Protection of personal data

Purpose and legal basis of processing

Vinci SA and the Vinci entities, as data controllers, process personal data in order to manage applications for job vacancies published on their careers pages.

This processing is based on the legitimate interest of the data controller in setting up a recruitment process for its potential future employees.

Data collected

VINCI processes the following categories of personal data Identification: surname, first name, address, country of residence, email and telephone number(s), Applicant's education: level of study, speciality, diploma and language spoken and level, Professional experience: level of experience in the position sought, and CV and/or covering letter and/or letter of reference.

If the local regulations applicable to the position to be filled provide for it and if the candidate wishes to provide it: recognition as a disabled worker, work permit.

No personal data is collected without the candidate's knowledge, nor processed for purposes other than those described above.

Recipients of the data

This data is accessible to the persons involved in the recruitment process (duly authorised human resources personnel, possibly a recruitment firm, and operational staff for applications related to their offer), as well as to the site's technical administrators and authorised IT service providers.

Duration of storage:

This data is kept for 1 year after the applicant's last connection to his/her personal space.

Users' rights

Users have a right of access, rectification, deletion, limitation, opposition and portability that they can exercise by connecting to their "candidate space". They also have the possibility to define directives concerning the conservation, deletion and communication of their personal data after their death.

In the event of difficulty, they may contact the VINCI SA Data Protection Officer by e-mail: contact.dpo@vinci.com, or at the following postal address DPO VINCI SA / 1973 boulevard de la Défense - CS 10268 – 92757 Nanterre Cedex.

If users believe, after contacting the DPO, that their rights or the data protection rules have not been respected, they may file a complaint with the CNIL or the supervisory authority of the member state of the European Economic Area in which they usually reside or work.