Job Applicants Privacy Policy

Introduction

We at MST Travel Ltd. (the “Company” or “we”, “us”, “our”) respect your privacy.

This privacy policy (“Policy”) describes the personal information we have and the policies and procedures we use regarding personal information, in each of the following contexts –

  1. Through our website, rightrez.com (the “Website”) or when you contact us through our social media accounts.
  2. When you subscribe to our newsletter.
  3. About representatives of our existing and prospective customers and vendors (the “Representatives”).

We are committed to protecting your privacy and rights, and to complying with applicable data protection laws, including the Israeli Protection of Privacy Law, 5741-1981, and the European General Data Protection Regulations (GDPR), as applicable.

This Policy may be amended from time to time. We will post any change to this Policy on our Website a reasonable time in advance of the effective date of the change, and we will also make efforts to proactively notify you by email of the changes to the Policy if we have your email address.

You may contact us at privacy@rightrez.com.

What We Collect and Why

Scenario Purpose Categories of data 
Contacting us with an inquiry or requesting a demo through the Website Providing you with the demo or information you request; Contacting you to promote our business. Full name and email address.
Applying to our Innovation Partner Program Reviewing your application; providing you with information about our products and services as part of our Innovation Partner Program. Email address and company name.

We also collect non-personal information such as the company’s field of activity and the types of products the company offers.
Use of strictly-necessary cookies on the Website Facilitating a feature of the Website that the user specifically requested. IP address, pages visited, Website functions used, fields completed in forms, etc.
Use of other cookies on the Website Analyzing site usage to evaluate and improve its performance; tracking user preferences; improving user experience on the site. IP address, pages visited, Website functions used, fields completed in forms, etc.
Subscribing to our newsletter Sending you our newsletter to promote our business and market our products and services. Full name and email address.
Scanning our QR code in trade shows and other events Contacting you to promote our business and market our products and services. Name and contact details.
Contacting you through referrals (e.g., from Company employees or our tech partners) Promoting our business and marketing our products and services. Name and contact details.
Contacting us online (e.g., through our social media) Contacting you to promote our business and market our products and services. Name and contact details.
Conducting marketing calls with you Promoting our business and marketing our products and services. Name and contact details.
Engaging in a business relationship with a vendor or service provider which you are a Representative of Administering our business relationship with vendors and service providers; facilitating our use of vendors and service provider’s products and services. Name and contact details.

You are not legally obligated to provide us your personal information, but if you do not, we will not be able to handle or respond to your inquiries, maintain our business contact with you, provide you with our newsletter, or fulfill any requests you submit to us.

Sources of Personal Information

We collect the personal information from several sources:

  • Directly from you, when you provide it to us on the Website, when you subscribe to our newsletter, through your email communications with us, or when you speak with us on marketing calls or at trade shows and other events we participate in.
  • From referrals such as our employees or our tech partners.
  • From your social media accounts, if you contact us through social media.
  • From your organization, when another representative of your organization provides us with your information.
  • Through the device you use to access our Website, such as in our use of cookies.

Sharing your Personal Information

We will not share your information with third parties, except in the events listed below or when you provide us with your explicit and informed consent. We do not sell your personal information to third parties.

Scenario Purposes Examples of Third parties involved
We will share your personal information with our service providers who assist us with the internal operations of our business and the Website. These companies are authorized to use your personal information in this context only as necessary to provide these services to us and not for their own promotional purposes. Operating the Website and our business Hubspot; Crystal Knows; Microsoft.
If you abused your rights to use the Website or violated any applicable law while doing business with us. Responding to, handling, and mitigating suspected violations of law in connection with our business. Competent authorities, legal counsels, and advisors.
If a judicial, governmental, or regulatory authority requires us to disclose your information. Complying with a binding request from a competent authority. Competent authorities.
If the operation of the Website or our business is organized within a different framework, or through another legal structure or entity (such as due to a merger or acquisition). Enabling a structural change in the operation of the Website and our business. The target entity of the merger or acquisition, legal counsels, and advisors.
Third party cookies For more details, see the cookie banner on our Website.

Retaining and Securing Your Personal Information

Retention. Your Personal Information will be retained throughout your engagement with the Company, and thereafter as long as you continue to provide your consent to the retention, or as necessary for recordkeeping purposes. The overall period of retention is 2 years. The Company will contact you once every twenty-four (24) months to request your confirmation to continue retaining your data. You may request the deletion of your personal data at any time, and the Company will comply with such request, subject to any applicable legal obligations or overriding legitimate interests.

Data security. We implement measures to secure Personal Information and protect it from unauthorized access and disclosure. While these measures reduce security risks, they do not grant absolute security from unauthorized access and use.

International Transfers

Your Personal Information may be stored in various locations around the globe, including in the United States and in Israel, by the Company or by our service providers. The transfer of personal data outside your country will be done in compliance with applicable law, under a data transfer agreement (DPA) containing adequate safeguards as determined by applicable law. By engaging with us, you grant your consent to the international transfer of Personal Information, as may be necessary in the Company’s discretion.

Your Rights

You have the following rights in relation to your Personal Information:

  • Right to review your information. You have the right to review, either by yourself or through an authorized representative, any Personal Information we have stored about you in our databases.
  • Right to request to rectify your information. If, upon reviewing your Personal Information, you find your information to be incorrect, incomplete or outdated, you have the right to ask us to rectify your information or delete it. We will inform you within 30 days whether we can comply with your request.
  • Right to have your information deleted, under certain circumstances, such as when the information is no longer necessary for the purposes the information was collected for.

If you wish to exercise any of the above rights, please contact us by email at privacy@rightrez.com.

Additional Information for Individuals in the EU and UK

MST Travel Ltd. is the Controller of your personal data under this Policy. Our main offices are located at 20 Lincoln st., Tel Aviv – Jaffa, 6713412, Israel.

Legal basis for processing your personal data

Purpose or Scenario Legal Basis
Contacting us with an inquiry or requesting a demo through the Website Our legitimate interest in responding to business inquiries and developing potential leads.
Applying to our Innovation Partner Program Your explicit consent. You may unsubscribe from receiving marketing emails from us at any time through the means stipulated in the emails we send you.
Use of strictly-necessary cookies on the Website Our legitimate interest in the proper operation of the Website.
Use of other cookies on the Website Your explicit consent.
Subscribing to our newsletter Your explicit consent. You may unsubscribe at any time through the means stipulated in the emails we send you.
Scanning our QR code in trade shows and other events Our legitimate interest in the development of our business.
Contacting you through referrals (e.g., from Company employees or our tech partners) Our legitimate interest in the development of our business.
Contacting us online (e.g., through our social media) Our legitimate interest in the development of our business.
Conducting marketing calls with you Our legitimate interest in the development of our business.
Responding to, handling, and mitigating suspected violations of law in connection with our business Our legitimate interest in defending and enforcing against violations that are harmful to our business
Complying with a binding request from a competent authority Our legitimate interest in complying with mandatory legal requirements imposed on us
Enabling a structural change in the operation of the Website and our business Our legitimate interest in our business continuity

Your Rights

If you are an individual in the EU or the UK, you may have the following additional rights:

  • Right to Access and receive a copy of your Personal Information that we process.
  • Right to Rectify inaccurate Personal Information we have concerning you and to have incomplete Personal Information completed.
  • Right to Data Portability, that is, to receive the Personal Information that you provided to us, in a structured, commonly used and machine-readable format. You have the right to transmit this Personal Information to another person or entity. Where technically feasible, you have the right to have your Personal Information transmitted directly from us to the person or entity you designate.
  • Right to Withdraw Consent to us processing your Personal Information, at any time, if the basis for our processing is your consent. We may continue to process Personal Information with respect to which your consent is not necessary. Withdrawing your consent will not affect the lawfulness of processing we carried out based on your consent before such withdrawal.
  • Right to Object to our processing of your Personal Information on the basis of our legitimate interest. However, we may override the objection if we demonstrate compelling legitimate grounds, or if we need to process such Personal Information for the establishment, exercise or defense of legal claims.
  • Right to Restrict us from processing your Personal Information (except for storing it) in the following situations if: (i) you contest the accuracy of the Personal Information, in which case the restriction applies only for a period enabling us to determine the accuracy of the Personal Information; (ii) the processing is unlawful and you prefer to restrict the processing of Personal Information rather than requiring the deletion of such data by us; (iii) we no longer need the Personal Information for the purposes outlined in this Policy, but you require the Personal Information to establish, exercise or defend legal claims; and (iv) you object to our processing based on our legitimate interest, in which case the restriction applies only for the period enabling us to determine whether our legitimate grounds for processing override yours.
  • Right to be Forgotten. Under certain circumstances, you have the right to ask us to erase your Personal Information. However, notwithstanding such a request, we may still process your Personal Information if it is necessary to comply with our legal obligations, or for the establishment, exercise or defense of legal claims.

If you wish to exercise any of these rights, please contact us at privacy@rightrez.com.

When you contact us, we reserve the right to ask for reasonable evidence to verify your identity before we provide you with information. Where we are not able to provide you with the information that you asked for, we will explain the reason.

Subject to applicable law, you have the right to lodge a complaint with your local data protection authority. If you are in the EU, then according to Article 77 of the GDPR, you can lodge a complaint to the supervisory authority, in the Member State of your residence, place of work or place of alleged infringement of the GDPR. For a list of supervisory authorities in the EU, click here.

If you are in the UK, you can lodge a complaint to the Information Commissioner’s Office (ICO) pursuant to the instructions provided here.