Latest update 9.7.2021
Privacy and responsible business are very important for us. In Gofore Plc (hereinafter “Gofore”, “we” or “us”) privacy and data protection are seen as part of all business activities. We protect and safeguard personal data in accordance with the laws and regulations. This notice describes the principles and procedures with which we comply when we collect and process personal data.
TABLE OF CONTENTS
Gofore Oyj (business identity code 1710128-9)
You may send your questions and requests regarding privacy to firstname.lastname@example.org.
Gofore processes personal data in accordance with applicable legislation, including the General Data Protection Regulation (Regulation (EU) 2016/679, “GDPR”), and this privacy notice.
We take into account the requirements set forth in the data protection legislation in all our business activities and we expect and require the same from our subcontractors and other business partners.
We provide orientation and training for our employees regarding the requirements and guidelines for privacy so that they know how to perform accordingly.
We collect the following personal data solely for predefined purposes described below.
We process the following personal data during the job application and recruitment process:
In addition to the above, we will process the following data to the extent you provide us with such data during the recruitment process:
Additionally, to the appropriate extent, we will save the following data during the recruitment process:
Collected data is used in order for us to process your job application (including, to carry out the recruitment process, to review your job application, to carry out the job interview and selection of the recruitment candidate) and keep in contact with you during the recruitment process, as well as support the possible orientation and beginning of the employment relationship.
The personal data collected consists primarily of the information that you choose to provide us. With your consent, information may be received from other sources as well, for example through references given to us by you.
If you are our customer or business partner, we may process the following personal data:
Collected data is used in order for us to manage customer and partnership relations as well as marketing, implementing and developing services and events of Gofore.
The personal data is collected primarily within the context of governance and implementation of customer and partner relationship. Such data include also the information that the person chooses to provide us (e.g. when you sign up for an event organised by us or subscribe to our newsletter or when you visit our website).
If you are in contact with us, for example, to ask about our services, to sign up for an event organised by us, or to order our newsletter, we may process the following personal data to the extent we have obtained such data from you:
Collected data is used in order for us to process your contact or request as well as keep in contact with you.
When we process personal data for the purposes described above, our processing is primarily based on a legitimate interest of Gofore.
In addition to or instead of the above, the processing may be based on performance of a contract between you and Gofore in which case we process the personal data in order to perform the obligations and carry out the purposes set forth in the respective contract.
In addition to or instead of the above, in some cases the processing may be based on a consent given to us by you (e.g. when you give us the consent to store the information you have given us during the recruitment process for future job opportunities).
We process personal data for only as long as required or entitled by applicable legislation.
We review the necessity of the data stored on a regular basis and erase any data when it no longer needed for the purposes mentioned above in this privacy notice.
Gofore acts diligently to ensure that you are able to exercise your rights regarding the processing of your personal data. You have a
As explained in more detail below, some cookies used on our website are necessary to enable functionalities of our website, improve the performance or user experience of our website, and some cookies we use to deliver targeted digital marketing on our website or other websites.
When you visit our website, we and/or third-party service providers, such as Google or Facebook, place cookies on your device.
We and third-party service providers collect especially the following information by cookies:
We use following cookies on our website:
Most web browsers accept cookies automatically, but if you do not want receive cookies, we advise you to change your browser settings so that your browser blocks the cookies or gives you a warning prior to saving a cookie as well as remove all cookies already saved on your device.
More information on how you can configure the settings related to management of cookies you can find from the user manual of your browser.
Information security and protection of personal data has been organised in accordance with the industry best practices at Gofore. Personal data has been protected from unauthorised access and processing as well as against unlawful and accidental destruction, loss and corruption. In addition, Gofore constantly improves practices in order to protect data. Information security and related risk management are based on the governance system and related information security policy. The information security policy is in compliance with the ISO27002 (2013) structure, as applicable.
Responsibility for the maintenance of information security operations and processing of any deviations lies with an information security group that is being managed by the leader of that information security group.
We process personal data as confidential information and all our users are committed to confidentiality and comply with our guidelines on data protection and information security. Access management of confidential information has been organised through a centralised or system-specific user directory. Only named persons may grant an access and user rights to a data system, provided that the person requesting for an access has been identified and that the person’s need for access to confidential information has been verified. Gofore assesses and reviews access and user rights on a regular basis.
If we outsource processing of personal data to third parties, we make agreements with such third parties as required by the data protection legislation in order for us to ensure that the processing of personal data complies with this privacy note as well as applicable laws, regulations and orders issued by relevant authorities.
Personal data on our recruitment candidates is processed by our USbased IT service provider Lever Inc., with whom we have entered into a data processing agreement in accordance with Article 28 of the GDPR. Also, data concerning our customers, business partners and other contacts may be processed by service providers outside the EEA in which case we have entered into appropriate agreements with such service providers in order to ensure that data transferred will be processed in accordance with the law. Any data transfers related to such agreements are based on the decision of the European Commission of 5 February 2010 and related standard contractual clauses and/or Privacy Shield arrangement entered into by and between the EU and the United States.
Always if and when personal data is transferred outside of the EU or EEA, we ensure by contracts or other legal instruments that the transfer occurs in accordance with the applicable data protection legislation and that there is an adequate level of data protection.
Gofore and its subsidiaries are located in the member states of the EU. If the purpose of the processing of personal data requires transfer of data between Gofore and its subsidiary, we may share personal data within the Gofore group in which case, likewise, we will ensure that the processing of personal data complies with the applicable data protection legislation and this privacy notice.
We update this privacy notice when there are changes in the processing of personal data or in the applicable laws of which we need to inform you. In addition, we may update this privacy notice when we develop our website, services or business activities. The most recent version of the privacy notice is available at this website.