Privacy Statement according to the European Union General Data Protection Regulation (GDPR)
For Fliq Oy, it is important to act responsibly and make sure that all personal data in our business is processed and protected in compliance with the required laws and regulations.
Fliq Oy, Y- 2564365-1, Wolffintie 36, 65200 Vaasa
Persons responsible for the data filing system:
Lassi Pukkinen email@example.com (asiakasrekisteri)
Lassi Pukkinen firstname.lastname@example.org (työnhakijoiden rekisteri)
Any questions and/or requests related to data protection can be directed to email@example.com
According to the EU’s General Data Protection Regulation (GDPR), the following qualify for legal basis for the processing of personal data:
We collect personal data only for predefined purposes listed below.
Personal data is processed by Fliq employees that take care of recruitment or customer relations, or participate in recruitment, sales, or marketing.
Why do we collect data?
For us, applying for a job must be a great experience for all parties involved. Any personal data we receive via recruitment is used only during the recruitment process for contacting the applicant. Any information on the person’s skills and background is used only to evaluate the applicant’s suitability. Data is processed only in the extent that is necessary for recruitment purposes. Only recruiting managers and Human Relations personnel have access to the data. There are no disclosures of data to third parties.
What kind of data do we collect?
A Fliq employee enters the following data of the applicant in our recruitment system:
We may also make complementary notes during a recruitment process or an interview. These are processed as a part of the applicant’s data in the recruitment system.
How and when do we collect data?
Any data mentioned above and stored in our recruiting system is provided by the applicant his- or herself. In principle, we do not collect and store data by telephone or e-mail. Instead, the applicant is always asked to provide the information via our recruitment system.
In case we receive information about the applicant’s skills or person during the recruitment meeting (such as CV in paper or calling/visiting cards), they are processed only by persons who take part in the recruitment process. All such data will be destroyed within 6 months from the meeting date unless the applicant qualifies for next stage in the recruitment process.
In case of open applications, the applicant’s personal data is completely deleted from Fliq’s recruitment database within 6 months. In other applications, the data is deleted within 12 months.
Fliq Oy processes personal data of customers and associate partners for customer relations purposes, as well as for marketing and development of Fliq services and events.
Regarding customers and associate partners, we may process the following personal data:
Personal data is principally gathered during management of the customer relation, alternatively direct from the persons themselves, for example when participants register for an event by filling in their personal data or when we are contacted via our company website.
We may process your personal data if you contact us by filling in the contact formula on our website, or when you participate in one of our events. In these cases, we may process the following personal data:
Fliq stores the data as long as we have a statutory right or obligation to do so. We go actively through our database and erase any unnecessary or outdated data.
Data is not used for automated decision-making or profiling.
We use the following cookies on our website:
If you wish to deactivate our cookies in your browser, you can adjust your browser preferences. This can be done for a specific website, alternatively by deactivating cookies altogether.
There are no regular disclosures of data to other parties.
Your personal data is disclosed only to following parties:
We may disclose your personal data to our associate partners who act as data processors. These processors, that is, our associate partners that process personal data on our behalf, are bound by a contract with Fliq. A contract ensures Fliq has the right to oblige its associated partners to follow the European Union General Data Protection Regulation (GDPR). Our associated partners are not allowed to use the data in our filing system for any other purposes than those contracted with Fliq for a specific order of trade.
The processing of personal data in our filing system is carried out with due care. Appropriate measures are taken to protect the data that is processed through information systems. In case personal data is stored on Internet servers, appropriate measures are taken to ensure the physical and digital data security of such equipment. We ensure that the stored data, server user rights and other data that is critical for the security of personal data are processed in confidence and only by employees whose work duties require them to do so.
All data subjects have the right to verify their data stored in the filing system and obtain from the controller the rectification of any incorrect information or the completion of any incomplete personal data. If data subjects want to verify their personal data stored in the filing system, requests concerning such verification must be sent to in writing to firstname.lastname@example.org. The data controller may require the requester to provide proof of identity if necessary.
The data controller will respond to the customer within the time limit set out in the EU’s General Data Protection Regulation (in general, within one month).
Data subjects have the right to request from the controller the erasure of personal data concerning them (“the right to be forgotten”). Furthermore, data subjects have other rights, as set out in the EU’s General Data Protection Regulation, including the right to restriction of the processing of personal data in certain circumstances. Such requests must be sent to the data controller in writing. The data controller may require the requester to provide proof of identity if necessary.
The controller responds to the data subject within the time limit specified in the European Union General Data Protection Regulation (in general, within one month).
You have the right to receive your own personal data that you have provided to us in a structured, commonly used format so that you can transmit your data to another controller. Such requests must be directed to the address given in this Privacy Statement.
The data subject has the right to lodge a complaint with a supervisory authority. In Finland, the supervisory authority is The Office of the Data Protection Ombudsman.
We reserve the right to make changes in this Privacy Statement. This statement will be updated whenever principles for processing of personal data, alternately the legislation applicable, are updated or changed.