Privacy Notice
Who we are
AKTSIASELTS HELMES, BR code 10364097, located at Lõõtsa 6, 11415, Tallinn, ESTONIA (“We”, “Us”) are committed to protecting and respecting your privacy.
This Privacy Notice (together with any other documents referred to herein) sets out the basis on which the personal data collected from you, or that you provide to Us, will be processed by Us in the context of the recruitment process or when you send us a contact request from Our web site. Please read the following carefully to understand Our views and practices regarding your personal data and how We will treat it.
For the purpose of the General Data Protection Regulation (“GDPR”) the Data Controller is AKTSIASELTS HELMES.
Your Rights
Under the General Data Protection Regulation you have a number of important rights free of charge. In summary, those include rights to:
- access to your personal data and to certain other supplementary information that this Privacy Notice is already designed to address
- require Us to correct any mistakes in your information which We hold
- require the erasure of personal data concerning you in certain situations
- receive the personal data concerning you which you have provided to Us, in a structured, commonly used and machine-readable format and have the right to transmit those data to a third party in certain situations
- object at any time to processing of personal data concerning you for direct marketing
- object to decisions being taken by automated means which produce legal effects concerning you or similarly significantly affect you
- object in certain other situations to our continued processing of your personal data
- otherwise restrict our processing of your personal data in certain circumstances
- claim compensation for damages caused by our breach of any data protection laws.
For further information on each of those rights, including the circumstances in which they apply, see the General Data Protection Regulation, or Guidance from the UK Information Commissioner’s Office (ICO) on individuals rights under the General Data Protection Regulation.
If you would like to exercise any of those rights, please:
- contact us using our Contact details below
- let Us have enough information to identify you,
- let Us have proof of your identity and address, and
- let Us know the information to which your request relates.
How to Complain
We hope that We can resolve any query or concern you raise about Our use of your information. The General Data Protection Regulation also gives you right to lodge a complaint with a supervisory authority, in particular in the European Union (or European Economic Area) state where you work, normally live or where any alleged infringement of data protection laws occurred. The supervisory authority in Estonia is the Estonian Data Protection Directorate (www.aki.ee) who may be contacted at info@aki.ee or telephone: 5620 2341.
How to Contact Us
All questions, comments and requests regarding this Privacy Notice should be addressed to privacy@helmes.com
Data Processing for Recruitment Purposes
We use Workable, an online application provided by Workable Software Limited, to assist with Our recruitment process. We use Workable to process personal information as a data processor on Our behalf. Workable is only entitled to process your personal data in accordance with Our instructions.
Where you apply for a job opening posted by Us, these Privacy Notice provisions will apply to Our processing of your personal information.
Your Personal Information
Information We collect from You
We collect and process some or all of the following types of information from you:
- Information that you provide when you apply for a role. This includes information provided through an online job site, via email, in person at interviews and/or by any other method.
- In particular, We process personal details such as name, email address, address, date of birth, qualifications, experience, information relating to your employment history, skills and experience that you provide to Us.
- If you contact Us, We may keep a record of that correspondence.
- Details of all actions that you carry out through the use of the Services.
- Details of your visits to Workable’s Website including, but not limited to, traffic data, location data, weblogs and other communication data, the site that referred you to Workable’s Website and the resources that you access.
Information We Collect From Other Sources
Workable provides Us with the facility to link the data you provide to Us, with other publicly available information about you that you have published on the Internet – this may include sources such as LinkedIn and other social media profiles.
Workable’s technology allows Us to search various databases, which may include your personal data, to find possible candidates to fill Our job openings. Where We find you in this way we will obtain your personal data from these sources.
Uses Made Of Your Information
Lawful basis for processing
We rely on legitimate interest as the lawful basis on which We collect and use your personal data. Our legitimate interests are the recruitment of staff for Our business.
Purposes of processing
We use information held about you in the following ways:
- To consider your application in respect of a role for which you have applied.
- To consider your application in respect of other roles.
- To communicate with you in respect of the recruitment process.
- To enhance any information that we receive from you with information obtained from third party data providers.
- To find appropriate candidates to fill Our job openings.
- To help Workable improve their services.
Automated decision making/profiling
We may use Workable’s technology to select appropriate candidates for Us to consider based on criteria we have identified. The process of finding suitable candidates is automatic, however, any decision as to who We will engage to fill the job opening will be made by Our staff.
How We Store Your Personal Data
Security
We take appropriate measures to ensure that all personal data is kept secure including security measures to prevent personal data from being accidentally lost, or used or accessed in an unauthorised way. We limit access to your personal data to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where We are legally required to do so.
Unfortunately, the transmission of information via the internet is not completely secure. Although We will do Our best to protect your personal data, We cannot guarantee the security of your data transmitted through any online means, therefore any transmission remains at your own risk.
Where We store your personal data
Where we store your personal data in our own systems, it is stored on our secure servers within the EEA.
The data that We collect from you and process using Workable’s Services may be transferred to, and stored at, a destination outside the European Economic Area (“EEA”). It may also be processed by staff operating outside the EEA who work for Us or for one of our suppliers. Such staff maybe engaged in, among other things, the fulfilment of your orders, the processing of your payment details and the provision of support services. By submitting your personal data, you agree to this transfer, storing or processing.
In particular, your data may be accessible to
i) Workable’s staff in the USA or
ii) may be stored by Workable’s hosting service provider on servers in the USA as well as in the EU.
The USA does not have the same data protection laws as the United Kingdom and EEA. A Data Processor Agreement has been signed between Workable Software Limited and its overseas group companies, and between Workable Software Limited and each of its data processors. These data processor agreements are designed to help safeguard your privacy rights and give you remedies in the unlikely event of a misuse of your personal data.
If you would like further information please contact Us (see ‘Contact’). We will not otherwise transfer your personal data outside of the United Kingdom OR EEA or to any organisation (or subordinate bodies) governed by public international law or which is set up under any agreement between two or more countries.
How long we keep your personal data
We will hold all the data for the duration of the recruitment process.
Your personal information will be deleted on one of the following occurrences:
- deletion of your personal information by you (or by another person engaged by the Customer); or
- receipt of a written request by you (or another person engaged by the Customer) to us.
Data Processing for Contact Requests
Your Personal Information
Information We collect from You
We collect and process some or all of the following types of information from you:
- Information that you provide when you fill out a contact request on our website, in particular your name and contact details.
- If you contact Us by e-mail, We may keep a record of that correspondence.
Uses Made Of Your Information
Lawful basis for processing
We rely on your consent as the lawful basis on which We collect and use your personal data. We do not share the personal information you have submitted to Us for any other purpose, than contacting you and providing quality service, without asking your consent first.
Automated decision making/profiling
We do not use automated decision making of profiling in our sales process.
How We Store Your Personal Data
Security
We take appropriate measures to ensure that all personal data is kept secure including security measures to prevent personal data from being accidentally lost, or used or accessed in an unauthorised way. We limit access to your personal data to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where We are legally required to do so.
Unfortunately, the transmission of information via the internet is not completely secure. Although We will do Our best to protect your personal data, We cannot guarantee the security of your data transmitted through any online means, therefore any transmission remains at your own risk.
Where We store your personal data
Your personal data is stored on our secure servers within the EEA.
We will not transfer your personal data outside of the EEA or to any organisation (or subordinate bodies) governed by public international law or which is set up under any agreement between two or more countries.
How long we keep your personal data
We will hold all the data for 24 months.
Your personal information will be deleted on the receipt of a written request by you to us.
Processing of personal data of Helmes clients due to providing ICT services
Helmes processes the personal data of third parties only if ordered by and separately agreed with the client. Here, Helmes acts as a data processor, processing data on the behalf of the relevant Helmes’s client. As required by the General Data Protection Regulation, the personal data for which Helmes’s client is the data controller is processed on the basis of a contract between the client and Helmes or legal acts that regulate at least the issues provided for in Article 28 of the General Data Protection Regulation.
In case Helmes processes personal data related to the contacts of its client’s employees or other representatives, it does so based on the legitimate interest of Helmes. Such personal data may include official e-mail addresses which include personal data, phone number, and job title of the contact. It is in Helmes’ interest to communicate with the client’s representatives to ensure smooth provision of services, ask for feedback and provide informational or marketing materials.
Helmes processes personal data with great care and takes all reasonable precautions and measures. Also, Helmes has designed and implemented internal processes to guarantee the security, confidentiality, and integrity of personal data. Helmes internal processes are ISO 9001 certified.
Helmes has implemented the ISMS (Information security management system), which is ISO 27001 certified. ISMS defines different information security management policies. The main principles and measures are as follows:
- The confidentiality, integrity, and availability of Helmes premises and assets (incl data) is ensured by implementing User Access Management, Clear Desk and Screen, Electronic Devices, Cryptographic controls, and Disposal of Physical Media and Sensitive Data, IT Asset Management and other policies.
- The integrity and availability of Helmes infrastructure is ensured by implementing IT infrastructure security, System and Network Administration, Helmes IS Backup and Suppliers process, and other policies.
Cookies Policy
Our Cookies Policy explains what cookies are, how we use cookies, how third-parties we may partner with may use cookies on the Service, your choices regarding cookies and further information about cookies.
What are cookies
Cookies are small pieces of text sent by your web browser by a website you visit. A cookie file is stored in your web browser and allows the Service or a third-party to recognize you and make your next visit easier and the Service more useful to you.
Cookies can be “persistent” or “session” cookies.
How We use Cookies
When you use and access the Service, we may place a number of cookies files in your web browser.
We use cookies to enable basic functions of the Service, to provide analytics to help Us understand how Our visitors interact with Our website, to store your preferences, and to enable relevant advertisements delivery, including behavioral advertising.
We use both session and persistent cookies on the Service.
Third-party cookies
In addition to our own cookies, we may also use various third-parties cookies to report usage statistics of the Service, deliver advertisements on and through the Service, and so on.
Website Analytics
Analytics cookies collect information about your use of our website. However, analytics shows us only overall patterns of use on the website rather than information about any individual visit or visitor. Analytics helps us understand what parts of our website are appreciated and what parts are not, for us to improve your experience on the website. It helps us find problems with the website and teaches us what advertising campaigns are relevant for you and our other visitors.
This website uses Google Analytics, a web analytics service offered by Google Inc., that tracks and reports website traffic. Google Analytics mainly uses first-party cookies to report on user interactions on this website. The information generated by cookies regarding your use of the website (including your IP address) is sent to and stored on Google servers in the United States. Google will use this information to track and examine your use of the website, compile reports on website activity for the website operators and supply other services relating to website activity and internet use. Google may also transfer this information to third parties if required by law or if these third parties process the aforesaid information on behalf of Google. Google will not associate your IP address with any other data owned by Google. You may refuse to use cookies by selecting the appropriate setting on your browser, but this may prevent you from using all the functions of this website. By using this website, you agree to your data being processed by Google by the aforesaid means for the aforesaid purposes. For information regarding Google’s privacy policy, please click here.
Online Advertising
Online advertising cookies collect information on your activities and interests indicated across our website, enabling us to display relevant, targeted advertising in third-party channels (search engines, social media and advertising networks). Information about how you can control ads in the respective services is described in the privacy and cookie policies provided by the respective service.
This website uses the following third-party cookies for remarketing:
- Google AdWords, an online advertising service offered by Google Inc. For more information on the Google privacy and cookie policy, please click here
- Facebook Ads, an online advertising service offered by Facebook Inc. For more information on Facebook privacy and cookie policy, please click here
- Linkedin Ads, an online advertising service offered by Linkedin Inc. For more information on the LinkedIn privacy and cookie policy, please click here
What are your choices regarding cookies
If you’d like to delete cookies or instruct your web browser to delete or refuse cookies, please visit the help pages of your web browser.
More information about how to manage cookie preferences on the most popular browsers can be found here:
Please note, however, that if you delete cookies or refuse to accept them, you might not be able to use all of the features we offer, you may not be able to store your preferences, and some of our pages might not display properly.