The intention of the agreement is to regulate rights and obligations pursuant to law of processing of personal data. The agreement also seeks to comply with the General Data Protection Regulation (GDPR) of the European Parliament and of the Council of 27 April 2016 (in effect May 2018).
In some contexts, GreatPeople will be processing personal data on behalf of the Client. This can be personal data about management team, responsible leader for the position to be hired, or personal data about internal candidates.
GreatPeople has the right to process contact information including name, email, address, phone number, information regarding education and work experience including position, workplace, the duration of employment, remuneration, any recommendation and preferences about future career. GreatPeople will not process sensitive of personal data.
The purpose of the processing of personal data is to fulfil contract obligations with the Client. GreatPeople will not process personal data in any other way than that which is agreed in this agreement. To fulfil contract obligations, GreatPeople have the right to gather, register, assemble, save and transfer personal data on behalf of the Client.
When processing personal data on behalf of the Client, GreatPepole shall follow the routines and instructions stipulated by the Client and GreatPeople at any given time, including any transfer of personal data to a third country or an international organisation.
The client is entitled to access all personal data being processed on behalf of the client and the systems used for this purpose, unless otherwise is agreed upon. GreatPeople shall provide the necessary assistance for this. If the Client is facing demands from an individual to remove, view or transfer personal data processed by GreatPeople, GreatPeople should be notified by the Client to fulfil the demand. If certain data should be deleted, this shall also include data on any backup service or medium.
GreatPeople must observe professional secrecy with regard to the documentation and personal data to which the company has access to in accordance with this agreement. This provision also applies after the agreement has been discontinued. If GreatPeople uses a subcontractor or others not normally employed by GreatPeople, this shall be agreed in writing with the Client prior to start of the processing of personal data. GreatPeople is responsible for informing employees and subcontractors about the processing of personal data, the risk of the processing and how to handle deviation. GreatPeople will be held accountable if an employee or subcontractor violate the point above.
The Client accept that GreatPeople uses subcontractors to process personal data. At the time GreatPeople uses Protekt IT, Microsoft, Recman, refapp and Assessio as subcontractors for processing personal data.
GreatPeople shall fulfil the requirements for security measures stipulated in the GDPR, in particular Chapter 4 Articles 25 and 32. GreatPeople shall maintain a record of processing activities, and the documentation shall be available upon the Clients request. The implementation of regular security audits for systems etc. covered by this agreement shall be implemented according to the GDPR, and the Client can at any time request and perform security audits with GreatPeople.
GreatPeople shall report any discrepancies to the Client. In case of a personal data breach, GreatPeople must notify the Client without delay after becoming aware of a personal data breach in accordance with GDPR Section 32 no. 2.
This agreement is automatically terminated if the service contract between the parties is terminated. Upon termination of this agreement, GreatPeople is obliged to return or delete all personal data received and covered under this agreement, if written requested by the client within reasonable time.
Vil du vite mer?
Du når oss på 0047 911 67 523 eller mail email@example.com, eller fyll inn
feltene under og send. Våre rådgivere vil kontakte deg omgående.