This Consent of the subject of personal data to the processing of his personal data was developed in accordance with the Law of Ukraine dated 01.06.2010 No. 2297-VI «On the protection of personal data» as amended on 21.12.2019 (hereinafter referred to as the «Law») and defines the main provisions for processing , use, distribution, protection, collection, accumulation and other necessary actions with personal data, concluded between Limited Liability Company «JOBNET», EDRPOU code 43339763 (hereinafter — the Company, Owner / Manager of personal data) and individuals (hereinafter — » subject of personal data ”) entering into contractual relations with the Company.
1. Definition of terms
Personal data base is a named set of ordered personal data in electronic form and / or in the form of personal data files.
Processing of personal data — any action or set of actions, such as collection, registration, accumulation, storage, adaptation, change, renewal, use and distribution (distribution, sale, transfer), depersonalization, destruction of personal data, including using information ( automated) systems.
Blocking of personal data — temporary termination of the processing of personal data.
The owner of personal data is a natural or legal person who determines the purpose of processing personal data, establishes the composition of this data and procedures for their processing, unless otherwise specified by law.
Recipient — a natural or legal person to whom personal data is provided, including a third party.
Third party — any person, except for the subject of personal data, the owner or manager of personal data and the Human Rights Commissioner of the Verkhovna Rada of Ukraine, to whom the owner or manager of personal data transfers personal data.
Use of personal data — any actions of the owner to process this data, actions to protect them, as well as actions to grant partial or full right to process personal data to other subjects of relations related to personal data, performed with the consent of the subjects «of the object of personal data or in accordance with the law.
Collection of personal data — actions for the selection or ordering of information about an individual.
Accumulation of personal data — actions to combine and organize information about an individual or a group of individuals or entering this data into the personal data base.
Dissemination of personal data — actions to transfer information about an individual with the consent of the subject of personal data.
Cross-border transfer of personal data — transfer of personal data to the territory of a foreign state by a foreign state authority, to a foreign individual or a foreign legal entity.
Destruction of personal data — actions as a result of which it becomes impossible to restore the content of personal data in the personal data information system and (or) as a result of which material carriers of personal data are destroyed.
The subject of personal data — an individual voluntarily and with full awareness of the consequences, provides the owners and / or the Controller of personal data with his personal data.
The consent of the subject of personal data is a voluntary expression of the will of an individual (subject to her knowledge) to grant permission to process his personal data in accordance with the stated purpose of their processing, expressed in writing or in a form, which allows us to conclude that consent has been granted.
Personal data — information or a set of information about an individual who is identified or can be specifically identified.
2. General Provisions
2.1 The Company processes, stores and uses personal data, and also determines the purposes of processing personal data, the composition of personal data to be processed, as well as actions (operations) performed with personal data, namely:
2.1.1. Collection of personal data;
2.1.2. Accumulation and storage of personal data;
2.1.3. Dissemination of personal data;
2.1.4. Use of personal data;
2.1.5. Recovery of personal data;
2.1.6. Destruction of personal data;
2.1.7. Inclusion of personal data in databases;
2.1.8. Anonymization of personal data;
2.1.9. Other actions on personal data that are necessary for the purposes of this Consent.
2.2 The Company processes and stores personal data in accordance with the Law of Ukraine «On the Protection of Personal Data» and other regulatory legal acts of the legislation of Ukraine.
2.3 The effect of this consent also applies to cases when the Company acts as a third party, processes personal data of subjects on behalf of another owner / manager of personal data or other persons who provide intermediary services to the Company and receive personal data of subjects of personal data in order to further execute the personal data of the conclusion and execution of transactions (contracts) between the Company and such personal data subjects.
3. Principles of processing personal data
3.1 The Company accepts and ensures the implementation of the following principles of personal data processing:
3.1.1. personal data should only be processed legally;
3.1.2. processing is carried out subject to the consent of the subject of personal data to the processing of such data;
3.1.3. only personal data that correspond to the purposes of their processing are subject to processing;
3.1.4. the content and volume of processed personal data must comply with the stated processing objectives;
3.1.5. when processing personal data, the accuracy of personal data, their sufficiency, and, if necessary, relevance regarding the purposes of processing personal data must be ensured;
3.1.6. personal data must be processed in compliance with data protection requirements;
3.1.7. personal data should not be transferred to foreign subjects of relations related to personal data, if the jurisdiction of such foreign subjects does not provide adequate protection of personal data;
3.1.8. processed personal data are subject to destruction or depersonalization upon achievement of the processing goals or in case of loss of the need to achieve these goals, unless otherwise provided by this agreement or other legislation of Ukraine;
3.1.9. when gaining access to personal data, the Company is obliged not to disclose to third parties and not to distribute personal data without the consent of the subject of personal data, unless otherwise provided by this agreement or other legislation of Ukraine.
3.1.10. The subject of personal data of personal data, by joining the terms of this Consent, gives his consent to the entry and use of his personal data in the User Base and to the processing of his personal data by the Owner (in particular, to collect, register, accumulate, store, adapt, change, renew, use and distribution, depersonalization, destruction of personal data, including with the use of information (automated) systems and other actions that the Owner can perform with his personal data: name, surname, atkovi, communication number, electronic identification data (IP-address, phone, e-mail), data about the place of residence, as well as other personal data and information that is provided to fulfill the requirements of the current legislation and / or voluntarily by the Subject of the owner’s personal data solely for the purpose of registering the Subject of personal data in the user database with subsequent by sending to the Subject of personal data mailings and sms messages, including advertising and information mailings, in order to ensure the implementation of civil and economic relations, settlements, accounting and tax accounting, for communication and contractual relations with state bodies, counterparties and other third parties in the course of business activities, as well as for other purposes that do not contradict the current legislation.
4. Conditions and purposes of processing
4.1. The processing of personal data by the Company is carried out in the following cases:
4.1.1. subject to the subject of personal data providing consent to the processing of such data, which is expressed in writing or in a form that allows us to conclude that consent has been provided;
4.1.2. is necessary to exercise the rights and legitimate interests of the Company or third parties or to achieve public interests;
4.1.3. is necessary for the performance of an agreement to which the subject of personal data is a party or beneficiary or guarantor, as well as for concluding an agreement initiated by the subject of personal data or an agreement under which the subject of personal data will be a beneficiary or guarantor;
4.1.4. is necessary for the exercise of the rights and fulfillment of the obligations of the subject of personal data in the field of labor legal relations in accordance with the law, with the provision of appropriate protection.
5. Personal data processing
5.1. When processing personal data, the Company carries out the following actions (operations) or a set of actions (operations), using automation tools or without using such tools with personal data: collection, recording, systematization, accumulation, storage, clarification (update, change), extraction, use, transfer (distribution, provision, access), depersonalization, blocking, deletion and destruction, except for cases when a narrower scope of actions with personal data is determined by the order of the subject of personal data, on whose behalf the Company acts, or follows from the conditions for processing personal data …
5.2. The processing of special categories of personal data concerning race, nationality, political views, religious or philosophical beliefs, health status, intimate life, private life, information about the membership of the subject of personal data in public associations or their trade union activities is not carried out.
5.3. The subject of personal data may revoke this consent by sending a written notice to the owners at least 90 (ninety) days prior to the expected date of revocation of this consent. The Personal Data Subject agrees that within the specified period, the Owner is not obliged to stop processing personal data and destroy the personal data of the Personal Data Subject. The revocation will not be retroactive with respect to personal data processed prior to the entry into force of such revocation.
5.4. The Owner / Manager of personal data undertakes, in accordance with the requirements of the legislation of Ukraine in the field of personal data protection, to ensure adequate protection of personal data from illegal processing, as well as from illegal access to them, including taking the necessary measures to prevent the disclosure of personal data by employees and / or others. authorized persons of the owners to whom such personal data was entrusted or who became known to them in connection with the implementation of the Agreement.
6. Storage periods and requirements for the destruction of personal data
6.1. Personal data are subject to deletion or destruction in the event of:
6.1.1. the storage period of the data, the specific consent of the subject of personal data to the processing of this data or by law;
6.1.2. termination of legal relations between the subject of personal data and the owner or manager, unless otherwise provided by law;
6.1.3. the entry into force of a court decision on the deletion or destruction of personal data.
6.2. The storage period for personal data is 3 (three) years from the date the personal data subject provided this consent.
6.3. After the expiration of the storage period for personal data, which is provided for in clause 6.2. of this Consent, the Owner and / or the Controller of personal data has the right to automatically extend the storage period of personal data for 3 (three) years, if the subject of personal data after the expiration of the storage period for personal data does not require the destruction of personal data.
7. Ensuring the protection of personal data
7.1. Owners, managers of personal data and third parties are obliged to ensure the protection of these data from accidental loss or destruction, from illegal processing, including illegal destruction or access to personal data.
7.2. The owner is not responsible for any processing, failure to ensure the access mode and protection of personal data of personal data subjects by third parties, including the owner’s employees, if the provision of access to such personal data (or other action that created the possibility of further unauthorized processing by third parties) was performed The owner or another person with the permission of the subject of personal data outside the fulfillment of obligations under the Agreement for personal purposes or other purposes not related to the performance of obligations under the C OVOR, using technical means or other materials / equipment of the owner.
8. Other conditions
8.1. The subject of personal data joins and accepts the terms of this Agreement by providing written consent or consent in the form, which makes it possible to conclude that the subject of personal data has given consent and to identify such a subject of personal data.
8.2. The subject of personal data joins this Consent through his free expression of will, without any coercion and realizing the legal consequences of this Agreement.
8.3. The subject of personal data by joining this Consent confirms that the provision of this Consent is clear and understandable to him.
8.4. The destruction of the personal data of the subject of personal data is carried out in case of the requirement of the subject of personal data to destroy his personal data within the time frames provided for in clauses 6.2-6.3 of this Consent.
8.5. This Consent is considered concluded and enters into legal force from the moment the personal data subject joins with the terms of this Agreement.
8.6. The text of this Consent is available on the website of the owner / processor of personal data, which is available to an unlimited number of people for sending.