Introduction
This document outlines the compliance of Brigid with the General Data Protection Regulation (GDPR) regarding the processing of personal data. By using Brigid, users expressly agree to the terms set forth in this GDPR document.
1. Data Controller
The entity responsible for the processing of personal data within Brigid is Refresh Now ltd, which is registered in Ghent, Belgium. Any inquiries or requests concerning data protection should be directed to info@brigid.app.
2. Personal Data Collected
Brigid collects and processes the following categories of personal data:
- Name
- Contact Information (Email)
- Employment Information (Position, Department, etc.)
- Skills and Competencies Ratings
3. Purpose of Data Processing
Personal data collected through Brigid is processed for the following purposes:
- Assessment and evaluation of individual skills and competencies.
- Facilitation of team management and resource allocation.
- Support for HR-related decision-making processes.
- Provision of personalized recommendations for skills development and training.
4. Lawful Basis for Processing
The processing of personal data within Brigid is based on the following lawful bases:
- Performance of a contract: Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
- Legitimate interests: Processing is necessary for the purposes of the legitimate interests pursued by the data controller or by a third party.
5. Data Sharing
Personal data collected within Brigid may be shared with the following parties:
- HR Personnel: To facilitate HR-related processes such as performance evaluation, training, and career development.
- Team Leads/Managers: To assist in team management, resource allocation, and project planning.
- Coworkers: To assist in finding help or knowledge when needed by your peers.
These parties are only the ones within your own company set in Brigid, and are not shared with other instances of Brigid or companies that use Brigid.
In case your company shares info with external parties, such as companies that offer courses, your personal info (name and e-mail) is never shared with these external parties. The info shared with the external parties is the number of coworkers in your company that either have a score on a certain skill or on an eagerness to learn this skill. We do not provide details about who these numbers are linked to any external party.
6. Data Subject Rights
Users have the following rights regarding their personal data processed within Brigid, in accordance with GDPR:
- Right to access: Users have the right to request access to their personal data and to obtain information about how it is processed.
- Right to rectification: Users have the right to request the correction of inaccurate or incomplete personal data.
- Right to erasure: Users have the right to request the deletion of their personal data under certain circumstances.
- Right to object: Users have the right to object to the processing of their personal data in certain situations.
- Right to data portability: Users have the right to receive their personal data in a structured, commonly used, and machine-readable format.
7. Data Security Measures
Appropriate technical and organizational measures are implemented to ensure the security of personal data processed within Brigid, including encryption, access controls, and regular security assessments.
8. Consent
By using Brigid, users explicitly consent to the collection, processing, and sharing of their personal data as described in this GDPR document.
9. Changes to the Privacy Notice
Any changes or updates to this Privacy Notice will be communicated to users through appropriate channels. Users are encouraged to review this notice periodically for any changes.
10. Contact Information
For inquiries or requests regarding data protection within Brigid, please contact info@brigid.app.
By utilizing Brigid, users acknowledge that they have read, understood, and agreed to the processing of their personal data as outlined in this GDPR document.