Dear applicant,

Compliance with data protection regulations is of great importance to our company.
We would like to inform you below about the collection of your personal data by us:

Personal Data:
Personal data is any information about yourself that can be linked to you or can be used to identify you.

Applicants Controller:
The concept m research + consulting GmbH entity that has posted the job offer, for which you are applying, is the responsible data controller. The contact information of the data controller, as well as of the relevant Data Protection Officer are indicated in the job offer.

Please direct any questions concerning data protection and data privacy you might have to: datenschutz@conceptm.eu.

Collection and Processing of Personal Data:
Additionally, if you visit our career portal, we shall also ask you for further personal data as part of the intake for your application. We will only ask you for data, pursuant to Art. 6 para. 1 lit. b) GDPR, that is indispensable in the course of your employment application.

Please note that not providing this personal data may result in us not being able to process your application.
This may include but is not limited to:

  1. Administrative data (contact details)
    a. Title
    b. Name
    c. Address
    d. Email
    e. Telephone number
    f. citizenship / work permit
  2. Academic and professional data (resume and cover letter)
    a. Curriculum
    b. Work history
    c. further information required for your application

Please be aware that any further information you choose to share with us, is given voluntarily and may be subject to processing.

Use of Personal Data and Purpose Specification:
Your personal data is being collected and processed for the handling of your application in consideration for employment at concept m research + consulting GmbH. In other words, we process your data at your request for the purpose of taking steps towards the conclusion of a contract.

If recruited, your data will be transferred into your personnel-file for the purpose of performing our duties as your employer. Also, in this connection, we may ask you for more personal data that we require to duly register you as an employee. Prior to that collection, we shall also provide adequate information to you.

Data Retention:
Once the application process has been completed the data necessary to complete your employment application will, for non-recruited candidates, be erased within 3 months and, for recruited candidates, be stored in your personnel file.

Data Recipients:
Only the HR team that will consider your application may access your application data. We shall especially not grant access to any of your personal data to any party outside the concept m research + consulting GmbH organization. Since concept m research + consulting GmbH is organized in matrix organization with functional hierarchies, across concept m research + consulting GmbH boundaries, this may mean that your application data may be accessed by persons outside the legal entity that you have applied with.

The data itself, however, is stored within the territory of the European Union with concept m research + consulting GmbH, Germany. They process the data on our behalf yet have to access rights to that data. We secure our internet data transmissions with TLS encryption.

Owing to functional hierarchies and our service providers it may become necessary to grant access to persons outside the European Union. To ensure the protection of your personal data we have entered into contracts regarding the data exchange that contain EU-standard clauses, pursuant to Art. 46 para. 2 lit. c) GDPR. These contracts help to establish a level of data protection that is equal to the EU’s level.

We will not process your personal data for any other purpose that your application unless we are explicitly required to do so by law.

Your Rights:
As a data subject, you have the right to obtain information about personal data concerning you and to have incorrect data corrected or deleted if one of the reasons stated in Art. 17 GDPR applies, e.g. if the data are no longer required for the purposes pursued. Furthermore, there is a right to limitation of processing if one of the conditions specified in Art. 18 GDPR applies and in the cases of Art. 20 GDPR the right to data transferability.

Any data subject has the right of appeal to a supervisory authority if he or she considers that the processing of data concerning him or her is in breach of data protection legislation. The right of appeal may be exercised in particular before a supervisory authority in the Member State of residence or employment of the person concerned or the place of alleged infringement.

Data Transfers to Third Countries (Non-EU Countries):
In some cases, we may transfer personal data to third countries outside of the EU. In each case, we ensure an appropriate level of data protection according to European standards.

Internally, we have concluded an intragroup agreement on data protection and data transfers using Standard Contractual Clauses.

If data is transferred outside the concept m research + consulting GmbH and the EU / EEA, we have ensured that the recipients offer an adequate level of data protection, by either relying on Privacy Shield, Standard Contractual Clauses or other means recognized by the GDPR to establish an adequate level of personal data protection. We regularly audit our processors.

Data Security:
concept m research + consulting GmbH maintains reasonable and appropriate physical, electronic and procedural safeguards, in accordance with Art. 32 GDPR, to protect personal data from being manipulated, lost, destroyed or accessed by unauthorized persons. Where data is passed on to external service providers, concept m research + consulting GmbH has taken technical and organizational measures to ensure that the data protection regulations are observed.

Contact:
If you experience any problems or have any questions or wishes regarding data protection, please contact: datenschutz@conceptm.eu.

Data Protection Officer
You also have the right to contact our data protection officer at any time, who is bound to secrecy regarding your request. The contact details of our data protection officer are as follows:

CONTACT DETAILS

Cortina Consult GmbH
Joerg ter Beek

Hafenweg 24
48155 Münster
Tel: +49 (0)251 – 29 79 47 41
Mail: jtb@cortina-consult.de