Schiphol Nederland B.V. ('Schiphol') attaches great importance to the protection of your privacy. Through this privacy statement, Schiphol aims to be transparent about how it handles the personal data it receives when you apply through the website careers.schipholgroup.com, www.werkenbijschiphol.nl, or www.werkenbijschipholgroup.nl or otherwise make use of the services offered through those websites.
2. What personal data do we process?
The following personal data is processed through the website careers.schipholgroup.com:2.1. Application data
As a visitor of our website careers.schipholgroup.com, www.werkenbijschiphol.nl, or www.werkenbijschipholgroup.nl, if you provide us with your information, it is because you are interested in applying for a job or internship at Schiphol Group. This is done by completing an application form in which you provide the following details for processing: first name, last name, phone number, email address, LinkedIn profile (optional), CV (sometimes required), and motivation letter (sometimes required). You can also upload your CV and motivation letter documents. It is also possible to apply through a video message.
2.2. Job alert/newsletter
Through the website careers.schipholgroup.com, www.werkenbijschiphol.nl, or www.werkenbijschipholgroup.nl, you can indicate that you would like to receive a job alert. If you choose to receive a job alert for vacancies and other information, such as blogs or interviews in your areas of interest, we will store your email address and any specified search criteria. For setting up a job alert, we process the following data: name, email address, your search criteria, and the chosen frequency to receive the job alert.
2.3. Website data
The Schiphol web server automatically collects IP addresses. Your IP address is a number through which the network can identify your computer, allowing data (such as web pages) to be sent to your computer.
For most positions within Schiphol, a "Verklaring Geen Bezwaar" (Statement of No Objection) is required. For some positions, a "Verklaring Omtrent Gedrag" (Certificate of Good Conduct) is sufficient.
3. Why do we process your data?
3.1. Application data
Schiphol Group uses the personal data of applicants for recruitment and selection purposes. We have a legitimate interest in processing the personal data for this purpose. We do not use your data for any other purposes.
If you have explicitly given consent during the registration process, Schiphol may retain your data for a maximum of 1 year after the completion of the selection procedure.
3.2. Job alert/newsletter
Schiphol Group only uses your personal data to send you job alerts and relevant information in your areas of interest. You have given your consent for this. We do not use your data for any other purposes.
4. How long do we retain your data?
4.1. Application data
Schiphol Group will delete your data 4 weeks after the closure of the application procedure. If you have given consent during the registration process (via the designated option in the application form), we will retain your data for one year after the completion of the application procedure. After that, we will delete your data unless you indicate that we may keep your data for one additional year for future relevant vacancies.
4.2. Job alert/newsletter
We will delete your data once you indicate that you no longer wish to receive job alerts.
4.3. Website data
We delete website data once your visit to the website is concluded.
5. Who do we share your data with?
On behalf of Schiphol, our software provider (SteamTalmark) processes the personal data. Hosting services are provided by Sentia.
It is possible to exchange data with Schiphol Group via social media, including LinkedIn and WhatsApp. We would like to draw your attention to the following:
For user registration and message sending, (account) data is exclusively processed through the services of WhatsApp and LinkedIn. Schiphol Group does not store or further process the (account) data.
Other than that, your data is not shared with third parties.
6. Do we process personal data outside the European Economic Area?
SteamTalmark and Sentia primarily process personal data within the European Economic Area.
7. What are your rights?7.1. Access, rectification, and erasure of your personal data
You have the right to know what personal data Schiphol processes about you. If we did not directly receive this data from you, you have the right to know its source and receive a copy of it.
If it turns out that your personal data is incorrect, you can request us to modify your data. You can also request us to delete your personal data and cease its use. You can do this yourself in your personal candidate portal.
If we process your personal data based on your consent and there is no other legal basis for processing when you withdraw this consent, we will always comply with your request for erasure. In some cases, we may refuse your request.
7.2. Restriction of processing and right to data portability
If you believe that we are processing your data incorrectly, you can request to restrict the processing.
You can also request us to transfer your digital personal data in a readable and usable format to you or another party.
7.3. Right to object
In addition to a request for erasure or restriction of processing, you can also object to the processing of personal data by Schiphol Group. This can primarily be done if you disagree with Schiphol using your personal data for direct marketing purposes (e.g., profiling).
Secondly, you can object to the use of your personal data based on your specific situation. If you object, we will generally temporarily stop or restrict the processing of your personal data. If your objection is upheld, we will permanently stop or restrict the processing. 7.4. Your request and our response
Do you have a question, request, or want to object? Send an email to our Data Protection Officer (DPO) at firstname.lastname@example.org. We strive to respond to your request promptly.
If necessary to confirm your identity, we may ask you to provide a copy of a valid identification document. You can find instructions on how to make a secure copy on the website of the Dutch government: https://www.government.nl/topics/identity-fraud/question-and-answer/making-a-secure-copy-of-your-id.
If we find your request unclear, we may ask you to specify or supplement it so that we can assist you to the best of our ability.
8. Who is the owner of this privacy statement, and how can you reach us?8.1. Who is the data controller?
This privacy statement is from Schiphol Nederland B.V. The contact details of Schiphol are:
Schiphol Nederland B.V.
1118 ZG Schiphol8.2. Do you want to contact our DPO?
If you have questions or requests regarding your data, you can email the DPO at email@example.com or send a letter to our postal address, attention to the Data Protection Officer. Please provide your name, address, email address, and phone number in your request.
9. Filing a complaint with the Dutch Data Protection Authority
If you are not satisfied with how we handle your privacy or the handling of your request or objection, you can file a complaint with the Dutch Data Protection Authority: https://autoriteitpersoonsgegevens.nl/nl/contact-met-de-autoriteit-persoonsgegevens/tip-ons.
10. Where can you find the latest version of this privacy statement?
We may update this privacy statement if necessary. This could be the result of policy changes, changes in data processing, or changes in the systems we use to process data.
This version is from May 2023.