Data privacy information for applicants
We are pleased that you are interested in us and have applied or are considering applying for a position at our company. We would like to provide you with information regarding the processing of your personal data in connection with the application.
Responsible authority and data protection officer
Responsible party
Hettich PLC
Seestrasse 204
8806 Bäch
Switzerland
Tel.: +41 44 786 80 20
E-Mail: sales@hettich.ch
Applicable law
Data of data subjects in Switzerland
The processing of personal data of applicants residing in Switzerland is governed exclusively by the revised Swiss Federal Act on Data Protection (FADP), in force since 1 September 2023. The EU General Data Protection Regulation (GDPR) does not apply.
Data of data subjects from the EU
If we process personal data of data subjects residing in the EU (e.g. via our website), the GDPR applies in addition to Swiss law.
Legal Basis
The legal basis for data processing is the revised Swiss FADP and the GDPR (where applicable), including national provisions such as the German Federal Data Protection Act (BDSG).
Scope of data processing
Sources and categories of data
We process the data you provide during the application process to assess your suitability for the position (or potentially other open positions) and to manage the application process. Additionally, we may process personal data that is publicly available (e.g. professional online profiles) where this is permitted under applicable data protection laws.
Purposes and legal bases for processing the data
We process your personal data in compliance with the provisions of the EU General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG), and other applicable laws.
The legal basis for processing your personal data in this application process is primarily Article 6 (1) (b) GDPR in conjunction with Section 26 BDSG. According to this, the processing of data is permitted if it is necessary for the decision to establish an employment relationship.
Should the data be required for legal proceedings after the completion of the application process, data processing may occur based on the conditions of Article 6 GDPR, particularly for the protection of legitimate interests as per Article 6 (1) (f) GDPR. Our interest would then be in asserting or defending claims.
Furthermore, your voluntarily given consent under Article 6 (1) (a) GDPR may serve as the legal basis for data processing (e.g., inclusion in the applicant pool, newsletter for new job offers). Consent can be withdrawn at any time with effect for the future.
If special categories of personal data are processed according to Article 9 (1) GDPR, this is done in the context of establishing an employment relationship, exercising rights, or fulfilling legal obligations. This processing is based on Article 9 (2) (b) GDPR in conjunction with Section 26(3) BDSG. Additionally, the processing of health data may be necessary for assessing your ability to work according to Article 9 (2)(h) GDPR in conjunction with Section 22 (1) (b) BDSG.
If we process your personal data for a purpose not mentioned above, we will inform you beforehand.
Consequences of not providing data
As part of your application, you must provide the personal data that is necessary for establishing the employment relationship or that we are legally required to collect.
Security Measures
We implement appropriate technical and organizational measures (TOMs) to protect your data against unauthorized access, manipulation, loss or destruction. These include access restrictions, secure data storage, and regular system monitoring.
Automated individual decision-making
We do not use any purely automated decision-making procedures in accordance with Article 22 GDPR. Should we implement such a procedure in specific cases in the future, we will inform you separately, as required by law.
Recipients of the data within the EU
Within our company, only those individuals and departments (e.g., relevant department, management, HR) who need your personal data for the application process will have access to it.
After receiving your application, the HR department will review your application data. Suitable applications are then forwarded internally to the department heads responsible for the respective open position. The further process is then coordinated accordingly. Generally, only those individuals within the company who need access to your data for the proper conduct of our application procedure will have it.
Recipients of the data outside the EU
Should we transfer personal data to service providers or group companies outside the European Economic Area (EEA), such transfers will only occur if the third country has been recognized by the EU Commission as providing an adequate level of data protection, or if other appropriate data protection guarantees are in place (e.g., binding corporate rules or EU Standard Contractual Clauses).
Storage period
- Data from applicants will be deleted after 4 months in the event of a rejection.
- If you have agreed to further storage of your personal data for future job openings or for a period exceeding the current application process, your data will be included in our applicant pool. Data in the pool will be deleted after two years.
- If you receive a job offer during the application process, the data from the applicant management system will be transferred to our personnel information system.
Rights of data subjects
Under certain conditions, you can assert your data protection rights against us. Please submit your requests for exercising your rights in writing or by email to the address provided above or directly in writing or by email to our Data Protection Officer.
- You have the right to obtain information from us about the data we hold on you in accordance with Article 15 GDPR (subject to limitations under Section 34 BDSG).
- Upon your request, we will correct any inaccurate or incorrect data we hold about you in accordance with Article 16 GDPR.
- If you wish, we will delete your data based on the principles of Article 17 GDPR, provided that no other legal regulations (e.g., statutory retention obligations or restrictions under Section 35 BDSG or a prevailing interest on our part, such as defending our rights and claims) oppose this.
- Considering the conditions of Article 18 GDPR, you can request that we restrict the processing of your data.
- If your personal data is processed based on legitimate interests according to Article 6 (1) (f) GDPR or if it is necessary for the performance of a task carried out in the public interest or in the exercise of official authority, you have the right, under Article 21 GDPR, to object to the processing of your personal data if there are reasons related to your particular situation or if the objection is against direct marketing. In the latter case, you have a general right to object, which will be implemented by us without needing to specify a particular situation.
- You also have the right, under the conditions of Article 20 GDPR, to receive your data in a structured, commonly used, and machine-readable format or to transmit it to a third party.
- Additionally, you have the right to withdraw any consent previously given for the processing of personal data at any time, with effect for the future.
Furthermore, you have the right to lodge a complaint with a data protection supervisory authority (Article 77 GDPR). However, we recommend that you first address any complaint to our Data Protection Officer.