top of page

Integritetspolicy

Vi är måna om att du ska känna dig trygg med hur vi hanterar dina personuppgifter. Därför redogör Summit Search nedan för sin integritetspolicy, vilken har till syfte att säkerställa att vi hanterar personuppgifter i enlighet med EU:s dataskyddsförordning (GDPR, General Data Protection Regulation). 

Privacy & Data Protection (GDPR)

Summit Search, accessible via summitsearch.se, is operated under the legal entities Puchy Consulting AB (reg. no. 559506-0749) and Widely AB (reg. no. 559506-6837). In this Privacy Policy, the terms “Summit Search,” “we,” and “us” designate these companies. Summit Search is committed to protecting the privacy and security of personal data in accordance with the EU General Data Protection Regulation (GDPR) and applicable national data protection laws. This policy describes how we collect, process, store, and protect personal data in connection with our executive search and recruitment services. 

 

Legal Basis for Processing 

We process personal data based on one or more of the following legal grounds: 

  • Consent – when individuals have given their explicit permission. 

  • Contractual necessity – when processing is required to fulfill an agreement or take steps prior to entering into one. 

  • Legitimate interest – when processing is necessary for our business purposes, such as executive search activities, and provided that such interests are not overridden by the individual’s rights. 

  • Legal obligations – when processing is required by applicable laws or regulations. 

 

Categories of Personal Data 

We may collect and process the following types of personal data: 

  • Identification and contact details (name, email, phone number, address). 

  • Curriculum vitae (CV), career history, education, qualifications, skills, and achievements. 

  • Professional references and feedback. 

  • Interview notes and assessment results. 

  • Any additional information voluntarily provided by the candidate. 

  • We do not intentionally collect or process sensitive personal data (special categories such as health, religion, political opinions, trade union membership) unless strictly necessary and subject to explicit consent. 

 

Purpose of Processing 

Personal data is processed for the following purposes: 

  • To identify, evaluate, and present candidates for executive and specialist roles. 

  • To communicate with candidates and clients throughout recruitment processes. 

  • To maintain records of recruitment activities. 

  • To comply with legal and regulatory requirements. 

 

Data Sharing 

We may share personal data with: 

  • Clients, strictly for recruitment purposes and only with prior candidate consent. 

  • Service providers who support our operations (e.g. IT or cloud hosting providers), subject to confidentiality and data processing agreements. 

  • Regulatory authorities if required by law. 

  • We never sell or disclose personal data to third parties for marketing purposes. 
     

International Data Transfers 

If personal data is transferred outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or equivalent legal mechanisms. 

 

Data Retention 

We retain personal data only as long as necessary for the purposes for which it was collected, or as required by law. Candidates may request the deletion of their data at any time, subject to legal or contractual obligations. 

 

Data Security 

We implement appropriate technical and organizational measures to ensure the confidentiality, integrity, and availability of personal data and to protect it against unauthorized access, alteration, disclosure, or destruction. 

 

Data Subject Rights 

  • Under GDPR, individuals have the following rights: 

  • Right of access – to obtain a copy of personal data held. 

  • Right to rectification – to correct inaccurate or incomplete data. 

  • Right to erasure – to request deletion of data (“right to be forgotten”). 

  • Right to restrict processing – to limit how data is used. 

  • Right to object – to object to processing based on legitimate interest. 

  • Right to data portability – to receive data in a structured, machine-readable format. 

  • Right to withdraw consent – where processing is based on consent. 

 

Changes to this Policy 

We may update this policy from time to time to reflect changes in our business practices or legal requirements. The latest version will always be available on our website. If you have any questions or concerns about this policy or how your personal data is handled, please contact us at: 

sofia.puchy@symmitsearch.se, 070-789 5086 

yvonne.ericsson@summitsearch.se, 070-217 29 93 

bottom of page