1. Data Controller Information
- Name: OilGasJobs.In
- Mobile No. 91 9004048126
- Email: Oilgasjobs413@gmail.com
- Address: Thane, Maharashtra, INDIA
2. Lawful Basis for Processing
We process personal data under these GDPR Article 6 conditions:
| Purpose | Lawful Basis |
|---|---|
| Job matching | Contractual necessity (Art. 6(1)(b)) |
| Employer payments | Legal obligation (Art. 6(1)(c)) |
| Newsletter/job alerts | Consent (Art. 6(1)(a)) |
| Fraud prevention | Legitimate interest (Art. 6(1)(f)) |
3. Data Subject Rights
Under GDPR, EU users can:
- Access their data (Art. 15).
- Rectify inaccurate info (Art. 16).
- Erase data (“Right to Be Forgotten”) (Art. 17).
- Restrict processing (Art. 18).
- Data portability (Art. 20).
- Object to processing (Art. 21).
How to Exercise Rights:
Submit requests via Oilgasjobs413@gmail.com with proof of identity. We respond within 30 days.
4. Data Transfers Outside EU
If data is transferred to non-EU countries (e.g., USA), we ensure safeguards:
- Standard Contractual Clauses (SCCs) with third-party processors.
- Adequacy Decisions (e.g., EU-US Data Privacy Framework).
5. Data Protection Measures
- Encryption: SSL/TLS for all data transfers.
- Pseudonymization: Where possible (e.g., analytics data).
- Access Controls: Role-based access for staff.
- Breach Protocol: Notify authorities within 72 hours if risk is detected.
6. Data Retention Periods
| Data Type | Retention Period |
|---|---|
| Job seeker profiles | 2 years after last activity |
| Employer job postings | 5 years (for tax/legal compliance) |
| Payment records | 7 years (financial regulations) |
7. Cookies & Tracking
- Consent Banner: Blocks non-essential cookies until consent (use CookieYes or OneTrust).
- Cookie Categories:
- Necessary (exempt from consent).
- Analytics (require consent).
8. Third-Party Processors
We use GDPR-compliant vendors:
| Processor | Purpose | DPA in Place? |
|---|---|---|
| Google Analytics | Traffic analysis | Yes (SCCs) |
| Stripe/PayPal | Payments | Yes |
| AWS (Hosting) | Data storage | Yes |
9. Children’s Data
- We do not knowingly process data for users under 16 (or member state’s age threshold).
10. Updates & Compliance Monitoring
- Annual GDPR audits.
- Policy changes notified via email/site banners.