We are delighted at your interest in our work and that you would like to apply for a position in our clinic or have already done so. We attach considerable importance to compliance with data protection regulations. The clinic collects, processes and uses the personal data obtained during the application procedure in order to manage your application. Below you will find information on how we process your personal data in accordance with the GDPR:
Contact details for the controller
Städtisches Klinikum Görlitz gGmbH
Girbigsdorfer Straße 1 – 3, 02828 Görlitz;
Kindly visit our website for more information about our clinics, details of authorised representatives and other opportunities to contact us: www.klinikum-goerlitz.de
Contact details for the data protection officer
RPM Datenschutz UG (haftungsbeschränkt)
Struve Str. 15, 02826 Görlitz
Purposes of processing
We will only process the data you provide for the purposes of managing the application procedure. The clinic stores and processes your data in accordance with the valid data protection regulations. Applications that we receive by post or email are collected and processed for the application procedure. We need to collect your personal details to ensure proper administrative processing of your application.
Categories of personal data that are processed
Application documents that we receive by post or email are collected, stored and processed in order to recruit a successful candidate. Applicants who have applied by email will receive email confirmation that their application has been received at our clinic. We collect, process and use the following personal data:
- Personal details (salutation, title, first name, surname, gender, place of birth, nationality)
- Address details (street, house number, post code and town/city)
- Communication details (landline number, mobile telephone number, email address)
- School and professional education
- Proof of qualification (references, certificates, other qualifications)
- Clearance certificate if necessary for the stated professional position.
We also process and use special categories of personal data, in particular religious affiliation, disability status and marital status where this is necessary for compliance with legal requirements or is required for our decision on or organisation of the establishment of an employment relationship.
Legal basis/legitimate interest
The legal basis for the processing of your personal data in this application procedure is primarily Section 26 Federal Data Protection Act (BDSG) as amended. It states that processing of data is permissible if it is necessary in connection with the decision on establishing an employment relationship. Where the data is necessary after the end of the application procedure, for instance to take legal action, data processing may continue on the basis of the requirements set out in Art. 6 GDPR, in particular in the pursuit of legitimate interests according to Art. 6 para. 1 point f) GDPR. In this case, our interest is in the exercise or defence of claims.
For how long will the data be stored?
Your personal data will be stored until the end of the application process and for 7 months thereafter and then erased.
If you have been awarded a position as part of the application process, the data from the applicant database will continue to be processed in our HR information system.
In the case of unsolicited applications, your data will be stored with your consent for a maximum of 36 months.
To which recipients will the data be transferred?
Recruitments take place in cooperation with the HR department, the competent technical departments, their departmental heads and the works council if necessary. After receipt, your applicant data will be reviewed by the HR department and the relevant departmental head to assess your suitability for the vacant position. The further procedure is then coordinated. In our clinic, only persons will be authorised to access your data if they require this access for the orderly management of our recruitment procedure.
How do we protect your personal data?
Your data is encrypted in the interests of security during transfer via the internet or by email. Numerous security precautions have been implemented to protect your data and prevent its misuse by third parties. Measures such as firewalls, anti-hacking programs and manual security precautions are applied. Our employees – as well as the third parties involved in data processing (external service providers) and our other contractual partners – are obliged to maintain data secrecy.
Where is the data processed?
The data is processed exclusively on the territories of the Federal Republic of Germany.
What are your rights?
You have the right to obtain information about the personal data we process concerning you. In the event of a request for information that is not made in person, we must ask for your understanding that we may then require you to provide evidence to substantiate that you are the person you claim to be. Furthermore, you have the right to the rectification or erasure of personal data, as well as the right to obtain restriction of processing, provided the legal requirements are satisfied. Furthermore, you have the right to object to processing within the scope of the defined legal requirements. This applies also to your right to data portability.
Kindly address your objection, request for information or unanswered questions by post to the HR department at
Städtisches Klinikum Görlitz gGmbH,
Girbigsdorfer Str. 1-3,
by email to firstname.lastname@example.org.
Right to lodge an objection with a supervisory authority
You have the right to lodge an objection with the supervisory authority if you believe that the processing of your data infringes data protection law. The competent supervisory authority in the Free State of Saxony is:
Commissioner for Data Protection and Freedom of Information in the Free State of Saxony; Postfach 11 01 32; 01330 Dresden; www.saechsdsb.de.
Version: October 2019