sourcingNOW » privacy policy

1. General Information

SourcingNOW Sp. z o.o., with its registered office in Warsaw (00-105), at ul. Twarda 18, entered into the National Court Register kept by the District Court for the Capital City of Warsaw in Warsaw, 12th Commercial Division of the National Court Register under number 0001152815, holding NIP 5253033009 and REGON 540777800, as the data controller (DC), pays special attention to respecting privacy and protecting personal data entrusted to it by users, candidates, employees, and business partners.

We want you—as the data subject—to know how SourcingNOW Sp. z o.o. collects, uses, processes, stores, and potentially shares your personal data. We also want you to know your rights under applicable national and EU data protection laws.

We encourage you to read this Privacy Policy, which describes our data protection practices. This document may be updated—any changes will be published on the Company's website.

SourcingNOW Sp. z o.o. provides professional recruitment services, supports clients in acquiring suitable candidates, and fosters the career development of job seekers.

Our priority is to operate in a lawful, reliable, and transparent manner—particularly in the area of data protection—in accordance with the provisions of the GDPR and applicable national law.

This Privacy Policy outlines the rules for processing and protecting personal data by SourcingNOW Sp. z o.o. (hereinafter: the “Company”, “Controller”), especially in connection with the use of services provided electronically, recruitment processes, and other forms of cooperation with individuals. The Company ensures that data processing complies with the provisions of:

Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR),
The Personal Data Protection Act of May 10, 2018.

2. Data Controller

The personal data controller is SourcingNOW Sp. z o.o., with its registered office at ul. Twarda 18, 00-105 Warsaw, entered into the National Court Register under number 0001152815, NIP: 5253033009, REGON: 540777800.

Contact:e-mail: kontakt@sourcingnow.pl tel.: +48 791 337 260

3. Purposes and Legal Bases of Data Processing

Personal data may be processed by the Controller for the following purposes:

3.1. Fulfillment of legal obligations, including labor, tax, and insurance regulations.Legal basis: Art. 6(1)(c) GDPR

3.2. Execution of contracts and provision of electronic services, including communication regarding order processing, handling inquiries, and ensuring proper functioning of the service.Legal basis: Art. 6(1)(b) GDPR

3.3. Conducting recruitment activities, such as:

assessing candidates' qualifications,
verifying competencies and job fit,
conducting selection processes.Legal basis: Art. 6(1)(a) GDPR (candidate's consent)

3.4. Marketing activities (including e-mail marketing of the Controller’s products and services).Legal basis: Art. 6(1)(a) GDPR (consent)

4. Scope of Processed Data

The Controller processes personal data in the following scope:

Job Candidates:

identification and contact data (name, surname, e-mail address, phone number, home address),
education and professional experience,
qualifications, training, interests,
work permit information, interview notes.Special categories of data (if provided):
disability status,
nationality.

Employees:

personal, address, and contact details,
PESEL, ID document data,
banking, tax, and insurance information,
health data (e.g. medical leave, pre-employment/periodic exams),
leave, performance, and employment history.

Other stakeholders (e.g. contractors, service providers):

contact details,
identification data (NIP, REGON),
banking data,
ID data (in case of sole proprietors).

5. Voluntariness and Data Retention Period

5.1. Voluntariness of Data ProvisionProviding personal data is voluntary but necessary for contract conclusion and execution, participation in recruitment, or receiving marketing information.

5.2. Data Retention Period

Data processed based on legal obligations – until the obligation is fulfilled.
Data processed in connection with a contract – until its completion, expiration, or termination.
Data processed based on consent – until the consent is withdrawn, but no longer than 9 years from the date of its granting.

5.3. Withdrawal of ConsentConsent can be withdrawn at any time without affecting the lawfulness of processing based on consent before its withdrawal.

6. Data Recipients

Personal data may be shared with:

the Company’s clients for recruitment services,
IT, cloud, accounting, and consulting service providers,
public institutions (e.g. ZUS, tax office, labor inspectorate),
other entities processing data under data processing agreements.

If data is transferred outside the European Economic Area (EEA), appropriate safeguards are applied, in particular, EU standard contractual clauses.

7. Data Subject Rights

Every individual has the right to:

access their data and receive a copy,
rectify or supplement the data,
delete the data (if there is no legal basis for further processing),
restrict processing,
object to data processing (including for marketing purposes),
transfer data to another controller,
lodge a complaint with the President of the Personal Data Protection Office (PUODO).

Requests concerning these rights may be sent to the contact details provided in point 2.

8. Data Security

The Controller applies appropriate technical and organizational measures to ensure the security of processed data, especially protecting it from unauthorized access, alteration, loss, or destruction.

8.1. SourcingNOW Sp. z o.o., as the Data Controller (DC), implements adequate technical and organizational measures appropriate to the threats and categories of protected data. Data is protected from unauthorized access, loss, unauthorized disclosure, destruction, or alteration. In particular, measures include SSL encryption for data transmission and internal data protection policies and information security procedures.

8.2. All user data collected through the Service is stored on secure, protected servers, accessible only to authorized individuals with credentials granted by the DC.

8.3. Communication between the user's device and the Service is secured using SSL protocol encryption.

8.4. The Controller highlights that using the Internet, especially open Wi-Fi networks, may carry risks such as malicious software (spyware, malware, viruses), phishing, or cracking. To increase security, SourcingNOW Sp. z o.o. recommends using security solutions offered by specialized IT providers.

9. Cookies

9.1. To ensure proper functioning of the Service, and for statistical and analytical purposes, SourcingNOW Sp. z o.o. uses Cookies technology.

9.2. Cookies are small text files stored on the User's end device, which may contain data such as domain name, storage time, identifier, and other information depending on the file’s purpose.

9.3. The Service uses two types of Cookies:

Session cookies – automatically deleted after closing the browser;
Persistent cookies – stored on the end device until manually deleted or expired.

9.4. Cookies used by the Service do not allow for User identification. Their mechanism is not intended to collect personal data or install malicious software.

9.5. Cookies created by the Service are not accessible to other websites. External cookies may be placed by partners of the DC (e.g. Google Analytics) and may be read by their servers.

9.6. Users can change their browser settings at any time to block or limit Cookies. Saved Cookies can also be manually deleted.

9.7. Disabling or limiting Cookies may affect the functionality of some parts of the Service or make them unavailable.

9.8. The Controller’s own Cookies are used especially to:

authenticate and maintain the user session;
tailor site content to User preferences;
analyze viewership and user behavior (e.g. navigation paths, number of clicks, time spent on the Service) to optimize its structure and content.

10. Changes to the Privacy Policy

The Controller reserves the right to amend this Privacy Policy. The current version will always be available on the Company’s website.

Jeśli chcesz, mogę też przygotować wersję do edytowania w Wordzie lub PDF.