Candidate Privacy Policy

I. How Heaven Solu­tions 2005 SRL process your per­sonal data

The col­lec­tion of your per­sonal data in the recruit­ment process is done directly when you are inter­ested in a job avail­able at Heaven Solu­tions 2005 SRL and send us your CV. We may also obtain other infor­ma­tion about you during inter­views or through CV and referral checks (including public or third-party sources) under legal requirements.

II. The purpose of col­lecting and pro­cessing your per­sonal data

Heaven Solu­tion 2005 SRL will process your per­sonal data only for the main purpose of the recruit­ment and selec­tion process, with the fol­lowing additions:

• The recruit­ment and selec­tion process includes: com­mu­ni­ca­tion with the can­di­date, ver­i­fi­ca­tion and/or eval­u­a­tion of the candidate’s CV and ref­er­ences, inter­views, and assessments;
• If your appli­ca­tion is accepted and we will start the hiring process (accepted can­di­dates), the data will be used in the onboarding process within Heaven Solu­tions 2005 SRL;
• If your appli­ca­tion is rejected and we do not con­tinue the recruit­ment process at that time (unac­cepted can­di­dates), then we will keep your resume for a limited period to inform you of other job oppor­tu­ni­ties, existing within Heaven Solu­tions 2005 SRL. At the same time, we will keep this data to exer­cise our right of defense in case of legal actions or com­plaints against us. You can always object to this and inform us (see Chapter VII. Your rights)

III. Cat­e­gories of per­sonal data process by Heaven Solu­tions 2005 SRL

Heaven Solu­tions 2005 SRL col­lects and processes the fol­lowing cat­e­gories of per­sonal data, present both in the CV and as a result of the recruit­ment and selec­tion process (eg interview):

• Iden­ti­fi­ca­tion and contact details: name, surname, phone, address, email
• Dif­ferent per­sonal data con­tained in CV, pro­vided by you, such as birth­place, nation­ality, gender, etc.
• Data related to pro­fes­sional life: pre­vious jobs, employers, desired jobs, career prospects, desired salary, and other ben­e­fits, etc.
• Data related to studies, qual­i­fi­ca­tions, expe­ri­ences, references
• Data related to the eval­u­a­tion of can­di­dates (including inter­view notes, screening, pre­vious data held, as appropriate)
• Data about the cor­rect­ness of CV and ref­er­ences pro­vided by you, under applic­able law

The pro­cessing of per­sonal data is carried out on the legal basis of the legit­i­mate interest of Heaven Solu­tions 2005 SRL, ensuring that our actions do not prevail over your rights and free­doms, your consent (where applic­able), and/or per­for­mance of the con­tract (relating to actions ) pro­cessing carried out before the con­clu­sion of the employ­ment contract).

IV. Reten­tion of your per­sonal data

In accor­dance with internal poli­cies and applic­able law, Heaven Solu­tions 2005 SRL will keep your per­sonal data for a limited time (maximum 5 years) to contact you for other future oppor­tu­ni­ties. At the end of this period, your data will be deleted. The only excep­tion to the dele­tion of per­sonal data is the iden­ti­fi­ca­tion of another legal basis for data pro­cessing and pur­poses com­pat­ible with the orig­inal ones. During this period, if you do not want Heaven Solu­tions 2005 SRL to keep your data in the data­base, please inform us by email at careers@heavensolutions.com, and Heaven Solu­tions 2005 SRL will delete your per­sonal data.

V. Dis­clo­sure of per­sonal data to third parties

Heaven Solu­tions 2005 SRL will ensure that the secu­rity of per­sonal data is main­tained (access being con­trolled and min­i­mized) regard­less of who the third parties are and where they are located and that the transfer of per­sonal data, including outside the EU / EEA, if nec­es­sary, is per­formed taking into account the applic­able leg­is­la­tion in force (eg ade­quacy deci­sions, stan­dard con­trac­tual clauses approved by the Euro­pean Com­mis­sion, Privacy Shield).

VI. Per­sonal data security

Heaven Solu­tions 2005 SRL is respon­sible for the pro­tec­tion of your per­sonal data. Thus, Heaven Solu­tions 2005 SRL con­stantly ensures that all IT systems, as well as all the tech­nical and orga­ni­za­tional mea­sures we imple­ment, are in accor­dance with a well-estab­lished infor­ma­tion secu­rity system. At the same time, only autho­rized per­sonnel (who signed a con­fi­den­tiality com­mit­ment) has access to your per­sonal data.

VII. Your rights regarding the use of your per­sonal data

Given the current leg­is­la­tion, you have certain rights that you can exer­cise to ensure that your data is used properly:

• The right to be informed about how we use your data (this policy is an example in this regard)
• The right to have access to the data that Heaven Solu­tions 2005 SRL holds about you. Thus, you can ask us for infor­ma­tion about the per­sonal data we hold about you (see Chapter X Contact details).
• Right to rectify per­sonal data — please contact us if you notice that the data recorded is incor­rect or is not up to date
• The right to delete (the right to be for­gotten) per­sonal data con­cerning you
• The right to object to the pro­cessing of per­sonal data;
• The right to with­draw your consent to the pro­cessing of per­sonal data is valid when you have pre­vi­ously given such consent. With­drawal of consent will not affect the law­ful­ness of data pro­cessing based on consent given before with­drawal (GDPR, Article 7)
• The right to data portability
• The right to not be subject to auto­mated deci­sions and pro­filing. In this regard, we inform you that Heaven Solu­tions 2005 srl does not carry out auto­mated deci­sion-making processes that target your per­sonal data
• The right to go to court or to file a com­plaint at the National Authority for the Super­vi­sion of Per­sonal Data Pro­cessing, if you find that one of your rights has been vio­lated (in this regard, you can down­load a stan­dard form from the website www.dataprotection.ro)

VIII. Changes to this Can­di­date Privacy Policy

Heaven Solu­tions 2005 SRL reserves the right to modify this Can­di­date Privacy Policy when­ever nec­es­sary and under leg­isla­tive changes and busi­ness needs. In this regard, to be up to date with all the infor­ma­tion regarding the pro­cessing of your per­sonal data, it is rec­om­mended to peri­od­i­cally consult this doc­u­ment, dis­played on our website.

IX. Contact data

For any requests you may have regarding the exer­cise of the rights men­tioned above and to address any other ques­tions regarding the pro­cessing of per­sonal data by Heaven Solu­tions 2005 SRL , please contact us:

Glos­sary of terms used:

*Per­sonal data is any infor­ma­tion that refers to an iden­ti­fied or iden­ti­fi­able natural person. There are also per­sonal data, the dif­ferent infor­ma­tion that can lead to the iden­ti­fi­ca­tion of a certain person. Per­sonal data that has been anonymized, encrypted or pseu­do­nymized, but can be used to re-iden­tify a person remains per­sonal data and is covered by the RGPD.

*Pro­cessing means any oper­a­tion or series of oper­a­tions per­formed on per­sonal data or per­sonal data sets, with or without the use of auto­mated means, such as col­lecting, recording, orga­nizing, struc­turing, storing, adapting or mod­i­fying, extracting, con­sulting, using, dis­closing by trans­mis­sion, dis­sem­i­na­tion or making avail­able in any other way, align­ment or com­bi­na­tion, restric­tion, dele­tion or destruction.

*Consent means a free, spe­cific, informed, and unam­biguous expres­sion of the data subject’s consent by which he or she unequiv­o­cally accepts that per­sonal data con­cerning him or her are being processed.

*GDPR stands for EU Reg­u­la­tion no. 679/2016 applic­able from 25 May 2018 throughout the EU and in any other state in the world where per­sonal data of EU cit­i­zens are used.

Last updated: March 2021