We analyze positionssuitable for you

The analysis will take a while

EN
Register to mProfile
Menu
Home GDPR Memorandum

GDPR Memorandum

1.General statement

1.1. mBlue Czech, s.r.o. (hereinafter referred to as the “Company”) complies with its obligations regarding the processing personal data transferred to it to fulfil its contractual and legal obligations. 

1.2 The protection of personal data results from the EU General Data Protection Regulation (GDPR) 2016/679/EU. 

1.3 The Company shall act as a data controller when it determines the purpose and means of processing personal data in accordance with Article 4(7) GDPR. 

1.4 The Company shall act as a processor of personal data where it processes personal data for the controller in accordance with Article 4(8) of the GDPR. 

 

2. Personal data processing principles

2.1 We comply with the highest standards of data protection when processing personal data and, in particular, comply with the following principles: 

a) We always process personal data for a clearly and comprehensibly stated purpose, by the said means, in the indicated manner, and only for the time necessary concerning the purposes for which it is processed; we only process accurate personal data, and the processing is consistent with the stated goals and essential for the fulfilment of those purposes; 

b) Personal data are protected in a manner that is appropriate to the current state of the art; the highest possible level of security is ensured to prevent any unauthorised or accidental access to, alteration, destruction or loss of personal data, unauthorised transmission, other unauthorised processing or other misuses of personal data; 

c) Data subjects are informed of the processing of personal data and of their rights to accurate and complete information about the circumstances of that processing, as well as other related rights; 

d) The Company observes appropriate technical and organisational measures to ensure a level of security appropriate to all possible risks; all persons who come into contact with personal data are obliged to maintain the confidentiality of information obtained in connection with the processing of such data.

 

3. Information on the processing of personal data

3.1 General information about the Company: 

mBlue Czech, s.r.o. 

CIN: 241 93 119 

With its registered office in Prague 5 – Jinonice, Řeporyjská 490/17 

Contact e-mail for withdrawing consent to the processing of personal data: mprofil@mblue.cz 

3.2 The Company processes personal data for the following purposes: 

a) Fulfilling statutory obligations when acting as a personal data controller; 

b) The performance of contractual obligations where personal data has been provided by the data subjects based on the consent given;

c) The performance of contractual obligations where personal data has been provided to the Company by the data controller;

d) Protecting the rights and legitimate interests of the Company, in particular marketing and direct marketing;

e) Offering suitable job positions to candidates in accordance with the consent given.

3.3 Scope of personal data processed: 

The Company processes personal data to the extent necessary to fulfil the above purposes. In particular, the following personal data are processed: 

a) Name and surname; 

b) Address;

c) E-mail address;

d) Telephone number;

e) Date of birth; 

f) And other personal data that the Company is obliged to manage by law or by the performance of a contract. It has been obtained from data subjects or based on its own activities.

3.4 Method of the personal data processing: 

How the Company processes personal data includes manual and automated processing in the Company’s information systems. 

Personal data is processed primarily by the Company’s employees and by third parties to the extent necessary. Prior to any transfer of personal data to a third party, a contract is concluded with that party that contains the same safeguards for the processing of personal data as the Company observes according to its legal obligations. 

3.5 Recipients of personal data 

Personal data is disclosed in particular to employees of the Company in connection with the performance of their work duties which require the handling of personal data, but only to the extent necessary in each case and in compliance with all security measures. 

Personal data may be disclosed to third parties involved in the processing of personal data or may be disclosed to them for any other reason under the law. 

Prior to any transfer of personal data to a third party, a written contract shall always be concluded with that party which shall regulate the processing of personal data in such a way as to contain the same safeguards for the processing of personal data as the Company itself observes in accordance with its legal obligations. 

Under applicable law, the Company is entitled or directly obliged to transfer your personal data: 

a) To the relevant government authorities, courts and law enforcement authorities to carry out their duties and to enforce decisions; 

b) To entities to recruit a suitable candidate as an employee or associate for an employment or similar contractual relationship.

c) Other persons to the extent provided for by law, for example, third parties for the purpose of debt recovery;

d) Entities providing services to the Company on an outsourcing basis.

3.6 Transfer of personal data abroad 

Personal data is processed in the territory of the Czech Republic and in the territory of other European Union countries that share the same standards of personal data protection as the Czech Republic. Entities involved in the processing of clients’ personal data do not transfer clients’ personal data to countries outside the European Union. 

3.7 Duration of processing of personal data 

The retention period of personal data results from the individual legal regulations under which the Company processes personal data. 

If personal data is processed based on the consent given for the processing of personal data, the personal data is processed for ten (10) years from the date of termination of the contract. 

Where personal data is processed for the performance of a contractual obligation, it is necessary to process personal data for ten (10) years from the date of termination of the contract to protect the Company’s rights and legitimate interests. 

If the Company processes personal data without consent to the processing of personal data for the performance of a contractual obligation, it shall process the personal data only for the period necessary concerning the purposes for which it is processed, but for a maximum of six (6) months. 

3.8 Rights of data subjects 

In particular, data subjects have the following rights within the scope of the individual articles of the GDPR: 

a) The right to information about the data controller, processor and data protection officer; 

b) The right to be informed of the purpose of the processing of personal data; 

c) The right of access to personal data and whether or not personal data are processed; 

d) The right to lodge a complaint; 

e) The right to rectification of personal data; 

f) The right to the erasure of personal data (right to be forgotten) by written request sent to the following e-mail address: info@mblue.cz

g) To withdraw consent to the processing of personal data; by written request sent to the e-mail: info@mblue.cz

h) The right to restrict processing;

i) The right to the portability of personal data;

j) The right to object;

k) Any other rights granted by the Regulation.

The rights under the above points can be exercised unless otherwise stated, either by logging on to www.cv.mblue.cz (especially points c, e) or by e-mail to mprofil@mblue.cz 

 

4. Final declaration

The Company takes a responsible approach to protect the personal data it processes in its business. In case of questions or suggestions from data subjects, the Company’s management can be contacted.