B&C

Privacy Policy – Recruitment

PRIVACY POLICY – RECRUITMENT

The information regarding the processing of Personal Data is provided below, in compliance with the requirements set out under art. 13 of the General Data Protection Regulation 2016/679 regarding Natural Persons and the free circulation of said data (hereinafter, the “GDPR”).

DATA CONTROLLER’S IDENTITY AND CONTACT DETAILS

The Data Controller is Borioli Colombo & Partner – Studio Associato Tributario e Societario (hereinafter the “Firm” or “B&C Tax”), with registered office in Largo Donegani, 2 – 20121 Milan, tel. 0262319; e-mail: privacy@bc-tax.it. Our internal privacy contact person is Mr. Luigi Filippini.

CATEGORIES OF PERSONAL DATA

The Personal Data processed by us will be exclusively those indicated directly and spontaneously by the candidate in the job application, and/or in the presentation letter and/or in the curriculum vitae sent. The mentioned Personal Data normally include your identifying details and contact addresses, as well as the information relating to your studies and training, your previous professional experience, and any educational qualifications, diplomas or authorisations, personal characteristics, aptitudes and skills.
Exceptionally, it is possible that you provide the Firm special categories of data pursuant to art. 9 of the GDPR, namely, data “which reveal the racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership […], as well as data relating to health or sex life or to sexual orientation” (“Sensitive Data”).
However, since the Firm does not need to collect such data during the personnel search and selection phase, we invite you to avoid communicating such data to us, by deleting these data from your curriculum, unless their indication is necessary to ensure a better classification of your application.

PURPOSE AND LEGAL BASIS FOR DATA PROCESSING

The Personal Data indicated above, including any Sensitive Data supplied, will be processed exclusively to evaluate the application and, if necessary, to contact the candidate and to carry out the interview.
The legal basis of the processing is therefore represented by the need to respond to the request for evaluation of the candidate, i.e., to take pre-contractual measures pursuant to art. 6.1 lett. (b) of the GDPR.
In the event that, despite our request not to indicate them, the CV or the cover letter contain Sensitive Data, the legal basis of the related processing will be represented by the need to fulfil obligations and/or exercise rights regarding labour law, pursuant to art. 9.2 lett. (b) of the GDPR, or as an alternative, (if the regulatory requirements to make use of the aforementioned rule are no longer valid), the consent of the interested party, which is implicit in the indication of such information during the application phase.
In any case, the Firm recognizes the right to all interested parties to request the cancellation of any Sensitive Data previously communicated during the application phase

MANDATORY OR NON-MANDATORY REQUIREMENT TO PROVIDE PERSONAL DATA

No Personal Data are to be provided as a mandatory requirement in the selection stage. However, without certain data we may find ourselves in a position where we are unable to contact you (if there are no contact addresses), or we are unable to properly assess your profile and your suitability for the position.

RETENTION

The Personal Data of the candidates, including the Sensitive Data, will be stored for a period of 6 months from the date of receipt of the curriculum or of the job application.

PERSONS OR ENTITIES WHICH MAY HAVE ACCESS TO PERSONAL DATA ON BEHALF OF THE DATA CONTROLLER OR TO WHOM THE DATA ARE COMMUNICATED

The Personal Data we collect will be processed exclusively by our personnel in charge of data processing, and moreover, will be accessible to the companies appointed to provide us with software and hardware support.
Each external person or entity which has access to the Personal Data has been or will be appointed as Data Processor, pursuant to art. 28 of the GDPR, subject to strict constraints regarding confidentiality and privacy, in compliance with the provisions of the above-mentioned legislation.

TRANSFER ABROAD

Under no circumstance will your Personal Data be transferred outside the European Economic Area.

DATA SUBJECT’S RIGHTS
We take this opportunity to remind you that, in relation to your Personal Data, you will be entitled to exercise the rights acknowledged by the GDPR, namely: (i) the right of access the personal data and information, for example: the purpose of data processing and the types of data held by us (art. 15 of the GDPR); (ii) the right to obtain the rectification of incorrect personal data which concern you, or to integrate incomplete personal data (art. 16 of the GDPR); (iii) the right to erasure (“right to be forgotten”) of the personal data which concern you, if one of the grounds envisaged under art. 17 of the GDPR applies; (iv) the right to restriction of processing, i.e. to obtain that the personal data which may be subject to dispute are flagged and not deleted, for the period necessary to exercise a given right regarding such data (art. 18 of the GDPR); (v) the right to data portability (art. 20 of the GDPR).
Lastly, we inform you that the GDPR confers on all data subjects the right to submit a complaint to the Supervisory Authority, if the Authority’s provisions have been violated.
You may use the following e-mail address: privacy@bc-tax.it for any request or observation.

Yours sincerely.

Borioli Colombo & Partner