Skip to main content

Processing of (personal) data by the entity in charge of the online application process

 Privacy Statement 

 Table of Contents 

 1 Introduction.. 2
 2 Controller. 2
 3 Whose information do we collect. 3
 4 What personal data do we process. 3
 5 Newsletter. 5
 6 Cookies on our websites. 5
 7 What we do with your information and on what legal basis  6
 8 With whom may we share your personal data. 6
 9 Transfer to countries outside the EEA.. 6
 10 How long we keep your information.. 7
 11 Your rights with regard to your personal data. 7
 12 Details on Data Security. 8
 13 Changes to the Privacy Statement. 8
 

1          Introduction

Cenosco B.V. and its subsidiaries (collectively, “Cenosco”, “we”, “our” or “us”) with their products and services support users in making smart inspection and maintenance decisions to increase safety, asset availability and optimize management costs.

As a software company Cenosco processes personal data of its own employees and those of its customers and suppliers. In doing so it generally acts as a controller within the meaning of the General Data Protection Regulation (“GDPR”).

Cenosco is committed to respect your privacy. We will collect and process your personal data in accordance with this Privacy Statement and applicable data protection law.

The Privacy Statement defines the following subjects:

  • the types of information we may collect from you or that you may provide to us; and
  • our practices for collecting, using, maintaining, protecting and disclosing that information.

Cenosco will only use your personal data for the purpose for which it is provided to us (the “Purpose”). Cenosco does not sell personal data to any third party.

This Privacy Statement applies to information we collect: through our website (cenosco.com), an e-mail, text, and other electronic messages between you and us e.g. when you apply for a job via our careers page or when you use our products or services; through information and submissions that you provide to us, both online and offline; and when you interact with us through third-party websites and services (e.g., social networking providers) (collectively, the “Services”).

2         Controller

The controller as per the GDPR isCenosco Custom B.V. If you apply for a job with Cenosco, Cenosco Croatia d.o.o. may also be a controller as per the GDPR.

Cenosco can be contacted at privacy@cenosco.com. Further contact information can be found here.

3         Whose information do we collect?

Personal data processed by Cenosco includes personal data relating to:

  • Job applicants or persons who are looking for a job at Cenosco (hereinafter "applicants");
  • Persons who are customers or are employed by our customers (hereinafter: "customers");
  • Persons from whom we purchase products or services or are employed by our suppliers (hereinafter: "suppliers");
  • Third parties, like persons, not being customers, whose details we obtain when working for a customer (e.g. suppliers of customer with whom we interact, employees of authorities we obtain information from etc.) or visitors to our website (hereinafter "third parties").

4         What personal data do we process?

4.1 Job applicants

With regard to job applicants we process the following data:

  • contact details (name and address details, titles, telephone numbers and similar data required for communication), date of birth, nationality, place of birth, gender;
  • data on training programmes, courses and internships taken or to be taken;
  • data on the job applied for;
  • data on the nature and content of the current employment, and the possible termination thereof;
  • other data about the position to be held, provided by the data subject or known to him (such as curriculum vitae data, or results of a competency test);
  • other data whose processing is required pursuant to or is necessary in view of the application of any laws or regulations.

4.2 Customers

With regard to customers we process the following data of customer (employees):

  • contact details (name and address details, titles, telephone numbers and similar data required for communication), gender;
  • data for calculating and recording fees and expenses, making payments and collecting amounts due;
  • data required to provide access to our services and relevant for the way we provide the service and for security reasons (login data, training information, actions performed in the system)
  • other data of which the processing is required pursuant to or is necessary in view of the application of laws or regulations.

4.3 Suppliers

With regard to suppliers we process the following data of supplier (employees):

  • contact details (name and address details, titles, telephone numbers and similar data required for communication), gender, bank account number;
  • in some cases: a statement of conduct and data on an identity document;
  • data with regard to ordering or purchasing products or services;
  • data for calculating and recording expenses and making payments;
  • other data of which the processing is required pursuant to or is necessary in view of the application of laws or regulations.

4.4 Third Parties

With regard to third parties we process the following data:

  • contact details (name and address details, titles, telephone numbers and similar data required for communication), and gender if and insofar as made known to us;
  • data in connection with a visit to our website, such as data for the purpose of identifying and communicating with the visitors to the website or data recorded to collect visitor statistics with regard to our website (see next chapter);
  • data with regard to electronic messages originating from or destined for third parties and data that are necessary for the purpose of maintaining contact with these third parties;
  • other data provided to us by customers or third parties or that are obtained from public sources in the context of the provision of our Services.

5         Newsletter

Everybody can subscribe to our newsletter offered on our website. If you do subscribe to a newsletter, the data provided when registering for the newsletter will only be used for the purpose of sending the newsletter, unless we have those data also for another purpose mentioned above. You can terminate the subscription at any time by using the unsubscribe option in the newsletter. If you read our online newsletter, we store that information. We record when and how often you access the letter, with what kind of device (mobile phone or a desktop) and which articles you read and which topics you follow. This enables us to improve our content and provide you with targeted information.

6         Cookies on our websites

6.1 The cookies we use

Cenosco uses certain cookies that are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for service, such as setting your privacy preferences, logging in, or filling in forms. Next to that, when you have agreed thereto, Cenosco uses cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners who may combine it with other information that you have provided to them or that they have collected from your use of their services. We have concluded processing agreements with our suppliers to ascertain that personal data that are collected for us in this context, are only used to give us insight into the manner in which our website is used. We have also adapted the settings of the service in such a way that the data may not be deployed by other suppliers.

6.2 How to reject cookies

You can choose to reject or block specific types of cookies set by virtue of your visit to a Cenosco website by clicking on the cookie preferences on our website(s). You can change your preferences for Cenosco websites and/or the websites of any third party suppliers by changing your browser settings. If you reject the use of cookies (other than necessary cookies that cannot be rejected), you will still be able to visit our websites but some of the functions may not work correctly. You may also visit www.allaboutcookies.org for details on how to delete or reject cookies and for further information on cookies generally.

7         What we do with your information and on what legal basis

Cenosco will only use and disclose your personal data for the purpose for which you have provided it to us as determined at the time of collection and in accordance with the applicable legal basis, including:

Providing you with information, products or services that you request from us; legal basis: consent, entering into or fulfilment of a contract, legitimate interest;

Managing our business operations (e.g., customer relationship management (CRM) system, opt-in marketing database, customer service and support system); legal basis: consent, fulfilment of a contract, legitimate interest;

Performing and enforcing agreements; legal basis: entering into or fulfilment of a contract; legitimate interest;

Our own corporate transactions and reorganizations; legal basis: entering into or fulfilment of a contract, legitimate interest;

Recruitment: assessment of suitability for the job: entering into a contract, legitimate interest; and

Fulfilling any other purpose for which you provide the personal data.

8         With whom may we share your personal data

Cenosco may share personal data with the people that work for us, with affiliates, agents, suppliers and other (sub)-processors as necessary for the purposes for which we collect the personal data.

9         Transfer to countries outside the EEA

Your personal data may be transferred to a country outside the European Economic Area (EEA) that provides a lower level of protection to personal data than the legislation in the EEA. For example, Cenosco may use a supplier of online services which is established outside the EEA (for example in the United States of America), and the use of these services may involve a transfer of personal data to the supplier.

If such situation presents itself, and personal data are transferred to a country outside the EEA that provides less legal protection to personal data, we will provide for appropriate safeguards in order for the transfer to take place in accordance with the privacy laws here. We may do this by concluding a contract with the recipient in accordance with a format that the European Commission or a national supervisory authority has approved for this purpose.

10       How long we keep your information

We do not store personal data longer than necessary to achieve the purpose for which it was obtained. We keep customer data for 5 years after they have terminated the agreement. We keep user data for the duration the customer uses our services. We do not store lead data for longer than 3 years. Data about job applicants we delete within 1 months after the job was fulfilled unless they become an employee or give us permission to save the data for (another) year.

11        Your rights with regard to your personal data

The laws on the protection of personal data give you the following rights with regard to personal data relating to you:

  • The right to request whether or not personal data concerning you are processed, and, if this is the case, to get access to these;
  • The right to request rectification and erasure of these data;
  • The right to object to the processing or to ask for a restriction of the processing;
  • The right to withdraw the consent to the processing, if the processing is based on your consent;
  • The right to receive your data or have this transmitted to an organisation designated by you, in a structured, commonly used and machine-readable format;
  • Depending on the country where you live, the right to file a complaint with a supervisory authority that monitors the compliance with the rules for the pro- tection of personal data. In the Netherlands, this is the Autoriteit Per- soonsgegevens in The Hague (www.autoriteitpersoonsgegevens.nl).

Cenosco will deal with a request in connection with the exercise of these rights in the manner as prescribed by law. However, these rights are not absolute; they do not apply under all circumstances and the applicable rules provide for exceptions. If we do not grant your request, we will explain to you why.

In order to exercise your rights, you may contact us at privacy@cenosco.com. You may also use this email address if you wish to file a complaint about the manner in which your personal data have been processed by us. If you are dissatisfied with the manner in which we dealt with your complaint, you can file a complaint with the Autoriteit Persoonsgegevens (the data protection authority in the Netherlands) or, if you reside or work in another country of the EEA, with the supervisory authority in that country.

12       Details on Data Security

We have implemented measures designed to secure your personal data from accidental loss and from unauthorized access, use, alteration, and disclosure.

13       Changes to the Privacy Statement

This statement was last amended in May 2023.

In May 2023 we changed the provider for our careers page and updated the wording in that regard. Also, we made the wording on the data we process for the newsletter we provide more transparent. If we amend this statement in the future we will publish the amended statement on our website, stating the date on which the amended version will take effect. It is our policy to post any changes we make to the Privacy Statement on this page. If we make material changes that may affect certain persons to a material degree, we will do our best to notify these persons about that.

      

Processing of (personal) data by the operator of the recruitment website

General information

This recruitment website is operated by Personio SE & Co. KG, which offers a human resource and candidate management software solution (https://www.personio.com/legal-notice/). Data transmitted as part of your application will be transferred using TLS encryption and stored in a database. The sole controller of this data within the meaning of article 24 of the GDPR is the enterprise carrying out this online application process. Personio’s role is limited to operating the software and this recruitment website and, in this context, being a processor under article 28 of the GDPR. In this case, the processing by Personio is based on an agreement for the processing of orders between the controller and Personio. In addition, Personio SE & Co. KG processes further data, some of which may be personal data, to provide its services, in particular for operating this recruitment website. We will refer to this in more detail below.

The controller

The controller under data protection law is:
Personio SE & Co. KG
Seidlstraße 3
80335 München
Tel.: +49 (89) 1250 1004
Entry in the commercial register
Commercial register entry number: HRA 115934
Registration Court: Amtsgericht München
Data Protection Officer contact: privacy@personio.com

Access logs (“server logs”)

Each access to this recruitment website automatically causes general protocol data, so-called server logs, to be collected. As a rule, this data is a pseudonym and thus does not allow for inferences about the identity of an individual. Without this data, it would, in some cases, be technically impossible to deliver or display the contents of the software. In addition, processing this data is absolutely necessary under security aspects, in particular for access, input, transfer, and storage control. Furthermore, this anonymous information can be used for statistical purposes and for optimizing services and technology. In addition, the log files can be checked and analyzed retrospectively when unlawful use of the software is suspected. The legal basis for this is §25 subsection 2 Sentence 2 TDDDG. Generally, data such as the domain name of the website, the web browser and web-browser version, the operating system, the IP address, as well as the timestamp of the access to the software is collected. The scope of this log process does not exceed the common log scope of any other site on the web. These access logs are stored for a period of up to 7 days. There is no right to object to this.

Error logs

So-called error logs are generated for the purpose of identifying and fixing bugs. This is absolutely necessary to ensure we can react as quickly as possible to possible problems with displaying and implementing content (legitimate interest). As a rule, this data is a pseudonym and thus does not allow for inferences about the identity of an individual. The legal basis for this is §25 subsection 2 Sentence 2 TDDDG. When an error message occurs, general data such as the domain name of the website, the web browser and web-browser version, the operating system, the IP address, as well as the timestamp upon occurrence of the respective error message and/or specification is collected. These error logs are stored for a period of up to 7 days. There is no right to object to this.

Use of cookies

So-called cookies are used on parts of this recruitment website. They are small text files which are stored on the device with which you access this recruitment website. As a general rule, cookies serve the purpose of ensuring secure access to a website (“absolutely necessary”), implementing certain functionalities such as standard-language settings (“functional”), improving the user experience or the performance of the website (“performance”), or placing targeted advertisements (“marketing”). On this recruitment website, we generally use only cookies that are absolutely necessary, functional or performance-related, in particular for implementing certain default settings such as language, for identifying the job advertising channel, or for analyzing the performance of a job advert via which a user accessed this recruitment website. The use of cookies is absolutely necessary for providing our services and thus for the performance of the contract (article 6 (1) b) of the GDPR). Period of storage: up to 1 month or until the end of the browser session Right to object: You can determine via your browser settings whether you allow or object to the use of cookies. Please note that deactivating cookies may result in limited or completely blocked functionalities of this recruitment website.

Rights of data subjects

If Personio SE & Co. KG as the controller processes personal data, you as the data subject have certain rights under Chapter III of the EU General Data Protection Regulation (GDPR), depending on the legal basis and the purpose of the processing, in particular the right of access (article 15 of the GDPR) and the rights to rectification (article 16 of the GDPR), erasure (article 17 of the GDPR), restriction of processing (article 18 of the GDPR), and data portability (article 20 of the GDPR), as well as the right to object (article 21 of the GDPR). If the personal data is processed with your consent, you have the right to withdraw this consent under article 7 III of the GDPR. To assert your rights as a data subject in relation to the data processed for the purpose of operating this recruitment website, please refer to Personio SE & Co. KG’s Data Protection Officer (see item B).

Concluding provisions

Personio reserves the right to adjust this data privacy statement at any point in time to ensure that it is in line with the current legal requirements at all times, or in order to accommodate changes in the services offered, for example when new services are introduced. In this case, the new data privacy statement applies to any later visit of this recruitment website or any later job application.