Who are we?
Securex Group asbl, part of the economic entity Securex Group, hereinafter Securex, with its registered office in Belgium, at 1040 Brussels, Avenue de Tervuren 43, VAT BE0419.678.319, RPM Brussels, reachable by phone at +32 2 729 92 11 and by email at info@securex.be.
Securex is an international player in the field of social administration and HR for individuals, start-ups, self-employed persons, SMEs and large companies. As a full-service HR partner, we focus on the well-being and talent of employees, collaborators, clients and self-employed persons. Sustainable employability is important for everyone. That is why we develop various solutions to support stakeholders preventively and proactively.
Securex also develops and manages various HR management solutions that help entrepreneurs and companies and their employees streamline and support their main HR processes.
This document concerns the processing of your personal data when you visit our job site, when you provide us with personal data as a candidate for an open vacancy or for a spontaneous application, or when we obtain your data via a third party as a potential candidate for a position.
Purpose of processing personal data
Securex attaches great importance to the protection of your personal data and to your feedback.
Personal data is processed by Securex in accordance with the European Regulation (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter GDPR), following your visit to our job site or your application to strengthen one of our teams of enthusiastic professionals in the realization or support of our services to our clients.
Your personal data is processed for the following purposes:
- Recruitment & selection: finding and hiring suitable experts and/or professionals, going through the entire recruitment process and preparing onboarding
- Insight into competencies: gaining insight into skills, requirements, professional interests and expectations of candidates
- Screening & matching: screening, evaluating and selecting candidates to assign the right expert or professional to the right assignment and/or position
- Recruitment pool: creating a pool of candidate experts and professionals interested in becoming an employee of Securex (only with your explicit consent)
- Communication about vacancies: contacting you if we think an open vacancy or position might be of interest to you
- Security and abuse prevention: monitoring the use of applications or platforms to prevent abuse and ensure the reliability and security of our services
- Quality improvement: possibly asking you about your experiences with our services and processes to further develop and improve our communication, services and recruitment process
- Reporting and statistics: for internal reporting and statistical purposes, with data anonymized as much as possible.
Legal basis for processing
The performance of a contract or taking steps at your request to enter into a contract is the legal basis for processing your personal data for the following activities:
- Assessing your CV and cover letter
- Communicating about selection criteria and the actual recruitment procedure
- Organizing and conducting interviews and assessments
The legal basis for processing your personal data is based on Securex's legitimate interest to:
- Retain your data to create a recruitment pool
- Organize, manage, protect and improve its business operations optimally
- Analyze and improve the use of its sites, applications and processes
- Assist candidates in developing their professional activities and match the needs and expectations of the parties involved
If certain data must be processed to comply with a legal obligation, this may also constitute the legal basis for processing your personal data. For example, to check work permits or when certain vacancies require compliance with legal requirements and certificates, recognitions or diplomas must be processed.
When a contract is concluded between you and Securex, we will also process your personal data in the execution and follow-up of the contract and the legal obligations associated with it.
Categories of data subjects
Securex processes personal data of candidate employees of Securex, of candidates effectively interested in certain positions or of general candidates, following a spontaneous application.
Your personal data may be provided directly by yourself or indirectly by another organization or partner that supports us in the search for a suitable profile. We may also have collected your data in our search for potential candidates and experts, based on information we find online through your use of social media or other platforms or publicly available sources to then contact you for a specific vacancy.
Categories of data processed
Securex processes or may process, among others, the following data in the context of recruitment and selection:
- Personal identification data (first and last name, date of birth, etc.)
- Contact details (address, phone number, email address, etc.)
- Education and professional data (career, employer(s), position(s), experience, references, etc.)
- Data relating to expectations (contract, remuneration, etc.)
- Results of tests, screenings and assessments
- Judicial data: if there is a legal obligation for a vacancy, e.g., clean criminal record
Retention period of data
Securex does not retain your personal data longer than strictly necessary for the processing purposes and/or as long as required by law. Without an actual contract or assignment, we may retain your personal data up to 2 years after our last meaningful contact. If a contract was concluded, your personal data related to this contract will be retained up to 10 years after the termination of the last contract.
Confidentiality and data protection
In accordance with applicable legislation, Securex ensures an appropriate level of protection for personal data. These measures include the technical and organizational measures necessary to protect personal data against accidental or unauthorized destruction, accidental loss, as well as against alteration, access and any other unauthorized processing of personal data.
Securex nevertheless points out that no security system can guarantee 100% security. However, you can always contact us for any questions about the confidentiality and security of your personal data.
Recipients of data
Your personal data is only processed and shared with employees who are authorized for this and have a direct role in the recruitment and selection process, depending on the intended purposes.
Certain of your personal data may be passed on to subcontractors who provide certain services in the strict context of a subcontracting contract and solely for the purpose of providing Securex with the necessary technical assistance.
Your personal data may also be passed on to the HR department or to a manager of another legal entity of the Securex economic group when this is necessary or useful for Securex, in preparation for or in execution of an assignment or contract, and only when this can be to your advantage.
Unless otherwise agreed, your data is never shared with clients, prospects or other third parties.
In exceptional cases, Securex may also have to pass on certain personal data to supervisory authorities, to our lawyers, to our experts or to judicial authorities.
Transfer of data to third countries
Securex does not transfer personal data outside the European Economic Area.
If a data transfer to a country outside the EEA should nevertheless be necessary for the performance of services or to ensure continuity, Securex or the relevant subcontractor will take appropriate safeguards in accordance with data protection legislation and ensure that enforceable rights and effective remedies are available to the data subjects.
To guarantee enforceable rights and effective remedies for the data subjects, processing and transfer can only take place under one of the following conditions:
- The transfer is to countries offering an adequate level of protection based on adequacy decisions of the European Commission
- The transfer is to a (sub-)processor subject to Binding Corporate Rules guaranteeing an appropriate level of protection
- The transfer is to a (sub-)processor with which a model agreement provided by the European Commission has been concluded (Standard Contractual Clauses, cf. (EU) 2021/914 of 4 June 2021) and where a prior risk analysis has also been carried out. The contractual provisions and any additional measures after a prior risk analysis or data transfer impact assessment must then provide the necessary guarantees regarding data protection.
If there are no appropriate safeguards regarding the level of protection, Securex will not (nor have others) transfer personal data to such third countries, unless with the consent of the data subject.
Your rights
You can access the data processed by Securex Outsourcing and have it corrected by means of a dated and signed request, accompanied by a copy of the front of your identity card, sent by email to privacy@securex.eu or by post to Securex Group, Data Protection Officer, Avenue de Tervuren 43, 1040 Brussels.
You can also, under the same conditions and within the limits set by the GDPR, object to the processing or request that it be restricted. You can also request that your data be deleted or transferred. More information can be obtained at the same address.
If you believe that a breach has been committed regarding the processing or your rights, you can file a complaint with the Data Protection Authority.