DESCRIPTION OF PERSONAL DATA FILE

GDPR (2016/679) and Personal Data Act (523 /99)

Job Applicant Data File of Nordic Henkilöstöpalvelut Oy

Controller

Nordic Henkilöstöpalvelut Oy, 1831904-4, (hereafter “Nordic”)

Hämeenkatu 5 A, 5th floor

FI-33100 TAMPERE

Purpose of Processing Personal Data

Management of Nordic’s personnel matters.

Data Subjects

Nordic’s job applicants.

Data Relating to Data Subjects

Basic personal data (name, address, date of birth etc.), information concerning previous employment (start date, duties etc.), information concerning education and professional skills.

Regular Sources of Data

Data shall mainly be collected from the job applicant him/herself.

Regular Disclosures of Data

Data shall be disclosed only when necessary and to the extent that is necessary to client companies.

Transfer of Data Outside the EU/EEA

No transfer

Principles of Job Applicant Data File Protection

Appointed individuals at Nordic shall have access to the personal data in the job applicant data file. The data is protected with a username and password. Manual data is stored in locked cabinets.

Employment Data File of Nordic Henkilöstöpalvelut Oy

Controller

Nordic Henkilöstöpalvelut Oy, 1831904-4, (hereafter “Nordic”)

Hämeenkatu 5 A, 5th floor

FI-33100 TAMPERE

Purpose of Processing Personal Data

Management of Nordic’s employment matters and the related employer obligations.

Data Subjects

Nordic’s employees.

Data Relating to Data Subjects

Basic personal data (name, address, date of birth, personal identity number etc.), information concerning the employment (start date, duties etc.), information concerning education and professional skills, information concerning the calculation of salary (salary group, monetary salary, fringe benefits etc.), annual holiday etc.

Regular Sources of Data

Data shall mainly be collected from the employee him/herself.

Regular Disclosures of Data

Data shall be disclosed only when necessary and to the extent that is necessary. Destinations may include client companies, a pension company, an insurance company, the tax authorities, an employers’ association etc.

Transfer of Data Outside the EU/EEA

No transfer.

Principles of Employment Data File Protection

Appointed individuals at Nordic shall have access to the personal data in the employment data file. The data is protected with a username and password. Manual data is stored in locked cabinets. Data concerning employees’ state of health shall be stored separately from other personal data.

Timesheet Data File of Nordic Henkilöstöpalvelut Oy

Controller

Nordic Henkilöstöpalvelut Oy, 1831904-4, (hereafter “Nordic”)

Hämeenkatu 5 A, 5th floor

FI-33100 TAMPERE

Purpose of Processing Personal Data

Management of Nordic’s employment matters and the related employer obligations.

Data Subjects

Nordic’s employees.

Data Relating to Data Subjects

Name of the individual and which client companies the individual has worked in (when, how much).

Regular Sources of Data

Data shall be collected from the employee him/herself and from client companies.

Regular Disclosures of Data

Data shall be disclosed only when necessary and to the extent that is necessary to client companies.

Transfer of Data Outside the EU/EEA

No transfer.

Principles of Worksheet Data File Protection

Appointed individuals at Nordic shall have access to the personal data in the worksheet data file. The data is protected with a username and password. Manual data is stored in locked cabinets.

Communication Data File of Nordic Henkilöstöpalvelut Oy

Controller

Nordic Henkilöstöpalvelut Oy, 1831904-4, (hereafter “Nordic”)

Hämeenkatu 5 A, 5th floor

FI-33100 TAMPERE

Purpose of Processing Personal Data

Personal data shall be used in the direct marketing of Nordic’s services.

Data Subjects

Individuals responsible for the acquisition of recruitment and staff leasing services.

Data Relating to Data Subjects

Basic personal data (name, title, e-mail address, phone number, address).

Regular Sources of Data

The data file shall be compiled from publicly available internet sources and other public sources.

Regular Disclosures of Data

The controller shall not disclose personal data to outsiders, except when the actions taken by the Finnish authorities demand this.

Data Removal

Data may be removed from the data file at an individual’s request or when the professional scope of responsibilities changes. Removal from the communication data file can be done by sending a message to viestinta@nordic.fi or by contacting Nordic's customer service.

Principles of Communication Data File Protection

Appointed individuals at Nordic shall have access to the personal data in the SSL-secured communication data file. The data is protected with a username and password.