Privacy | Welcome at MTEE

Privacy

Your privacy is important to us and we undertake to protect and safeguard the rights relating to the privacy of your information.

Our policy

In this privacy policy, we describe how we handle your personal data and in doing so comply with our statutory obligations, not just when we help you to find a job but also when we help our clients find a suitable candidate and when you are doing nothing more than visiting our website.

By virtue of the legislation (the General Data Protection Regulation (GDPR) [known in the Netherlands as the ‘Algemene Verordening Gegevensbescherming’ (the ‘AVG’)], we ensure that each processing of your personal data complies with the following principles:

  1. We only process your personal data for legitimate purposes. This means that the processing is necessary for the achievement of goals specifically stated in the GDPR or that you have given your consent for the processing of your personal data. When it is legitimate to process your personal data, we do so in a proper and responsible way. We tell you clearly the purposes for which your personal data is being processed and how this is being done.
  2. We only collect and process your personal data for well-defined, explicitly specified and legitimate purposes. If we use your information later for another purpose then we make sure that your purpose is consistent with the original collection purpose.
  3. We ensure that the personal data that we collect from you and process is adequate for the purpose for which we collect it, that it is relevant and that it is limited to what is necessary.
  4. We take all reasonable measures to ensure that your personal data is both correct and up-to-date. If your information is not that or is no longer that then we delete or correct it.
  5. We retain your personal data for no longer than is necessary for the purpose for which we process it. If the information is no longer needed then we destroy or delete it.
  6. We ensure that your personal data is properly protected and remains confidential. We protect your personal data against unauthorised or unlawful processing and against unintentional loss, destruction or damage.
  7. We are responsible for compliance with all the above principles and can demonstrate that the processing of your personal data complies with these principles.

In order to ensure fair and honest processing of personal data, the GDPR grants you certain rights that you can exercise against us if you do not agree with our implementation of this privacy policy.

When does this policy apply to you?

This policy applies to you:

  • if you register yourself as a candidate with us or with one of our initiators (i.e. clients) for whom we recruit (Candidate)
  • if you are approached by our staff in connection with our vacancies (or those of one of our initiators) and consent to being made part of the process and/or database
  • if you visit our website (Website User)

 When and how you get in touch with us in our capacity as the controller for your personal data

MTEE Careers is designed and hosted by EN HR solutions, Neptunusstraat 17, 2132 JA Hoofddorp, The Netherlands that has been commissioned by MTEE.

  • To gain access to your personal data that you had given us or to amend or withdraw it or
  • if you suspect the misuse or loss of or unauthorised access to your personal information or
  • to withdraw your consent for the processing of your personal data (if consent is the legal basis for our processing of your personal data) or
  • to make comments and/or suggestions relating to this privacy policy,

you can get in touch with us at the following address: Neptunusstraat 17, 2132 JA Hoofddorp, The Netherlands. You can also send an e-mail to the following e-mail address: privacy@enhrsolutions.nl

Which personal data do we collect and use?

CANDIDATE DETAILS

We collect certain information about you so that we can find a suitable working environment for you. We restrict our collection of information to the information that we need for us to achieve our purpose.

Please find below the information about you that we usually collect and use:

  • First name;
  • Surname;
  • Date of birth;
  • Gender;
  • E-mail address;
  • Phone number;
  • CV;
  • Motivation;
  • Additional information that you provide us with;
  • Additional information about you that your job reference contact provides us with;
  • Additional information that our Clients could tell us about you or that we find out from third-party sources such as job vacancy websites;
  • IP address;

The above list of categories of personal data that we may collect about you is not exhaustive.

WEBSITE USERS

We collect and use basic information about our Website Users, which information we primarily use to improve our website. We look at how you use our website, at how often you visit our website and at which times our website is used most often. We also use website data to monitor visit behaviour and to optimise our remarketing campaigns.

How do we collect your personal data?

CANDIDATE DETAILS
We primarily collect personal data about Candidates in three ways:

  1. Personal data that you provide us with in your capacity as Candidate;
  2. Personal data that we receive from other sources; and
  3. Personal data that we collect automatically.

WEBSITE USERS

We collect your information automatically using cookies when you visit our website, depending on the cookie settings in your browser. If you contact us via the website then we will also collect information from you.

How do we use your personal data?

CANDIDATE DETAILS

In general, we use the details of Candidates in two ways:

  1. for recruitment activities
  2. for marketing activities

The most important reason for using your personal details is to help you find work or other employment positions that could suit you.

You can use this website to apply for any vacancy that our initiators (i.e. clients) have published on it. Where appropriate and in compliance with local legislation and regulations, we can also use your personal data for such purposes as marketing and profiling. When required to do so, we will ask you for your consent to perform some or all of these activities. Where appropriate to do so in the future, we may also use Candidate data for profiling. In exceptional cases we may also be obliged to use your personal data in criminal proceedings.

WEBSITE USERS

The information from Website Users helps us to improve the user experience you have with our website. For example: analysing your recent search criteria for vacancies in order to offer you suitable vacancies.

WHO DO WE SHARE YOUR PERSONAL DATA WITH?

We can share your personal data with the following categories of people and parties, doing so in a number of ways and for certain reasons, where it is appropriate and in compliance with local legislation and regulations to do so:

  • with all commercial entities that are subsidiaries of EN HR solutions B.V., including EN-flex B.V. etc.
  • in the case of Candidates: with our initiators for whom we are managing the recruitment process in the name of the initiator’s organisation, by publishing this data on our website, and in particular with MTEE,
  • if legislations and regulations require this: with tax authorities, audit authorities and other authorities;
  • third parties such as service providers who carry out activities on our instructions;
  • third parties such as outsourced IT providers and file storage providers that we have a processing agreement with;
  • the platforms for the marketing technology and the suppliers;

This list is not exhaustive.

How long do we retain your personal data?

We will remove your personal data from our systems if:

  • In the case of Candidates: we have not had any meaningful contact with you for a period of 4 weeks, unless the law or relevant supervisory authorities require(s) us to retain your data longer. Your data will be passed on to the initiator who is dealing with your job application.
  • In the other cases: we have not had any meaningful contact with you for a period of 2 years, unless the law or relevant supervisory authorities require(s) us to retain your data longer.

Your rights under the GDPR

By virtue of the GDPR there are various rights relating to the personal data of yours that we have in our possession. By contacting us, we can discuss this data with you and deal with it by the deadline set for doing so.
Under the GDPR, you have the following rights:

  • the right to information;
  • the right to inspect your information;
  • the right to have the information corrected if it is incorrect;
  • the right to have the information deleted, as well as ‘the right to be forgotten’;
  • the right to have the data processing restricted;
  • the right to object to the data processing;
  • the right to have your information transferred (data portability);
  • the right to not be subjected to an automated decision-making process.

The Right To Information

We have a duty to inform you about the personal data of yours that we process. More specifically, you have the right to know what is being done with your information and why. This privacy policy is designed to make you aware of the data processing risks, of the rules that apply for it, of our safeguards and of the way in which you can exercise your rights regarding the processing of information.

The Right To Inspect

You have the right to inspect the personal data that we collect from you. Accordingly, you may ask us at reasonable intervals of time whether we are processing personal data of yours, and if so, which data. We are obliged to comply with such requests and to provide the information available.

If you ask us to do so then we will either provide you with a copy of this information or grant you remote access to the data in a secure environment (such as via a personal account/portal). We will not charge you anything for the copy of the information. However, if you wish to receive multiple copies of it then we will charge you a reasonable fee for this that will be based on our administrative costs. We will provide you with the copy in digital or other written form.

When we receive an inspection request, we check whether you are the person making this request. This check includes establishing your identity. This is especially true for online services.

The Right To Rectification

If the personal data of yours that we process is either incorrect or no longer correct then you have the right to order us to correct this data. You also have the right to have this information supplemented if it is incomplete.

If we have shared your information with other parties then we will inform these parties about the changes, unless it is impossible to do so or would require a disproportionate effort on our part to do so.

We will determine whether something is a disproportionate effort by weighing up your interests against the effort (costs, time etc.) that we would have to make to inform the recipients.

The Right To Deletion and The Right To Be Forgotten

You have the right to have your information deleted by us as soon as possible but only in one of the following cases:

  • the personal data is no longer needed for the purposes for which it was collected or otherwise processed;
  • you withdraw your consent for the processing and there is no other valid reason for us to continue with the processing;
  • you have submitted a well-founded objection to the processing (see The Right To Object);
  • your personal data was processed unlawfully;
  • your personal data has to be deleted in order to comply with a statutory obligation that we are subject to;
  • your personal data was collected in connection with a direct offer of Internet services to a child.

In addition to The Right to Deletion, you have The Right to ‘Be Forgotten’.

In situations where we have made your personal data public (for example by making it available online) and you ask us to delete the information then in addition to deleting the data from our own systems we will take reasonable technical and organisational measures to inform the other controllers (i.e. the parties responsible for data processing) who are processing your personal data that you wish to be forgotten. This means that any and all links to, and copies or reproductions of, the data must be deleted.

By virtue of the GDPR, there are certain situations where we do not have to comply with your request to delete data or to be forgotten. This is the case for instance if the processing is needed to comply with a statutory processing obligation that we are subject to. If in our opinion such a situation exists then we will provide you with a reasoned rejection of your request.

If we have shared your information with other parties then we will inform these parties that the data must be deleted at your request, unless this informing is either impossible or would require a disproportionate effort on our part.

We will determine whether something is a disproportionate effort by weighing up your interests against the effort (costs, time etc.) that we would have to make to inform the recipients.

We are only entitled to refuse to comply with your request for a reason that is stated in the GDPR.

The Right To Restrict The Processing

You can invoke your right to restrict the processing in the following situations:

  • you dispute the correctness of the personal data at a time when the controller can check the correctness of the personal data;
  • the processing is unlawful and you object to the deletion of the personal data and request that its use be restricted instead;
  • we no longer need the personal data for the processing purposes but you need it for the establishment, exercise or defence of legal claims;
  • you have filed an objection against the processing, in anticipation of an answer to the question of whether our legitimate grounds outweigh yours.

In the aforementioned situations we will ensure that the processing is restricted in such a way that the personal data cannot be processed any further.

If we have shared your personal data with third parties then we will inform them about the processing restriction, unless this informing is either impossible or would require a disproportionate effort on our part.

If we remove the restriction then we will inform you of this beforehand.

The Right to Object

Of the three situations described in the GDPR in which you can exercise your right to object, two of them apply to you in your capacity as Candidate, Client, Temporary Worker, Interimmer or Seconded Worker, Supplier or Website User:

  1. personal circumstances mean that you can file an objection against that processing that is based on our legitimate interest. In that case we will halt the processing unless there are mandatory, legitimate reasons that mean that our processing interest outweighs your interest in having the processing halted;
  2. you can file an objection against the processing of your personal data if we use it for direct marketing. We will always comply with such an objection. We will respond to your request within 30 days, although we may extend this period of time in certain cases.

The Right to Have Your Information Transferred (Data Portability);

If you so desire, you have the right to have your personal data transferred to other controllers. In practice this means that you can transfer your stored data to the provider of another online platform (depending on the nature of the data and the data systems). In order to enable you to do this, we will provide you with the information in a standard computer-readable form that is protected with a password. If desired we can pass on the information for you directly.

The right to portability only applies to information provided whose processing is both automated and based on the following principles:

  • the unequivocal or explicit consent of the data subject;
  • the need to have the agreement performed.
  • The right to not be subject to an automated individual decision-making process, this including profiling
  • Note: you have the right to not be subject to a decision that is solely based on automated processing (including profiling), if this:
  • has legal consequences for yourself; or
  • it has a significant impact on you in another way.

In the following situations, we can use an automated individual decision-making process that may include profiling:

  1. if this necessary for the formation or execution of an agreement between yourself and ourselves;
  2. if you have given us your explicit consent for this;
  3. if we are permitted to do this by virtue of an applicable law that also provides for the protection of your legitimate interests.

The right to submit a complaint to a supervisory authority:
You also have the right to submit a complaint to your local supervisory authority.

What are cookies and how do we use them?

  • A ‘cookie’ is a small piece of code that is stored on your computer’s hard drive. Cookies are used by almost all websites and do not harm your computer system. We use cookies to monitor your activity and to enable us to offer you the best possible experience when you visit our website. We can use the information we get from cookies to ensure that the next time you visit our website we can show you those options that are tailored to your needs and wishes. We can also use cookies to analyse traffic to our website and for advertising purposes.
  • If you wish to check which type of cookies you accept when visiting either our website or those websites of our initiators that we manage then you can usually see this in your browser settings.
  • In order to view a complete list of the above cookies’ specifications, download our Cookiebeleid (Cookie Policy).

How You Can Delete Cookies

  • If you do not wish to receive any cookies that are not strictly necessary to perform our website’s basic functions then you can refuse these cookies by adjusting your browser settings.
  • Most web browsers will accept cookies but if you would prefer us to refrain from using this method to gather information from you then you can adjust your browser’s privacy settings to either accept all cookies, to accept some cookies or to refuse all cookies. Please note that refusing all cookies may mean that you will be unable to use all our website’s functions or leave your job application with us or with one of our initiators (clients). Every browser is different, so open your browser’s ‘Help Menu’ to see how you can change your cookie preferences.
  • For general information about cookies, including about their deactivation, you can visit the aboutcookies.org website, where you will also find information about deleting cookies from your computer.

Our legal grounds for processing your data

LEGITIMATE INTERESTS

By virtue of Article 6 paragraph 1f GDPR, we are permitted to process your data if the ‘processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of that data subject who requires protection of personal data…’.

However, you have the right to file an objection against our processing of your personal data on these grounds. In that case you can get in touch with us.

COMMERCIAL INTERESTS

We believe that it is reasonable to expect that if you are looking for work or have placed professional information from your CV on a job vacancy website or professional networking site that you agree to us collecting your data, to using your personal data to offer you recruitment services or to deliver them to you, to sharing this data with potential employers and to comparing your skills with our initiator’s needs and wishes. We have to do these things so that we can operate as a profitable company and in order to help you and other Candidates find a job. These are our commercial interests.

CONSENT

In certain circumstances, we are obliged to obtain your consent for the processing of your personal data in connection with certain activities. This consent will be either an opt-in consent or a soft opt-in consent, depending on the precise use we make of your information.

Article 4 paragraph 11 GDPR states that (opt-in) consent comprises: ‘each freely given, specific, informed and unambiguous expression of will where the data subject accepts – through a declaration or clear affirmative action – the relevant processing of personal data.’ In ordinary language, this means that:

  • you must have given us your consent freely, without us putting you under any type of pressure;
  • you must know what you are consenting to, which is why we ensure that we provide you with sufficient information;
  • you must be able to check the processing activities, both those that you did – and those that you did not – give us your consent for; and
  • you must give your consent by clear affirmative action – in most cases we will show you a box that you can tick so that this requirement is complied with clearly and unambiguously.

We will keep records of the consents that you have given us in this way.
We have already stated that in some cases we can rely on soft opt-in consent. We are permitted to offer you products and services that relate to the recruitment services that we deliver, as long as you do not actively unsubscribe from these messages.

The Right to Withdraw Consent

If you have given us your consent to process your personal data for certain activities (such as for our marketing activities or for automatic profiling) then you can withdraw this consent at any time, whereupon we will halt the activity that you had given your consent for, unless we are of the opinion that there is an alternative reason that justifies continuing to process your information for this purpose. In that case we will inform you about this reason.

THE FORMULATION, EXERCISE OR DEFENCE OF CRIMINAL PROCEEDINGS

It is sometimes necessary to process both personal data and – where appropriate to do so and in accordance with local legislation and regulations – sensitive personal data, this in connection with the exercise or defence of criminal proceedings. Article 9 paragraph 2f GDPR permits this, providing that the processing ‘is necessary for the establishment, exercise or defence of legal claims or wherever courts are acting in their judicial capacity.’

TERMS AND DEFINITIONS

  • The General Data Protection Regulation (GDPR) [known in the Netherlands as the ‘AVG’/Algemene Verordening Gegevensbescherming] – a statutory instrument of the European Union to harmonise the European laws for data protection. This Regulation comes into force on 25 May 2018 and every reference to it must be interpreted in such a way that any national legislation that implements the Regulation is included.
  • Other people that we could get in touch with – this term includes job reference contacts and contact persons for emergencies involving Candidates and Staff Members. We will only contact them if the situation requires this.
  • Candidates – this term includes all job applicants for all employment positions that we advertise or promote, including permanent contracts, part-time and temporary positions and freelance assignments at our Clients; this term also includes those people who have sent us an unsolicited job application.
  • Clients – this term includes both our clients and others that we provide services to when carrying out our business activities.
  • Recruitment Process Outsourcing (RPO) services – full or partial outsourcing of the recruitment process for permanent employees to a recruitment agency.
  • Website Users – each individual who visits one of our websites.