Privacy Policy

Our commitment

SoftApp is committed to protecting all personal information that we hold, and to maintaining a system that meets our obligations under GDPR.

This is an important notice regarding your privacy and the way in which SoftApp BV (referred to as “we”, “our” or “us” in this policy) collects and makes use of your personal data. We want to be transparent and open with you, and encourage you to contact us if you have any questions.

Data Controller

For the purpose of applicable privacy legislation, the data controller is SoftApp BV, registered in The Netherlands under chamber of commerce nr. 66811120 with an office at Hoogstraat 58, 5271 XB Sint-Michielsgestel.

Questions regarding this policy should be directed to our Data Protection Officer at security@callerconnect.io.

What information we hold

We may collect, store and use the following categories of personal information:

• Applicants — personal contact details (name, title, address, telephone, date of birth, email), recruitment information (passport/visa, CV, cover letter), and information provided to us by recruitment agencies.
• Employees of clients and suppliers — contact details (name, business address, telephone, email) and information you or your employer provide during our interactions.
• Individual customers — personal contact details (name, address, telephone, email).
• Generally — any personal information you provide via our website (e.g. via the contact form), information shared via email, third-party service providers (analytics, payment), and cookies.

How we use it (and the legal grounds)

We will only use your personal information when the law allows us to. The legal grounds we rely on:

• Where you have provided consent;
• Where we need to perform a contract with you (or take steps to enter into one);
• Where we need to comply with a legal obligation;
• Where it is in pursuit of our legitimate interests and your interests and fundamental rights do not override them.

More specifically:

Applicants

To evaluate your application (contractual / legitimate interests), keep a record (legitimate interests, in case we wish to offer you another role), and carry out right-to-work checks (legal obligation).

Employees of clients and suppliers

To facilitate business, keep you informed about products and services, deal with enquiries, manage customer accounts, and provide our services — all in pursuit of legitimate interests.

Individual customers

To perform our contract with you (or take steps toward one), deal with enquiries, share product/service information, and provide our services.

Generally

To keep our premises secure, meet health and safety obligations, administer our website, troubleshoot, conduct internal analytics, improve our services, and transfer to third-party service providers where necessary.

If we need to use your personal information for a purpose unrelated to the original, we will notify you and explain the legal basis.

Who we may share it with

We require third parties to respect the security of your personal information and to treat it in accordance with the law. Categories include:

• Recruitment partners (agencies, job boards)
• Professional advisers (lawyers, accountants, business analysts)
• Marketing service providers
• Live-chat / enquiry providers
• Disaster recovery and backup providers
• Information management providers
• Software / hosting / data-centre providers
• Payment and fraud-prevention providers
• Accreditation and audit boards (e.g. for ISO certification)

How long we keep it

We retain personal information only as long as necessary for the purposes we collected it for and to comply with legal obligations.

• Unsuccessful applicants — up to 6 months
• Successful applicants — covered by employment terms
• Clients & suppliers (general) — for as long as the business relationship continues, or while we have a legitimate commercial interest
• Marketing consent — for as long as we hold your consent
• Bank account details — up to 1 year
• Report-request data — up to 6 years
• Cookies — duration set out in our cookie policy

Where we store it

Electronic versions of your personal information are stored within Microsoft and other accredited service providers, all bound by contracts that require them to respect your personal information and to treat it in accordance with the law. (See sub-processors below.)

Your rights

Under certain circumstances, by law you have the right to:

• Request access to your personal information (“data subject access request”).
• Request correction of incomplete or inaccurate information.
• Request erasure where there’s no good reason for us to continue processing.
• Request restriction of processing.
• Request transfer of your personal information to another party.

To exercise any of these rights, email security@callerconnect.io. We will respond without undue delay and within 30 days at the latest. We may need to confirm your identity before completing a request.

You will not have to pay a fee, except in clearly unfounded or excessive cases.

Right to withdraw consent

Where we rely on consent, you have the right to withdraw it at any time. Email our Data Protection Officer to do so. For marketing emails you can also use the unsubscribe link.

Once consent is withdrawn, we will no longer process your information for that purpose unless we have another legitimate basis.

Right to complain

You have a right to make a complaint with the Dutch DPA, Autoriteit Persoonsgegevens, if you believe your rights have been infringed.

Changes to this policy

We may change, modify, add or remove portions of this policy at any time, and any changes will become effective immediately. Material changes will be posted on this page and, where appropriate, notified to you.

Sub-processors

SoftApp uses cloud-based applications in the day-to-day operations of its business. Customer Protected Data may be stored in these applications:

• Microsoft — Azure services
• Iron Mountain Data Centers
• Whitesky.cloud
• I3D