Candidates Cookie Policy

From May 25, 2018, the European Union Regulation No. 679/2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (GDPR) applies in all EU Member States.

QUBIZ SRL (“we”, “us”, “Qubiz”) is the data controller and is committed to managing your personal data safely and solely for the purposes described in this policy.

For the purposes of this Candidate Privacy Policy, the “data subject” is you, the candidate participating in our recruitment process. This policy explains how we collect, process, and protect your personal data throughout the hiring process.

We collect only the personal data necessary to evaluate your candidacy in a fair and transparent recruitment process. This section outlines the types of data we process and how we obtain them.

We collect personal data directly from you when you submit your CV (or link to LinkedIn profile) or participate in the recruitment process. We may also collect data from:

• Public sources (e.g., professional networks such as LinkedIn)
• Reference checks provided by third parties (as permitted by law)
• Interview process (additional data you provide during the interview)

We only process data for recruitment purposes.

Categories of personal data:

• Identification data: name, surname
• Contact data: phone number, email, address
• Professional life & qualifications: education, diplomas, job history, previous employers, career objectives, etc.
• Interview notes: candidate evaluation, internal notes
• References from third parties: recommendations
• Criminal record: as permitted by law
• Sensitive data: We do not intend to process sensitive data (e.g., health information, religious beliefs). Please avoid including such data in your CV, unless necessary for the interview process, with appropriate accommodations.

We process your personal data, including your CV, professional profiles such as LinkedIn, and interview notes, based on our legitimate interest to maintain a pool of candidates for current and future IT opportunities; your consent, where required; pre-contractual obligations in relation to specific job applications; and for the purpose of defending legal claims if necessary.

We collect and use your personal data solely to manage the recruitment process in a lawful and transparent manner. This section explains why we process your data and how long we retain it.

• Recruitment: Your data will be used exclusively for evaluating your candidacy.
• Successful candidates: Data will be further processed by the HR Administrative Department for employment purposes and retained according to local legislation.
• Unsuccessful candidates: Data may be retained for future hiring opportunities (talent pool), within a limited timeframe.
• Legal defence: Data may be retained for up to 6 months to protect the company against complaints.

We take the security and confidentiality of your personal data seriously. This section explains to whom your data may be disclosed and how we protect it.

We may disclose personal data to third parties when necessary for legitimate purposes, including:

• IT service providers (maintenance & security)
• Lawyers, auditors, external consultants

Access to personal data by these third parties is strictly limited to what is necessary for these purposes, and they are required to process the data in accordance with GDPR and our confidentiality requirements.

Access to personal data within QUBIZ is also strictly controlled and regularly reviewed. Staff who may access your data includes:

• HR department (coordination and communication)
• Technical staff conducting technical interviews
• QUBIZ management

We implement ISO 27001 information security standards to ensure confidentiality, integrity, and availability of your data.

• Right to withdraw consent: You may withdraw your consent to the processing of your personal data at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
• Right to object to processing: You may object to the processing of your personal data where it is based on legitimate interests or legal obligations other than consent. If you object, we will stop processing your personal data unless we demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms.
• Right of access: You have the right to request confirmation of whether we process your personal data. You may also request access to the personal data we hold about you, including details of the purposes, categories of data, recipients, and retention periods.
• Right to rectification: You may request the correction of inaccurate or incomplete personal data concerning you. We will update or correct your data without undue delay.
• Right to restrict processing: Under certain circumstances, you may request that we limit the processing of your personal data. In this case, your data will only be stored and will not be used for other purposes until the restriction is lifted.
• Right to erasure (“right to be forgotten”): You may request that we delete your personal data when it is no longer necessary for the purposes it was collected, if you withdraw consent, or if the processing is unlawful. Exceptions may apply, for example, to comply with legal obligations.
• Right to data portability: You may request a copy of your personal data in a structured, commonly used, and machine-readable format, and where technically feasible, ask us to transmit it to another data controller. This right applies in limited situations.
• Right to lodge a complaint: If you consider that your personal data has been processed unlawfully, you have the right to lodge a complaint with the competent Data Protection Authority ANSPDCP (www.dataprotection.ro).

SC Qubiz SRL
1 Facliei Street, 410181, Oradea, Romania
Email: dpo@qubiz.com

Last updated: January 21, 2026