Processing of Personal Data

1. Register Holder: Digidoit Oy (company ID: 2813549-2)

Lönnrotinkatu 5, 00120 Helsinki
Tel. +358 10 274 ​​2000

2. Contact in Matters Regarding Data Protection:

Data Protection Officer

Phone: +358 10 274 ​​2000

Email: info(at)digido.fi

Contacts in matters concerning data protection should be addressed to the e-mail address info(at)digido.fi

3. Register Name: Digidoit Oy's job applicant register

4. Legal Basis and Purpose of Personal Data Processing:

The legal basis for personal data processing is the data subject's consent. The job application submitted by the registered person and its possible attachments are considered consent.

Personal data is used in the recruitment process of the registrar, in the management and maintenance of the CV database, and in starting a possible future employment or other service relationship. In addition, personal data can be used for job search relationship maintenance contact and recruitment marketing.

Processing tasks can be outsourced to external service providers in accordance with data protection legislation and within the limits set by it.

5. Data Content of the Register:

Due to its nature, the content of the register cannot be completely predetermined for each person, as it may contain information freely given by the registered person. In general, the register contains at least the following information:

• First and last name
• Contact information (such as address, e-mail address, telephone number)
• Date of birth
• Wishes about the job and salary
• Information regarding education, work experience and competence profile
• Other additional information freely provided by the registered person
• Additional information to be submitted as an attachment such as a CV, work samples, etc.

6. Regular Information Sources:

As a rule, the information source is the registered person himself. In addition, more limited information can be collected about potential recruitment candidates, for example through partners. If necessary, personal data can be collected and updated from public or private registers and data sources that provide information services, as well as from the controller's partners.

7. Transfer of Registry Content:

The content of the register collected with the consent of the registrant can be released to Digidoit Oy personnel participating in the recruitment process and to potential clients of the registered person, who are Digidoit Oy's customers and partners.

Personal information can be disclosed in the job search process from registered persons who have progressed to the recruitment stage, as necessary, as an attachment to customer offers or as part of the reports required by the customer's business.

In addition, information can be disclosed, for example, to the authorities on the basis of a requirement based on law.

Information collected from other than the registrant himself will not be disclosed to anyone other than Digidoit Oy personnel participating in the recruitment process.

The contents of the register are not transferred outside the EU and the European Economic Area.

8. Protection of Registry Data:

The register exists in electronic form in the company's high-security cloud service and is protected by appropriate administrative and technical protection methods. In addition, parts of the register can be printed as hard copies.

Access to the register located in the cloud service is only possible with an encrypted connection and a personal username and password. The use of the register is confidential and the right to use it is limited only to persons belonging to the registrar's own staff, whose tasks require the right to use the register. The personnel of the registrar have a duty of confidentiality and the personnel has received appropriate training related to information security and data protection.

The applicant's information is processed in our electronic job application system, which is located in the Cinode service (SWE). In this context, the applicant's data can be transferred outside the EU or EEA, in accordance with the data protection legislation and within the limits set by it, to the extent necessary for the technical implementation of the service.

When submitting the application, the applicant accepts the possible transfer of his personal data. The privacy protection clause of the service can be read at: https://cinode.com/en/privacy-policy/.

9. Information Storage Period:

The information collected in the register is reviewed every one (1) year, and during the review, information for which the recruitment process has not led to an employment relationship is deleted. The registrant can also delete the data concerning the registrant before this.

10. Right of Inspection and Right to Correction of Information:

The registered person has the right to check the information stored in the register concerning him. Communications regarding the right of inspection must be made in writing and signed to the address mentioned in point 1. Digidoit Oy responds to inspection requests in writing.

If there are errors in the registered information, the data subject can submit a request to correct the error to the person responsible for registry matters mentioned in section 2.

The registered person has the right to request the deletion of personal data concerning him/her if:

• Personal data are no longer needed for their original purpose of use
• Personal data have been processed unlawfully

The registered person also has other rights related to the processing of personal data according to the law.

11. Additional Information:

All requests for information and other communications should be sent to the person responsible for registry matters at the contact address mentioned in section 2.