Deutsche Telekom Services Europe Romania Privacy Notice

General provisions

Deutsche Telekom Services Europe Romania S.R.L. (“Deutsche Telekom”) attaches great importance to protecting your personal data. We always inform you what personal data we collect, how your data is used, and how you can influence the process.

This Privacy Notice (“Notice“), together with our website terms of use, cookies policy and any other documents referred to in it, sets out the types of personal information we collect, how we collect and process that information, who we may share it with in relation to the services we provide and/or the relationship established with the clients and/or partners and certain rights and options that you have in this respect

Where can I find the information that is important to me?

This data privacy information provides an overview of the items which apply to Deutsche Telekom processing your data in this web portal.

Further information, including information on data protection for specific products, is available at Deutsche Telekom Data Protection Policy and Deutsche Telekom Privacy Policy.

Who is responsible for data processing? Who should I contact if I have any queries regarding data privacy at Deutsche Telekom?

For the purposes of applicable data protection law (in particular, the General Data Protection Regulation (EU) 2016/679 (the “GDPR“), your data will be controlled by Deutsche Telekom Services Europe Romania S.R.L. acting as the data controller. If you have any queries, please contact us on the following address:

Deutsche Telekom Services Europe Romania S.R.L.

319 G Splaiul Independenței, Sema Parc, Riverview House, 11th floorBucharest, district 6, Romania

E-mail: Ask.Me@telekom.com

What rights do I have?

You have the following rights:

  1. To request information on the categories of personal data concerned, the purpose of the processing, any recipients of the data, the envisaged storage period (art. 15 GDPR);

  2. To request incorrect or incomplete data is rectified or supplemented (art. 16 GDPR);

  3. To withdraw consent at any time with effect for the future (art. 7 (3) GDPR);

  4. To object to the processing of data on the grounds of legitimate interests, for reasons relating to your particular situation (art. 21 (1) GDPR);

  5. To request the erasure of data in certain cases under art. 17 GDPR – especially if the data is no longer necessary in relation to the purposes for which it was collected or is unlawfully processed, or you withdraw your consent according to (c) above or objected according to (d) above;

  1. To demand under certain circumstances the restriction of data where erasure is not possible or the erasure obligation is disputed (art. 18 GDPR);

  2. To data portability, i.e. you can receive your data which you provided to us, in a commonly used and machine-readable format, such as CSV and can, where necessary, transmit the data to others (art. 20 GDPR);

  3. To file a complaint with the competent supervisory authority regarding data processing (The National Supervisory Authority For Personal Data Processing).

Who does Deutsche Telekom pass my data on to?

To processors, i.e. companies we engage to process data within the legally defined scope, according with art. 28 GDPR (service providers, agents). In this case, Deutsche Telekom also remains responsible for protecting your data. We engage companies particularly in the following areas: IT, sales, marketing, finance, consulting, customer services, HR, logistics, printing.

To cooperation partners who, on their own responsibility, provide services for you or in conjunction with your Deutsche Telekom contract. This is the case if you contract with us services from these partners or if you consent to the incorporation of the partner or if we incorporate the partner on the basis of legal permission.

Owing to legal obligations: in certain cases, we are legally obliged to transfer certain data to the requesting state authority.

Where is my data processed?

In general, your data is processed in Romania and in other European countries.

If your data is also processed in countries outside the European Union (i.e. in third countries) by way of exception, this is done only if you have explicitly given your consent or it is required so we can provide you with services or it is prescribed by law (art. 49 GDPR). Furthermore, your data is only processed in third countries if certain measures ensure a suitable level of data protection (e.g. EU Commission’s adequacy decision or suitable guarantees, art. 44 ff. GDPR).

What data is recorded, how is it used and how long is it stored?

  1. Identity and contact data, including your name, telephone number, e-mail address and message sent when you contact us on the website;

  2. Video and other data, relating to details of your visits to our premises;

  3. Curriculum vitae information: we may collect, store and use your contact details and other information as contained in your job application, curriculum vitae and covering letter, as well as any references provided or obtained, for the purposes of processing your application and for general recruitment and selection purposes.

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal or reporting requirements and, where required for Deutsche Telekom to assert or defend against legal claims, until the end of the relevant retention period or until the claims in question have been settled.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

If you want to learn more about our specific retention periods for your personal data established in our retention policy, you may contact us at the address mentioned above.

Upon expiry of the applicable retention period we will securely destroy your personal data in accordance with applicable laws and regulations.

How will we use your personal data?

We may use your personal data only for the following purposes:

  1. to respond to your solicitation and to provide the information requested;

  2. to keep records of the answers we have sent to you;

  3. to manage access to our premises and for security purposes, when you visit our offices;

  4. to process applications for employment or internships;

  5. for any other purposes related and/or ancillary to any of the above or any other purposes for which your personal data was provided to us.

We may process your personal data in connection with any of the purposes set out above on one or more of the following legal grounds:

  1. because it is necessary for us to do so to perform your instructions or to answer to your solicitation;

  2. to comply with our legal obligations as well as to keep records of our compliance processes;

  3. because of our legitimate interests, or those of a third party recipient of your personal data, make the processing necessary, provided that those interests are not overridden by your interests or fundamental rights and freedoms;

  4. because you have expressly given us your consent to process your personal data in that manner.

We will not use your personal data for taking any automated decisions affecting or creating profiles other than as described above.

Security of your personal data

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed.

Deutsche Telekom maintains reasonable physical, technical and organizational security measures (including access control, strong password requirements and data encryption, as appropriate) and other network security measures (e.g., firewalls, access logs, and protection against malware and viruses) to protect your personal data against theft, accidental loss, modification, unauthorized access, use, disclosure or copying, accidental or unlawful destruction, in accordance with the applicable legislation. Deutsche Telekom is also involved in CCTV monitoring of its units and monitoring the use of Deutsche Telekom’s information systems and assets, in accordance with the applicable law.

Deutsche Telekom will retain your information as long as it is necessary for the purposes for which it was collected, according to laws and/or, as the case may be, in the case of a legal complaint. More detailed information about Deutsche Telekom’s record keeping and destruction practices you can obtain at the contact address mentioned above.

Changes to our Privacy Notice

We reserve the right to update and change this Notice from time to time in order to reflect any changes to the way in which we process your personal data or changing legal requirements. Any changes we may make to our Notice in the future will be posted on this page. Please check back frequently to see any updates or changes to our Notice.

Last updated November, 2018