1. Introduction
Menity Group s.r.o. respects your privacy and handles personal data with the discretion expected in executive search and leadership advisory.
This Privacy Policy explains how we collect, use, store and share personal data when you visit our website, contact us, engage with us as a candidate, client, business contact or other professional contact, or when we process your data in connection with our executive search and advisory services.
For the purposes of this Privacy Policy, the data controller is:
Menity Group s.r.o.
Na Strzi 1702/65
140 00 Praha 4
Czech Republic
Company ID: 24817228
Email: privacy@menity.com
Website: www.menity.com
We process personal data in accordance with the EU General Data Protection Regulation, including the transparency duties under Articles 13 and 14 GDPR, depending on whether we collect data directly from you or from other sources.
Our handling of personal data is also guided by the Menity Code of Conduct, which defines how we protect confidentiality, candidate consent and the integrity of senior mandates.
2. Who this Privacy Policy applies to
This Privacy Policy applies to personal data we process about:
-
candidates and potential candidates;
-
client representatives and prospective client representatives;
-
business contacts, partners and professional contacts;
-
visitors to our website;
-
people who contact us through our website, by email, phone, LinkedIn or other professional channels.
This Privacy Policy does not apply to third-party websites, platforms or services that may be linked from our website.
3. Personal data we process
We process only personal data that is relevant to our work and the purpose for which it was collected.
3.1 Candidate and executive search data
In connection with executive search, leadership advisory and related services, we may process:
-
name and contact details;
-
current and previous roles;
-
employer history and career information;
-
education, qualifications and professional credentials;
-
CV, biography, LinkedIn profile or other professional profile data;
-
publicly available professional information;
-
interview notes and assessment observations;
-
compensation expectations or related remuneration information, where relevant to the mandate and provided lawfully;
-
references, where provided or lawfully obtained;
-
information shared with us by you, by a client, by a referral source, or from publicly available professional sources.
We do not seek to collect personal data that is excessive or unrelated to the mandate, advisory process or professional relationship.
3.2 Client and business contact data
Where you are a client, prospective client, business partner or professional contact, we may process:
-
name;
-
job title;
-
company or organisation;
-
professional contact details;
-
communication history;
-
meeting notes and business context;
-
information relevant to an existing or potential business relationship.
3.3 Website and enquiry data
When you visit our website or contact us through the website, we may process:
-
name and contact details, if you submit them;
-
the content of your message;
-
technical information generated by your visit to the website;
-
basic website analytics data provided through Wix Analytics.
4. Where we collect personal data from
We may collect personal data:
-
directly from you;
-
from clients in connection with an executive search or advisory mandate;
-
from referrals and professional recommendations;
-
from publicly available professional sources, such as company websites, public registers, LinkedIn or other professional platforms;
-
from correspondence, meetings and interviews;
-
through our website and Wix Analytics.
Where we obtain personal data from sources other than you, we provide the required privacy information in line with Article 14 GDPR, unless an exception under GDPR applies. In practice, this will usually happen when we first contact you.
5. Why we process personal data and our legal basis
We process personal data only where we have a lawful basis to do so.
We process candidate data to identify, approach, assess and present suitable candidates for executive search mandates and related advisory work.
Legal basis: legitimate interests, pre-contractual steps where relevant, and consent where we specifically ask for it or where it is required by law.
Our legitimate interest is to provide executive search and leadership advisory services, to identify relevant senior talent, and to assess professional suitability for specific leadership roles.
5.1 Executive search and candidate assessment
Where appropriate, we may retain candidate data in our internal talent records for future relevant opportunities.
Legal basis: legitimate interests, unless consent is required in a specific situation.
Our legitimate interest is to maintain professional candidate relationships and consider individuals for future executive search mandates that may be relevant to their background.
You may object to this processing at any time.
5.2 Candidate relationship and future opportunities
We process client and business contact data to communicate with clients, manage mandates, provide our services, develop business relationships and maintain professional records.
Legal basis: contract, pre-contractual steps and legitimate interests.
5.3 Client relationship management
If you contact us, we process your data to respond to your enquiry and communicate with you.
Legal basis: legitimate interests, pre-contractual steps or consent, depending on the nature of the enquiry.
5.4 Responding to enquiries
We process limited technical and analytics data to operate, secure and improve our website.
Legal basis: legitimate interests and, where required, consent through the relevant cookie or consent settings.
We currently use Wix Analytics for website analytics.
5.5 Website operation and analytics
We may process personal data where necessary to comply with legal obligations, protect our rights, respond to lawful requests, maintain records, or resolve disputes.
Legal basis: legal obligation and legitimate interests.
5.6 Legal and compliance purposes
6. AI-assisted processing
Menity may use AI-assisted tools to support parts of our executive search work, including CV screening, summarisation, structuring of information and preliminary candidate analysis.
AI tools are used only as a supporting instrument.
We do not make hiring, shortlist or candidate suitability decisions solely by automated means. Final assessment, judgement and recommendation remain human-led and partner-reviewed.
This means that AI may help us organise or analyse information, but it does not replace professional judgement. Individuals have the right not to be subject to decisions based solely on automated processing where such decisions produce legal or similarly significant effects, as provided under Article 22 GDPR.
7. Special categories of personal data
We do not intentionally request or actively collect special categories of personal data, such as health data, biometric data, political opinions, religious or philosophical beliefs, trade union membership, racial or ethnic origin, sexual orientation, or similar sensitive information.
If you provide such information to us voluntarily, we will process it only where lawful and necessary for the relevant purpose. Where it is not necessary, we may delete or disregard it.
Please do not send us sensitive personal data unless it is strictly necessary and relevant to your communication with us.
8. Who we share personal data with
We share personal data only where necessary, proportionate and supported by a valid legal basis.
We may share personal data with:
-
clients in connection with an executive search or advisory mandate;
-
trusted service providers who support our website or systems;
-
public authorities, courts or regulators, where legally required;
-
other parties where you have instructed us or where disclosure is legally permitted.
Candidate information is shared with clients only where relevant to a specific mandate or advisory process, and only to the extent necessary.
We do not sell personal data.
9. Service providers and processors
We use selected third-party service providers to support our business operations. These may include providers of:
-
website hosting and website infrastructure;
-
email and communication tools;
-
document storage and business productivity tools;
-
analytics tools;
-
AI-assisted productivity, screening, summarisation or document analysis tools;
-
IT security and system administration.
Where these providers process personal data on our behalf, they do so under appropriate contractual arrangements and only for the purposes we define.
Where we use AI-assisted tools, we take reasonable steps to ensure that personal data is processed under appropriate contractual, confidentiality and data protection safeguards and is not used for purposes unrelated to our services.
Our website is operated using Wix services, including Wix Analytics.
10. International transfers
Menity Group s.r.o. is based in the European Union.
We do not transfer candidate or client personal data to any US-based Menity entity for the purposes of our European executive search business.
Some of our technology service providers may process or store data outside the European Economic Area. Where this occurs, we rely on appropriate safeguards required by GDPR, such as adequacy decisions, standard contractual clauses or other lawful transfer mechanisms.
11. How long we keep personal data
We keep personal data only for as long as necessary for the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law. GDPR requires controllers to explain the retention period or the criteria used to determine it.
Our general retention approach is:
-
Candidate data for a specific mandate: for the duration of the mandate and a reasonable period afterwards for follow-up, record-keeping and dispute prevention.
-
Candidate data for future opportunities: up to 3 years from the last meaningful interaction, update or relevant mandate activity
-
Client and business contact data: for the duration of the business relationship and a reasonable period afterwards.
-
Enquiry data: for as long as necessary to respond to the enquiry and maintain appropriate business records.
-
Legal, contractual and accounting records: for the period required by applicable law.
-
Website analytics data: according to the relevant Wix Analytics and cookie settings.
Before retaining candidate data for future opportunities, we consider whether the information remains relevant, proportionate and professionally current.
You may ask us to delete or update your personal data at any time, subject to legal or legitimate retention requirements.
12. Your rights
Subject to the conditions set out in GDPR, you may have the following rights:
-
the right to access your personal data;
-
the right to correct inaccurate or incomplete data;
-
the right to request deletion of your data;
-
the right to restrict processing;
-
the right to object to processing based on legitimate interests;
-
the right to withdraw consent, where processing is based on consent;
-
the right to data portability, where applicable;
-
the right not to be subject to solely automated decision-making with legal or similarly significant effects;
-
the right to lodge a complaint with a data protection authority.
To exercise your rights, contact us at: privacy@menity.com
You also have the right to contact the relevant supervisory authority. As Menity Group s.r.o. is based in the Czech Republic, the relevant supervisory authority is the Czech Office for Personal Data Protection: Úřad pro ochranu osobních údajů www.uoou.cz
13. Security
We apply appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration or disclosure.
These measures may include access controls, confidentiality obligations, secure document handling, system security, restricted access to candidate materials and internal procedures for handling personal data.
No method of transmission or storage is completely secure. However, we take reasonable steps to protect personal data in line with the nature of our work and the sensitivity of the information we process.
14. Cookies and website technologies
Our website uses cookies and similar technologies necessary for the operation of the website and, subject to your cookie settings where required, for analytics.
We currently use Wix Analytics to understand basic website performance and improve the user experience. Our website uses cookies and similar technologies necessary for the operation of the website and, subject to your cookie settings where required, for analytics.
More information is available in our Cookie Policy.
If we introduce additional analytics, advertising, heatmap, visitor recording or similar technologies in the future, we will update our Cookie Policy and consent settings accordingly.
15. Third-party links
Our website may contain links to third-party websites or platforms, including LinkedIn or other professional services.
We are not responsible for the privacy practices, content or security of third-party websites. We recommend that you review their privacy policies before providing personal data to them.
16. Changes to this Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, technologies or data processing practices.
The latest version will always be published on our website with the date of the last update.
17. Contact
If you have any questions about this Privacy Policy or how we process personal data, please contact us at:
Menity Group s.r.o.
Na Strzi 1702/65
140 00 Praha 4
Czech Republic
Company ID: 24817228
Email: privacy@menity.com
Website: www.menity.com