Privacy Policy
Candidate privacy policy
Dear candidate,
Before getting in contact with us, please consider our Candidate Privacy Policy regarding the processing of your personal data. By reading this, you will understand how we collect your data, the purpose of processing it, how we use it, who has access to it, and all other important information concerning what you agree to share with us.
This Policy informs you about your privacy rights, which you can exercise as a data subject.
This applies to you and to all candidates who apply, are contacted, or are referred for any opening generated by us.
About us
Using “we”, “us”, “ours”, “Sand” – Sand Tech Holdings Limited is a company registered in Mauritius and its affiliates and subsidiaries.
Business registration number: C14117099
Registered office address: Level 6, Tower A, 1 Exchange Square, Wall Street, Ebène 72201 Mauritius
We act as a ‘controller’ of the personal data during the recruitment process.
“You” refers to you, as a data subject in the position of a candidate.
One of our main goals is to protect your personal data. We are data controllers and are fully aware of our responsibility to secure a legal process and protect all data we use in our daily work.
Data Collection and Processing
We collect any personal data you share with us, as a candidate or as a referred candidate, for the purpose of interviewing as part of our recruitment process. You directly send this data, and we protect it from all unentitled parties.
You can apply to our openings through several channels, such as filling out an application on our website, using our applications on LinkedIn, being contacted by our recruitment agencies, being referred by a friend who works with us, being contacted directly by our recruiters or using professional recruitment platforms yourself.
Sometimes, the selection process starts with you sending an email directly to representatives of the Talent Acquisition team.
Whenever you submit your application it is likely that other data related to you will be obtained during the interview process (including public sources or third parties), in accordance with legal requirements.
Sand will only process your personal data for recruitment purposes, with the following additions:
- The recruitment process may include communication with You, evaluation and/or verification of CVs and references, interviews, and assessments.
- If the recruitment process is successful and You are hired, the data will be used later in the Onboarding process.
- If the job application is rejected (unsuccessful candidates), we will keep your CV/Resume for a limited period. Why? to notify you about other available job opportunities at Sand or to exercise our right of defense in case of legal action or complaints against us. Remember that you can always object to this and inform us.
- If You apply to several roles we will keep your data under a single profile to have the data complete and updated.
- We will use aggregate data for data analysis and reporting. This will allow us to improve the process and share results with our partners or clients.
- Identification and contact details: name, surname, phone, address, email.
- Different personal data contained in your CV/Resume, provided by You, such as birthplace, nationality, gender, photo etc.
- Data related to professional life: previous jobs, employers, occupations, desired jobs, career prospects, desired salary, and so on.
- Data related to your education such as studies, qualifications, educational experiences, and references from universities, professors and so on.
- Data related to the evaluation of candidates (including interview notes, assignments/exercises).
- Data obtained through background checks (such as checking diplomas/certifications, cross-checking with criminal records, social media handles you shared or checking references provided by you).
We will keep your personal data for a maximum of five years in accordance with our internal policies and applicable law. During this period, we might contact you about other job opportunities. Your data will be deleted at the end of this period.
If at some point during the five years, you enter another recruitment process for another job opportunity, apply for another job opportunity (directly or referred by a colleague), or send updates regarding your CV/Resume or professional motivation for accuracy reasons, we will restart the time frame, and your data will be kept for five years starting with the last official change.
If, at any point, you want us to delete any or all the data we have of You, please inform us, by sending us an email to: hiring@sandtech.com and we will proceed accordingly.
Data Management and Security
We may disclose your personal data to third parties if this is necessary to develop our activities and for reasons related to our legitimate interests.
We may also disclose your personal data, when this is necessary or to fulfill a legal requirement, to:
- Authorities
- Public institutions
- Attorneys
- Insurance companies
- Auditors
- External consultants
- Suppliers (such as job platforms, recruitment agencies, recruitment background check providers, recruitment software providers, video call providers, e-mail providers and cloud storage providers).
- Clients.
We are not responsible for and cannot influence the data and profiles You have on recruitment platforms, LinkedIn, or with recruitment agencies. Please check the related privacy policies of each such supplier.
There might be situations when we disclose your data whenever necessary for the establishment, exercise, or defense of legal claims.
We store your candidate profile in our recruitment database (through our external SaaS tool) which is stored in Germany and accessed by our SaaS provider from the USA.
We will also grant access to your data to our colleagues who are mostly located in Africa, Europe, the USA and Canada. If you need details on your particular application, please contact us.
Independently of the third parties’ location, we will ensure that personal data security is maintained (minimized and controlled access) and that the data transfer (including our teams and clients in the US and outside of the EU where applicable) complies with international privacy legislation (e.g., adequacy decisions, standard contract clauses, Privacy Framework).
We are accountable for protecting your personal data (collected directly or indirectly from You), therefore we are continuously focusing on the optimal functioning of our IT systems
and all implemented technical controls, part of our information security management system. Only authorized personnel have access to your personal data, such as HR, dedicated managers and teams and Recruitment.
Right
You can exercise certain rights as a candidate, and we will respond according to all the applicable legal requirements. However, some of the rights we state below may apply only partially or under certain specific circumstances. If you have additional questions, please contact us directly.
Your rights are:
- To be informed regarding the way we process your personal data
- To have access to your personal data that we might have (you can request directly what data we keep)
- To rectify or update your personal data (please contact us if you notice that your personal data is incorrect or you want to update your CV/Resume)
- To erase any personal data
- To restrict and/or object the way we process your personal data
- Data portability (supply the data in a transferrable format)
- To withdraw consent, whenever the consent was given
- To not be subject to automated decisions and profiling, which produce legal or significant effects in our recruitment processes
- The right to complain to the supervisory authority.
We may update this Policy form whenever necessary and publish a renewed revision. Therefore, we invite you to read this Policy regularly.
If you have any questions or clarification requests regarding the way we process your personal data or if you want to exercise any of your rights, please contact us directly.
We will do our best to respond as soon as possible and support you.