmitted for data processing purposes.
If the Data Controller does not take action on the request of the Data Subject, the Data Controller shall inform the Data Subject without delay and at the latest within 30 days of receipt of the request of the reasons for not taking action and on the possibility of lodging a complaint with a supervisory authority and seeking a judicial remedy.
The User shall have the right to object, on grounds relating to his or her particular situation, at any time to processing of personal data concerning him or her, which is based on a legitimate interest. In such a case, the Data Controller may no longer process the personal data unless it demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defense of legal claims.
Where personal data is processed for direct marketing purposes, the data subject shall have the right to object at any time the processing of personal data concerning him or her for such marketing, which includes profiling to the extent that it is related to such direct marketing.
The Data Controller shall suspend the data processing and examine the objection within the shortest possible deadline, but within maximum 30 days and inform the requesting party of the result thereof in writing. If the objection is well-grounded, the Data Controller shall terminate the processing (including any further collection or transfer of data) and shall restrict the affected data. Furthermore, it shall notify of the objection and the measures taken in response thereto those, to whom the personal data affected by the objection were transmitted previously; these recipients shall also provide the enforcement of the right to object.
In the case of infringement of the rights described hereinabove, the Data Subject may turn to the local (or regional) court having competence at the Data Subject’s address of residence (in a priority process) or the Hungarian National Authority for Data Protection and Freedom of Information (address: 1125 Budapest, Szilágyi Erzsébet fasor 22/c; website: http://www.naih.hu).
The Data Controller reserves the right to amend this privacy statement unilaterally, provided that preliminary notice to the Users shall be given thereof. By using the service following the effective date of such amendment the User accepts the amended privacy statement.