Privacy Policy

Data Protection Policy 

This policy contains information on data management related to the activity of TalentWorldGroup Plc.

In establishing the provisions of this Code, the Data Controller has taken into account the legislative provision of the European Parliament and of the Council (EU) 2016/679 (hereinafter GDPR). According to Article 30 of the GDPR, the Data Controller is obliged to keep a record of the data management activities, which fulfills the obligation of the present Policy and, if necessary, modifies them.

The data controller:

● Name: TalentWorldGroup Plc.

● Registered office: 1085 Hungary, Budapest, Rokk Szilard str. 3.

● Tax number: HU26331360

● Company registry number: 01-10-049797

● Data protection owner: Krisztina Rolkó

● E-mail: dpo@talentworldgroup.com

The Data Controller will handle all your personal data in accordance with the GDPR Regulations, from the first time of contact throughout and after the termination of our cooperation for our records. All data is collected and stored for multiple purposes. The legal basis and duration of such data handling may vary.

During our cooperation, we can only contract with a natural person over eighteen years of age.

In the set duration of data handling, the Data handler may forward these personal data to persons in key positions at our company.

These positions are:

• Community Management Director • Community Managers

• International Recruiters • TPL Specialist • TPL Manager • HR General Manager

• HR Marketing Manager

• VP of HR

• VP of Service Delivery

• Executive Director of Service Delivery Regional Projects

• Regional Project Directors

• Project Senior Supervisors

• VP of Global Business Support • Senior BS Manager • BS manager

• CIO

• IT Manager

• IT Technician

• CEO

Those responsible for each project will handle these personal data exclusively during the duration of the project lifecycle.

In the below tables, all personal data handling type, purpose, legal basis and storage duration are listed.

In case of applying:

  1. Scope of Managed Data
  2. Purpose of Data Management
  3. Legal Basis for Data Handling
  4. Duration of Data Management

Full Name
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Registered Address
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Home Workstation Address
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Maiden Name (Ladies)
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Place of Birth (City, Country)
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Date of Birth
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

ID or Passport Number
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Mobile Number
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Landline Number (Optional)
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

E-mail
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Paypal E-mail
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Bank Name
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Bank Address
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

IBAN
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

BIC/SWIFT
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Nationality
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Voice Recording
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Skype Name
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Server Location
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

IP Identifiers
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Logging Data (e.g. Browser type, net connection, speed test)
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Picture
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

Public Social Media Platform
Identification
Legitimate interest (proper implementation of the application process)
2 years from the last contact

To whom the data will be transmitted:
As part of the recruitment process and later the process of work, data will be provided for data processing and data handling with name, address, email address, voice recording for workflow and internal audits. (Legitimate interest) As a part of the workflow, the Data Manager uses additional data controllers in areas that are not organically related to workflows, such as bookkeeping.

Security:
For data processing, the Data Controller selects and manages the IT tools used to manage personal data so that the data is processed: a) is accessible to those entitled to it (availability); b) credibility and authentication is ensured (credibility of data management); c) its integrity can be verified (data integrity); d) protected from unauthorized accesses (confidentiality of data).

Rights:
In respect of personal data handled by the Data Controller you have the following rights
a. Accessing personal data; (Article 15) The data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data
b. Requesting correction of personal data; (Article 16) The data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her. 2Taking into account the purposes of the processing, the data subject shall have the right to have incomplete personal data completed, including by means of providing a supplementary statement.
c. Requesting deletion of personal data; (Article 17) The data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay and the controller shall have the obligation to erase personal data without undue delay
d. Requesting a restriction on the processing of personal data; (Article 18) The data subject shall have the right to obtain from the controller restriction of processing
e. Objecting to handling your personal data; (Article 21) The data subject shall have the right to object, on grounds relating to his or her particular situation, at any time to processing of personal data concerning him or her which is based on point (e) or (f) of Article 6(1), including profiling based on those provisions. 2The controller shall no longer process the personal data unless the controller demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims.
f. Receiving personal data and forward it to another data controller, as long as the legal preconditions are met (right to data storage); (Article 20) The data subject shall have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided
g. If your personal data is processed in accordance with your consent, you may withdraw your consent at any time (Article 7) The data subject shall have the right to withdraw his or her consent at any time. 2The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal. 3Prior to giving consent, the data subject shall be informed thereof. 4It shall be as easy to withdraw as to give consent.
h. If the handling of personal data is necessary for the legitimate interests of the data controller or third party, may object to data handling. (Article 77) Without prejudice to any other administrative or judicial remedy, every data subject shall have the right to lodge a complaint with a supervisory authority, in particular in the Member State of his or her habitual residence, place of work or place of the alleged infringement if the data subject considers that the processing of personal data relating to him or her infringes this Regulation

Placing a complaint:
Please contact us immediately if you feel that your personal data has not been handled properly so that we can take the necessary measures and to be able to continue handling your personal data in accordance with the compliance regulations.
● Name: TalentWorldGroup Plc.
● Registered office: 1085 Hungary, Budapest, Rokk Szilard str. 3.
● dpo@talentworldgroup.com

If you are unable to get in contact with our DPO as listed above, you can directly file a complaint with the local authority, under the contacts below:
● National Privacy and Freedom of Information Authority (abbreviated name: NAIH)
● Postal Address: 1363 Budapest, Pf.: 9.
● Address: 1055 Budapest, Falk Miksa utca 9-11
● E-mail: ugyfelszolgalat@naih.hu