CARREE, BIEBUYCK & PARTNERS N.V./S.A.  | PRIVACY POLICY

We find your privacy most Important/ Carrée, Biebuyck & Partners N. V./ S.A. therefore goes about the personal data that we collect from all employees in a secure and confidential manner. Our privacy policy outlines which of your personal data we process, the basis on which we process them and the reason why we process them. Finally, we inform you of the security measures that we take in order to protect your personal data.

Whom to contact in case of questions?

Carrée, Biebuyck & Partners N.V./S.A . with registered office in 1150 Sint-Pieters-Woluwe and registered in the Kruispuntbank for companies under the enterprise identification number BE 0444.937.218. is responsible for the processing of your personal data. Carrée. Biebuyck & Partners N.V./S.A. being responsible for the processing of your data declares to comply with both Belgian privacy regulations and with the regulations as imposed by the General Data Protection Regulation upon its entry into force.

What is personal data?

The General Data Protection Regulation defines persona! data as follows:

“any information that relates to an identified or identifiable natural person; identifiable means the data subject can be identified directly or indirectly by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.”

If this Privacy Policy refers to personal data, it refers to the definition as set out in the Regulation. No special categories of data are being processed. Special categories of data are defined as follows

“Personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation.”

Which personal data are being processed?

We collect and process various personal data on our candidates, such as:

         Curriculum Vitae and its content, letter of motivation, interview notes;

         Information useful to our clients such as: your address, your seniority, your phone number, your e-mail address, language;

         Information that you might have shared: marital status, family composition, gender, date of birth;

         Your salary and additional benefits granted by your employer, employment status.

 

Why are these personal data being processed and what ls the legal basis for processing them?

Your Curriculum Vitae and letter of motivation, notes taken down during telephone or face-to-face conversations, personal information regarding your salary package are being processed with the aim of finding a (potential) match between your experience and personality on the one hand and the demands or wishes of our clients on the other hand, with our legitimate interest as a legal basis.

Duration of the processing.

Personal data on a candidate are being stored until the candidate requests us to have them deleted from our database.

ln any case, your personal data will be kept ln accordance with specific legislation and limitation periods forcing us to keep your data longer, for example with the purpose of fighting legal proceedings.

What are your rights as a candidate?

a. Right of access and inspection

You have the right to receive free access to your persona! data at any time, as well as to the use that we make of your persona! data, in accordance with the sector-specific regulations.

b. Right of improvement, deletion and limitation

You are free to disclose your personal information or not to us. In addition, you always have the rlght to request that we correct, supplement or delete your personal data. You can also request us to limit the processing of your personal data.

c. Right of resistance

You always have the right to object to the processing of your personal data for serious and legitimate reasons.

d. Right of transferability

You have the right to obtain your personal data, processed by us, in a structured, commonly-used and machine readable fomat and you have the right to transmit those data to another processor, in accordance with the sector•speciftc regulations.

e. Right of withdrawal of consent

If processing is based on your prior consent, you have the right to withdraw that consent.

f. Automated decision making and profiling

The processing of your personal data does not include profiling and you shall not be subjected by us to automated decision-making.

In some cases., upon a client’s demand, automated tests may be requested. You have the right to resist.

g. Exercising your rights

You can exercise your rights by contacting Charles PETIT.

h. Complaints

You have the right to file a complaint with the Belgian Privacy Commission : Commission for the Protection of Privacy, Drukpersstraat 35. 1000 Brussel, tel. +32 (0)2 274 48 00, fax +32 (0)2 274 48 35, e-mail: [email protected]. This is without prejudice to other possibilities of a legal or administrative appeal.

If you suffer damage through the mishandling of your personal information, you may be entitled to claim compensation.

Disclosure of third parties

Some of your personal data that we process may be disclosed to third parties, i.e. our clients.

We establish an agreement of cooperation with them and we shall make every effort to ensure the protection of your personal data.

Your personal data will not be sold, let, handed out or otherwise put at the disposal or third parties for commercial purposes, except as outlined above or with your prior consent.

In exceptional cases, we may have to disclose your personal data. if we are required to do so because of a court order or to comply with other binding legislation or regulations.

Security and confidentiality

We have developed technically and organizationally appropriate security measures to avoid the destruction, loss, falsification, modification. unauthorized access or notification by mistake to third parties of personal data collected. as well as any other unauthorized processing of those data.

Technical measures

         Use of virus scans and firewalls

         Frequently changed passwords

         Access control to data

         Data encryptions on laptops

Organizational measures

         Limited number of people have access

         Employee policy

         Confidentiality clauses