Legal notice/privacy policy
We take data protection very seriously here at Arabella Hospitality SE. This means that we always follow the legal data protection provisions when processing the personal data of all applicants.
The following information explains how we process your personal data and sets out your rights under the applicable data protection legislation.
1. Who is responsible for collecting and processing data, and who can I contact regarding these matters?
Data controller pursuant to data protection laws
Arabella Hospitality SE
Denninger Strasse 165
81925 Munich, Germany
Tel.:
Fax:
E-mail: info@arabella.com
Contact details for the data protection officer
Arabella Hospitality SE
Data protection officer
Denninger Strasse 165
81925 Munich, Germany
E-mail: datenschutzbeauftragter@arabella.com
2. Processing purposes and data categories
We collect and process your personal data as part of the selection process for the job vacancy you have applied to fill. The data you provide will be processed so that your application can be considered. If you are successful, this data will also be used to create and implement your employment contract. We do not process your data for any other purpose. We use the ho:re:so applicant portal for the aforementioned purposes (www.hotelcareer.de). You can set up an applicant account on the portal and add, update, change, or delete your details as you wish.
Personal data refers to any data and information you have provided us that identifies you personally or helps to identify you personally. We collect and process the following personal data relating to you:
First name, surname, home address, telephone number, e-mail address, date of birth, CV, education and vocational training, references and certificates, professional development information, qualifications, and supporting documents
The aforementioned personal data is processed for the following purposes:
- initiating a contract with you, including the confirmation of your identity and communication with you, e.g. to respond to your queries, invite you to an interview, and/or inform you that your application has not been successful
- settling legal disputes and asserting, exercising, and defending legal claims
3. Legal basis for data processing
We need to process your personal data for the aforementioned purposes. The legal basis for data processing is set out in Article 6(1)(b) and (f) of the General Data Protection Regulation (GDPR).
4. Data sharing
We treat any data you provide to us as strictly confidential. Within our company, job applications are only made available to the people directly involved in filling the vacancy in question. Your documents are submitted to the Works Council if we decide that we want to offer you an employment contract. Applications that are also to be used for other positions are forwarded to the relevant departments within the company. You can object to your documents being shared or processed further at any time. In this case, it will no longer be possible for us to consider your documents or personal data for the ongoing application process.
We share your personal data with courts, tax authorities and regulatory bodies when permitted and required by law in order to comply with current legislation or assert, exercise, or defend legal claims. However, we take every suitable and reasonable precaution to guarantee the protection of your personal data.
We will not share your personal data with third parties unless it is in your own interest or we are required to do so by law or for contractual reasons. Third parties include people or bodies outside of our company that process personal data without being instructed to do so by us.
The technical platform for the ho:re:so applicant portal (www.hotelcareer.de) is provided and operated by an external service provider: YOURCAREERGROUP AG, Kaiserwerther Strasse 282, 40474 Düsseldorf, Germany. This external service provider does not have the permission or capability to access your data. Regardless, this service provider is obliged to comply with the applicable data protection regulations.
5. Transfer of data outside the EU
Data is only transmitted to recipients in third countries (outside the EU/EEA) if the European Commission has established that the third country in question can provide a sufficient level of data protection and/or if we have agreed upon sufficient contractual guarantees with the recipient to ensure that a sufficient level of data protection is provided.
6. Data storage
If we conclude an employment contract with you, we will store the data provided by you to process the terms of your employment with us with consideration for the legal regulations. If we decide not to offer you an employment contract, your application documents will be automatically deleted six months after you are notified that your application has not been successful, provided that deleting the documents will not conflict with our company’s legitimate interests. One such legitimate interest that may apply here is the obligation to provide proof as part of proceedings under the General Act on Equal Treatment (AGG).
7. Your rights (“rights of the data subject”)
Right of access by the data subject and right to rectification
Upon your request, we will inform you in writing of whether or not we are storing personal data concerning you and, where that is the case, which personal data we are storing, as required by law. If you have created your own account on our recruitment system, you can log in to view your data and update or delete it as you wish. If, despite our best efforts to keep your data secure and correct, we end up storing inaccurate information about you, we will rectify this without undue delay upon your request.
Right to restriction of processing
Furthermore, you have the right to a restriction to the processing of your personal data. You also have the right to obtain the data you have provided to us in a structured, commonly used, and machine-readable format. You also have the right to object to us processing your personal data.
Right to erasure
You have the right to the deletion of your personal data, provided that no legal retention periods apply.
Right to withdraw consent
If you have consented your personal data to be processed, you have the right to withdraw said consent with future effect at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent prior to its withdrawal.
Right to lodge a complaint
You also have the right to lodge a complaint about the way in which our company has processed data with the relevant supervisory authority. The data protection authority responsible for our company is:
Bayerisches Landesamt für Datenschutzaufsicht (Bavarian State Office for Data Protection Supervision)
Postfach 606
91511 Ansbach, Germany
Tel.:
Fax:
E-mail: poststelle@lda.bayern.de
8. Changes to the privacy policy
We will review our privacy policy at regular intervals and adapt it in accordance with current legal regulations.
Implementierte Technologien