Careers at Hiab

Hiab Privacy Statement - Human Resources, Recruitment  

Purpose of this statement 

Hiab Corporation (“We” or “Hiab”), recognizes the importance of protecting people’s privacy and personal data and processing it in accordance with the applicable privacy laws. The purpose of this Human Resources Recruitment Privacy Statement (“Statement”) is to communicate the ways we process personal data of individuals who apply for a job in Hiab Corporation or any of its affiliate companies. Should any applicable mandatory laws or regulations be in conflict with this Statement, we will respect such laws and regulation over any conflicting parts in this Statement. 

If you have any questions or inquiries concerning this Privacy Statement and/or your personal data, please contact privacy@hiab.com.
 

Who is the data controller for personal data? 

Data controller, and therefore the legal entity responsible for collection and use of personal data under this Statement is Hiab Corporation. In regards to detailed data processing activities, individual Hiab affiliate companies may also operate as data controllers, either independently or jointly with Hiab Corporation.

Why do we collect personal data? 

We collect and process your personal data in connection with our recruitment processes, which includes any actions which are necessary for us to make assessment of applicants, such as job interviews, applicant assessments conducted by external recruitment consultants, and other actions necessary for the final recruitment decision. 

What personal data do we collect? 

We collect the data which are necessary for us to run our recruitment processes. This will usually include information such as name and contact details, CV, cover letter, working experience, education, know-how, competences and references, and any other relevant and necessary data which you may choose to provide to us along with your application. 

Where do we collect the personal data from? 

We collect your personal data primarily from you and as provided by you to us. In addition to this, we may also, subject to applicable laws and regulations, collect personal data about you from third party sources. This may happen for example in case of conducting background checks and applicant assessments from external professional service providers. We may also gather your personal data from public sources such as LinkedIn or similar professional social platforms.

What is the legal basis for the processing of personal data? 

We collect and process your personal data primarily on the basis of your consent. However, there may be circumstances where we may have to rely on other grounds for the lawfulness of processing your personal data, such as: (i) processing which is necessary for us to take steps, at your request, prior to entering into an employment contract without; (ii) processing which is necessary for compliance with a legal obligation; or (iii) processing which is necessary for the purposes of the legitimate interests pursued by us in accordance with the European Data Protection Regulation. We stress that we will rely on any alternative legal basis to the extent necessary and only to the extent possible under applicable laws and regulations.

Who do we share personal data with?  

We will share your data on a regular basis only with external professional service providers engaging in applicant assessments as well as sometimes to entities conducting background checks. Such providers and entities typically operate on our behalf, with the exception of governmental agencies (such as in case of some background checks).

Do we transfer my personal data outside the European Union or the European Economic Area? 

We may transfer your personal data outside the European Union and/or the European Economic Area. In order to ensure adequate protection of any such transferred data we typically apply the necessary safeguards in the form of the European Commission Standard Contractual Clauses. However, in individual circumstances other means may apply. In any case we will always ensure that your personal data is adequately protected as required by applicable laws and regulations.

How long do we retain personal data? 

We retain the personal data for only as long as that data is necessary for the purposes we have collected it, or if we are required to retain that data for longer periods in order to comply with applicable laws.

Our information security practices 

Personal data may be stored either in hardcopy or electronic form. We recognize its obligation to safeguard the personal data and have therefore taken reasonable protective measures to secure against the unauthorized access, modification, collection, copying, use, and disclosure of such personal data. These measures include: (i) limiting the access and uses of information to those Hiab’s employees, contractors and suppliers and persons who, for in order to be able to perform their relevant tasks need to have, on a fair and lawful basis, access to personal data; (ii) use of physical and electronic access codes and passwords to control and restrict access; (iii) training and raising awareness on relevant employees and other personnel about data protection and privacy; (iv) applying update and at-minimum-industry standard technical security measures. 

What rights do individuals have in regards to their personal data? 

You have the right to ask us to tell you what data we at any given time store about it. Subject to local applicable laws you also have the right to: 

• request us to erase your personal data if you deem that it should be erased, subject to applicable laws and our retention criteria; 
• request us to restrict the use of your data or object to our processing of your personal data; 
• object us in processing your personal data; 
• request us to move your personal data over to you or to another data controller in accordance with the European Data Protection Regulation; 
• where you have given us your consent to process your personal data, you may have the right to withdraw that consent in accordance with applicable laws; and 
• lodge a complaint with a relevant data protection authority if you deem that we have processed your personal data in violation of the applicable data protection laws.  

We will review such requests and execute them to the fullest extent possible in accordance with applicable laws.

Is it voluntary to give personal data to us? 

Yes. However, we do require sufficient information about you in order to be able to make an informed decision concerning you in our recruitment processes. Thus, if you choose not to provide some of all of the information which we request from you, in accordance with this privacy policy, we may not be able to consider you when making final hiring decisions. 

Please be aware that we may also deviate from or operate in a manner that is not explained in detail above if (i) we are required to do so under applicable mandatory laws, or (ii) the other purposes and context, in which we use personal data, are not incompatible with the initial purposes explained above.