Result consent

Slogan

DATA PROTECTION POLICY AND INFORMATION

The purpose of this page is to inform you about what happens to your personal data after a psychological test and why it is necessary to protect it and to make a declaration. The main reason for the declaration is that your data obtained during the psychological testing is also personal data, which you do not know in advance and will only be known when the psychological testing has been completed and sent to you by the testing service provider (in this case Assessment Systems Hungary Kft.). Accordingly, when you receive the results of the psychological testing, you must indicate whether this data can be transferred from the Service Provider to the organisation where you were asked to complete the test. This transfer is no longer automatic, but subject to your choice!

If Assessment Systems Hungary Kft (hereinafter: the Service Provider) collects personal data of the candidate/candidate (hereinafter: the User) during the psychological testing, the following provisions shall apply.

This Privacy Policy contains basic information on the handling, processing and recording of any personal data provided by the User.

Service provider: Assessment Systems Hungary Kft.
Headquarters: 1074 Budapest, Dohány utca 12-14.
Tax number: 14943720-2-42
Company registration number: 01-09-197804
Registering court: Fővárosi Törvényszék Cégbírósága

Definitions, definitions and interpretations

The terms used in the Privacy Policy shall be interpreted in accordance with the definitions set out in the interpretative provisions of Act CXII of 2011 on the Right of Informational Self-Determination and Freedom of Information (hereinafter referred to as the „Information Act“) and the definitions set out in the Terms of Use.

  • personal data: data which can be associated with the data subject, in particular the name, the identification mark and one or more factors specific to his or her physical, physiological, mental, economic, cultural or social identity, and the conclusions which can be drawn from the data concerning the data subject. It also includes information or results of psychological testing;
  • data subject: any natural person who is identified or can be identified, directly or indirectly, on the basis of personal data. This includes the User;
  • consent: a voluntary and explicit indication of the data subject’s wishes, based on appropriate information, by which he or she gives his or her unambiguous agreement to the processing of personal data concerning him or her, either in full or in relation to specific operations;
  • data processing: any operation or set of operations which is performed upon data, regardless of the procedure used, in particular any collection, recording, recording, organisation, storage, alteration, use, retrieval, disclosure, transmission, alignment or combination, blocking, erasure or destruction of data or any prevention of their further use, taking of photographs, sound recordings or images and any physical features which permit identification of a person (e.g. fingerprints, palm prints, DNA samples, iris scans);
  • data controller: the natural or legal person or unincorporated body which, alone or jointly with others, determines the purposes for which the data are to be processed, takes and implements decisions regarding the processing (including the means used) or has them implemented by a processor on its behalf;
  • data transfer: making data available to a specified third party;
  • disclosure: making the data available to anyone;
  • erasure: making data unrecognisable in such a way that it is no longer possible to recover it;
  • data processing: the performance of technical tasks related to data processing operations, irrespective of the method and means used to perform the operations and the place of application, provided that the technical task is performed on the data;
  • data processor: a natural or legal person or an unincorporated body who or which processes data on the basis of a contract with the controller, including a contract concluded pursuant to a legal provision;

Purpose of data processing

All the data provided when completing the psychological test and taking the survey (name, email address, company ID [if any], answers to the test questions) and the personality profile that resulted from the answers („personal data generated as a result of taking the personality test, indicating the job-related performance, attitudes and skills of the employee/candidate concerned“) will be collected and processed for the sole purpose of compiling reports to support recruitment, recruitment and selection and to be transmitted directly to the User or, if he/she agrees, to his/her current/potential employer. If you have completed the test during a selection process, this means your potential employer. If you have completed the test during a development process, this means your current employer.


Data storage and transfer

The Service Provider will forward the reports prepared on the basis of personal data (including sensitive data) to the current or potential employer, if the User gives his/her consent. The current/potential employer becomes the data controller and the Service Provider becomes the data processor in respect of the personal data contained in the reports; please contact your current/potential employer for further information on the use of the reports and to address any problems that may arise.

The Service Provider may transfer data to third parties in an anonymised form that does not contain personal data for additional benefit or other purposes. For data storage purposes, the Service Provider will transfer the data to Hogan Assessment Systems. Hogan Assessment Systems has contractually agreed (general data protection clauses published by European Commission Decision C[2010]593) to store this data in the manner and securely required by the European Union.

The User’s consent therefore allows the Service Provider to share the content of the report (the personal data) with the current/potential employer, who will then take the result into account when making development and/or selection decisions.

Failure to consent to the sharing of the individual competence and integrity/human security report with OTP Bank Plc, or failure to make a declaration to the Service Provider within one working day of receipt of the report, shall be deemed to constitute withdrawal of consent, with the following consequences:

  • exclusion from the selection procedure for external candidates,
  • „a circumstance giving rise to termination of employment by notice in the case of a post in human resources risk category C or precluding transfer to a post in human resources risk category C.


Data security

The Service Provider has put in place the organisational and technical measures necessary to ensure the security of personal data and to protect against unauthorised access, alteration, disclosure, disclosure, deletion or destruction, accidental destruction or damage and inaccessibility resulting from changes in the technology used. The Service Provider’s employees and other natural or other persons involved in the processing of personal data are obliged to keep personal data confidential after the termination of their employment contract or after the termination of their activities, on the basis of an agreement with the Service Provider.

Who has access to the data

The personal data provided by Users may be accessed by the Service Provider’s employees.

The Service Provider does not transfer or disclose personal data to third parties other than those indicated. This does not apply to any mandatory data transfers required by law, which may only take place in exceptional cases. The Service Provider will verify the legitimacy of each data transfer before responding to each request for data from public authorities.

Request for information on data processing

Users may request information about the processing of their personal data. Upon request, the Service Provider shall provide the User with information about the data processed by the Service Provider, the purpose, legal basis and duration of the processing, the Service Provider’s data and its activities related to the processing, as well as who has received or received the data and for what purpose.

The User may request information and the correction or deletion of his/her personal data at the Service Provider’s postal address (1074 Budapest Dohány u. 14.) or at the following e-mail address: adrienn.farkas@asystems.as

Further information options

If the User feels that he/she would like to obtain further information on the above or to know more about the aforementioned laws, he/she can find out more by following the link below:

www.njt.hu
http://www.naih.hu/jogszabalyok.html
2016/679 EU REGULATION
2010/593 EU REGULATION