Basic information
The personal data of the candidates will be processed by AGILE CONTENT, S.A. to carry out this personnel selection process. Under the legal conditions, you have the right to access, rectify and delete the data, to limit its treatment, to oppose it and its portability. You can expand the information below:
Who is responsible for the processing of your data?
- Identity: AGILE CONTENT, S.A. CIF: A-64549181.
- Postal address: C/ Poeta Joan Maragall 1 (28020) Madrid - Spain.
- Phone: +00 34 93 802 3800.
- Email: [email protected]
Who is the Data Protection Officer (DPO) of the entity and how can he help you?
The DPO is a figure, legally foreseen, whose main functions are to inform and advise our entity on the obligations that affect it in terms of protection of personal data and monitor its compliance.
In addition, the DPO acts as a point of contact for any questions regarding the processing of personal data, so if you have any queries, doubts or suggestions regarding how we use your personal data, you can contact him:
- Identity of the Data Protection Officer: Picón y Asociados Nuevas Tecnologías, S.L.
- DPO contact email: [email protected]
For what purpose do we process your personal data?
In the event that you send us your CV, we will process it to have information about those who wish to work with us in order to carry out the corresponding personnel selection processes.
Likewise, health data derived from psychotechnical tests, personality tests or psychological tests carried out during the selection process and in the strict environment of the same may be processed. In this regard, the candidate may access the result of these tests at any time and know the selection criteria used by the company in relation to them.
Finally, sometimes, during the selection processes, professional networks and job portals may be used to collect additional information from candidates with profiles that are of interest to us, subject to the Privacy Policies of these platforms. The categories of personal data processed in these cases are the following: identification data, personal characteristics data, employment details data, academic and professional data and any other information that the candidate has published on the job portal or included in his CV.
How long will we process your data?
The data that you provide us or that we obtain to take part in a specific open personnel selection process will be kept until that process concludes and canceled later, unless the candidate is selected, in which case they will be incorporated into your employee file. If candidates who are not selected want us to keep their CVs for future selection processes, they must expressly request it via email. In the latter case, as well as when you provide us with your CV spontaneously, simply so that we take it into account in future selection processes, the data will be kept for a maximum of one year from the last update. You must keep the personal data you provide to us up to date; in particular, those relating to training and professional experience.
What is the legitimacy for the processing of your data?
The legitimizing basis of the processing of the CVs that you send us or that we obtain from professional networks or employment platforms for a specific open personnel selection process is the existence of a pre-contractual relationship. Additionally, more data may be collected during interviews or selection processes, whose treatment has the same basis.
The legal basis for the processing of the data contained in your CV, when you have asked us to keep it after a selection process or that you have sent us spontaneously, is your consent, which may be revoked at any time. However, the data processing carried out previously will not lose its legality due to the fact that the consent has been revoked.
Finally, the performance and obtaining of results of psychotechnical tests, personality tests or psychological tests that may be carried out, will have as a legitimizing basis the express, free, informed and unequivocal consent of the candidate.
To which recipients will your data be communicated?
The data will be communicated to the following entities:
- The competent Public Administrations, including judges and courts, in the cases provided for in the Law and for the purposes defined therein.
- The remaining companies of our Group, whose identity can be consulted in https://www.agilecontent.com/tv/about-agile-content . The purpose of this assignment is the centralized management of our activities and the fulfillment of internal administrative purposes, including the processing of personal data of candidates.
Likewise, and although it is not a transfer of data, it may be that third companies, which act as our suppliers, access your information to carry out the service. These managers access your data following our instructions and without being able to use them for a different purpose and maintaining the strictest confidentiality and based on a contract in which they undertake to comply with the requirements of current regulations on the protection of personal data.
Finally, the candidate's data may be transferred to the United Kingdom. This transfer will be made if necessary, pursuant to the Adequacy Decision COMMISSION IMPLEMENTING DECISION of 28.6.2021 pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council on the adequate protection of personal data by the United Kingdom, which can be consulted at the following link:
https://ec.europa.eu/info/sites/default/files/decision_on_the_adequate_protection_of_personal_data_by_the_united_kingdom_-_general_data_protection_regulation_en.pdf
What are your rights when you provide us with your data?
Anyone has the right to obtain confirmation as to whether we are processing personal data concerning them, or not. Interested persons have the right to access their personal data, as well as to request the rectification of inaccurate data or, where appropriate, request its deletion when, among other reasons, the data is no longer necessary for the purposes for which they were collected.
Under the conditions provided for in the General Data Protection Regulation, interested parties may request the limitation of the processing of their data or their portability, in which case we will only keep them for the exercise or defense of claims.
In certain circumstances and for reasons related to their particular situation, the interested parties may oppose the processing of their data. If you have given consent for a specific purpose, you have the right to withdraw it at any time, without affecting the lawfulness of the treatment based on the consent prior to its withdrawal. In these cases we will stop processing the data or, where appropriate, we will stop doing so for that specific purpose, except for compelling legitimate reasons, or the exercise or defense of possible claims.
In addition, data protection regulations allow you to object to being subject to decisions based solely on the automated processing of your data, where applicable.
The aforementioned rights are characterized by the following:
- Its exercise is free of charge, except in the case of manifestly unfounded or excessive requests (e.g. repetitive), in which case a fee proportional to the administrative costs incurred may be charged or refuse to act
- You can exercise the rights directly or through your legal or voluntary representative
- Your request must be responded to within one month, although, if the complexity and number of requests are taken into account, the deadline can be extended by another two months.
- We have the obligation to inform you about the means to exercise these rights, which must be accessible and without being able to deny you the exercise of the right for the sole reason of opting for another means. If the request is submitted by electronic means, the information will be provided by these means when possible, unless you request us to do otherwise.
- If, for any reason, the request is not acted upon, we will inform you, at the latest within one month, of the reasons for this and of the possibility of complaining to a Supervisory Authority.
In order to facilitate the exercise of these rights, by way of example, we provide below the links to the application form for each of them:
All the aforementioned rights can be exercised through the means of contact listed at the beginning of this clause.
In all cases, you must prove your identity by accompanying a photocopy or scanned copy, of your ID or equivalent document, or document accrediting the representation, if the right is exercised through a representative.
All the aforementioned rights can be exercised through the means of contact with the entity listed at the beginning of this clause.
In the event of any violation of your rights, especially when you have not obtained satisfaction in its exercise, you can file a claim with the Spanish Agency for Data Protection (contact details accessible in www.aepd.es), or another competent control authority. You can also find out more about your rights by contacting these bodies.
How do we protect your personal data?
We are firmly committed to protecting the personal data we process. We use measures, controls and procedures of a physical, organizational and technological nature, reasonably reliable and effective, aimed at preserving the integrity and security of your data and guaranteeing your privacy.
In addition, all personnel with access to personal data have been trained and are aware of their obligations in relation to the processing of their personal data.
In the case of the contracts we sign with our suppliers, we include clauses in which they are required to maintain the duty of secrecy regarding the personal data to which they have had access by virtue of the order made, as well as to implement the technical and organizational security measures necessary to guarantee confidentiality, permanent integrity, availability and resilience of personal data processing systems and services.
All these security measures are reviewed periodically to ensure their adequacy and effectiveness.
However, absolute security cannot be guaranteed and there is no security system that is impenetrable so, in the case of any information subject to processing and under our control is compromised as a result of a security breach, we will take appropriate measures to investigate the incident, notify the Control Authority and, where appropriate, to those users who could have been affected to take appropriate measures.
What is your responsibility as the data subject?
By providing us with your personal data, the person who does so guarantees that he is over 14 years of age and that the data provided is true, accurate, complete and updated.
For these purposes, the interested party is responsible for the veracity of the data and must keep them suitably updated so that they respond to their real situation, being responsible for the false and inaccurate data that may be provided, as well as for the damages, direct or indirect, that may arise.
If you provide data from third parties, you assume the responsibility of informing them in advance of everything provided for in article 14 of the General Data Protection Regulation under the conditions established in said precept.