false

Recruitment Privacy Notice

Last updated on: [1st July 2024]


Mindray and its affiliates and subsidiaries (“Mindray”, “our”, “we” or “us”) respect your privacy and value the protection of your personal data. This Privacy Notice introduces you how we collect, use, store, share and protect your personal data and how you can exercise your rights, when you apply for a position in our company through various channels. Please read and understand this Privacy Notice carefully before applying for our position and submitting any personal data to us. By submitting your personal data such as your resume to us, you agree we will deem that:

  1. You have understood and agreed to the terms of this Privacy Notice, and you agree that Mindray may collect, use and share your personal data in the manner described in this Privacy Notice;
  2. You agree that your personal data may be transferred outside of the country that you reside in in the manner described in this Privacy Notice;
  3. To the best of your knowledge, all the information you provide to us is true and accurate, and you have not knowingly omitted any possible adverse information. Any inaccurate information you provide may affect your eligibility for employment.

If you are from the United States or Canada, please visit our North American Privacy Notice. If you are a resident of the European Economic Area (EEA) or UK, please refer to our corresponding Privacy Notice that applies to you.

When you apply for our position, depending on the requirements of the position you are applying for, we may process different categories personal data from you, which mainly include but are not limited to the following:

  1. Your resume, such as name, gender, telephone number, email address, photo, work experience, educational background, project experience, qualifications obtained, scores and other information in your resume;
  2. Background check related information. To the extent as permitted by applicable laws and regulations, according to the requirements of the position you apply for, we may conduct a background check on candidates by ourselves or hire a professional background check company to conduct a background check on you. Your personal data that may be concerned in the background check includes the verification of relevant information on your resume, evaluation provided by the contacts/ referees you provided, your historic income information, your criminal records, etc.;
  3. Personality test related information. Depending on the requirements of the position you apply for, we may ask you to attend a career aptitude test, or a personality test and analysis provided either by ourselves or through a third party;
  4. Your healthcare related information. Depending on the requirements of the position you apply for, we may ask you to provide your medical report, disability certificate (if related) and other healthcare related information. The healthcare information you provide will only be used to assess your suitability for the position you are applying for;
  5. Other personal data such as your ID card that you disclose to us in the interview, written tests, etc. during the recruitment.

In general, we collect the above information from you directly. We may also obtain your personal data through third parties, such as recruitment websites, headhunting firms, your referrers, your previous employer or background check agencies. We may also collect and use personal data that you have made publicly available on websites or social media, such as your profile on WeChat or LinkedIn. Some of our recruitment channels (such as Beisen) also allow you to retrieve your personal data from other third parties to generate your resume or to retrieve your resume directly from third parties. By choosing such option, you will be deemed to have authorized us to obtain your personal data from such third parties.

We collect and use the above information about you primarily for our legitimate human resources management purposes, including but not limited to:

  1. Evaluation whether you match with our position;
  2. Schedule and management of your interview;
  3. Maintaining recruitment and employment related records;
  4. Schedule and management of your recruitment;
  5. Retaining your resume information and recommending other positions to you;
  6. Fulfilling our statutory obligations as employers, such as the diversity and inclusiveness requirements of law;
  7. Conducting background checks on the candidates in accordance with the applicable laws, regulations and company rules.

If you are a data subject in the EEA or the UK, either a EU (or a UK) resident or national, or you are contacted by another Mindray entity or a third party from within the EEA (or the UK), who collects and processes your personal data in the EEA (or the UK), the lawful bases for our processing of your personal data are as follows:

  1. In most cases, we process your personal data based on legitimate interests. For example, we may process your resume information, arrange interviews, written tests, etc. for you to evaluate whether you match with our position, and to evaluate and maintain the effectiveness of our recruitment process. To the extent as permitted by applicable laws and regulations, we may conduct background checks on you based on the position you apply for to ensure that the information you provide is truthful and credible and to manage and control our potential legal risks. We may also keep records related to your recruitment so that we can deal with any disputes that may arise with you.
  2. In some cases, we process your personal data to fulfill our obligations under applicable laws and regulations.
  3. In addition, in some cases we process your personal data in connection with the performance of our contractual or pre-contractual obligations with you. For example, when you are successful in your application, we may require you to provide your ID card number and other information in order for us to sign and perform an employment contract with you.

Generally, we will not provide your personal data to any company, organization or individual, but we may share your personal data with third parties in the following circumstances:

  1. To our affiliates and to third party service providers and partners that provide services to our company (e.g., our recruitment supplier Beisen, background check firms that assist us in conducting background checks, etc.), or other third parties for the purposes stated in this Privacy Notice or otherwise notified by us when collecting personal data from you.
  2. To the relevant law enforcement agency, regulatory body, government or court, if and to the extent that we believe such disclosure is necessary (i) to comply with any legal or governmental requirement, (ii) to exercise, establish or defend our legal right, or (iii) to protect any material interest of you or another person; or (iv) to protect the public interest.
  3. The transfer or disclosure is made with your explicit consent;
  4. In the event of a merger, acquisition, or reorganization, bankruptcy liquidation involving the transfer of personal data, we will request the new company or organization holding your personal data to continue to process your personal data in accordance with this Privacy Notice. If the new company or organization that holds your Personal data needs to use your personal data for purposes not set forth in this Privacy Notice, the new company or organization will have to obtain your consent in accordance with applicable laws and regulations. Under such circumstances, we may be subject to procedures or steps such as due diligence conducted by other persons, and you agree that we may provide your personal data to other third parties (for example, the auditors, legal or other agencies engaged by the acquirer) to the extent necessary for our business needs.

Mindray is a company that does business on a global scale. Our affiliates, partners, service providers, etc. may be located in different countries and regions around the world. As a result, your personal data may be transferred to, or accessed and processed by our affiliates, partners, service providers, etc. outside of the countries or regions that you reside in. For example, your personal data may be accessed and processed by our human resources and/or other relevant personnel in Mindray's headquarter in China when you apply for a position in another country. The rules for the protection of personal data in these other countries or regions may differ from those in your country or region. We will take steps to ensure that your personal data is adequately protected in the event of cross-border transfers, for example, by entering into intra-group data protection agreements or other cross-border data transmission agreements that contractually require the recipients to protect your personal data in accordance with this Privacy Notice and applicable laws and regulations.

When you apply for our position(s) through our official website or third party recruitment platforms we use, third parties or we may use cookies or similar tracking technologies to collect information about your device, your browsing behaviors, your browser type and usage patterns. Please refer to our Cookie Notice and the privacy notices of the third parties respectively for more details.

Mindray uses a variety of technical and organisational measures and procedures under the guidance of ISO/IEC 27001 information security management system (ISMS) and ISO/IEC 27701 privacy information management system (PIMS) to protect your personal data. These measures, such as encryption and access controls of the information systems that store your personal data, de-identification, and regular training of our personnel who handle your personal data, are designed based on the security risk level of your personal data. Furthermore, Mindray will regularly test, assess and evaluate the effectiveness of the technical and organisational measures to ensure the security of your personal data.

However, please be aware and understand that we cannot ensure an absolute secure network, there is no absolutely secure way of data transmission and storage, and we cannot guarantee that your personal data will never be accessed, used or disclosed in a manner against the Privacy Notice. We will develop emergency plans for network security incidents, and remediate system vulnerabilities, computer viruses, network attacks, network intrusion, and other security risks in a timely manner. If you find that your personal data are breached, please contact us using the contact details provided in “How to contact us” immediately so that we can take corresponding measures.

In the event of any accident, force majeure event or other circumstances leading to the breach of your personal data, we will make every effort to control the situation and promptly inform you of the cause, the security measures we have taken and you can take and other relevant information. In the event of a security incident related to personal data, we will report to the competent authorities in accordance with the requirements of relevant laws and regulations, promptly investigate the problem, and take emergency measures.

If you accept our offer and become our employee, the personal data you provide during the recruitment process will be retained as part of your employment records. If we do not employ you, we may nevertheless retain your personal data for an additional period in order to contact you in the future when a suitable position is available, but when there is no such business need, we will delete or anonymize your personal data. If you do not want us to retain your personal data for this purpose, you may inform us through the contact information in the "How to Contact Us" section below. If the laws and regulations provide a shorter or longer retention period, we will retain your personal data according to the requirements stipulated by applicable laws and regulations.

With respect to your personal data, unless otherwise provided by laws and regulations, you have the following rights:

  • You have the right to know and decide the processing of your personal data, and you have the right to restrict or reject our processing your personal data;
  • You have the right to access and copy your personal data;
  • If you find your personal data incorrect or incomplete, you have the right to ask us to rectify and supplement your personal data;
  • Where we process your personal data based on your consent, you may withdraw such consent. Your withdrawal of consent does not affect the validity of the personal data processing activities that we have carried out based on your consent prior to the withdrawal;
  • You have the right to request us to transfer the personal data to other personal data Handler of your choice;
  • You have the right to request us to explain related personal data processing rules;
  • You have the right to request us to delete your personal data under certain circumstances;
  • If you disagree with our personal data processing activities or this Privacy Notice, you have the right to solve the disagreement by other means.

If provided by applicable laws and regulations, you may also request to cancel your account registered with our website, recruitment platform or mobile application, or file a complaint with the competent authority. You may exercise your above rights by contacting us through the contact details set out in the “How to contact us” section at the bottom of this Privacy Notice.

In your request, please make clear what personal data you would like to access or have changed, whether you would like to have your personal data limited from our database, or otherwise let us know what limitations you would like to put on our use of your personal data.

We will respond to all requests we receive to exercise the data subject's rights in accordance with the requirements of applicable data protection laws within the required time limit. To the extent as permitted by laws and regulations, we may not be able to respond to your request to exercise your rights in the following circumstances:

  • If your request is contrary to our obligations under laws and regulations;
  • If the requested data is directly related to national security or national defense security;
  • If the requested data is directly related to public safety, public health, or significant public interest;
  • If the requested data is directly related to criminal investigations, prosecutions, trials and enforcement of judgments, etc.;
  • If we have sufficient evidence of your subjective malice or abuse of rights;
  • If it is in the interest of safeguarding your or other individuals' significant legitimate rights and interests, such as life and property, but it is difficult to obtain your authorization or consent;
  • If responding to your request to exercise your rights would result in serious harm to your or other individuals' or organizations' legitimate interests;
  • If the requested data involves trade secrets.

We may update this Privacy Notice from time to time in response to changing legal, technical or business developments. When we update our Privacy Notice, we will take appropriate measures to inform you, depending on the significance of the changes we make. We will obtain your consent to any material changes to this Privacy Notice if and where this is required by applicable data protection laws.

You can see when this Privacy Notice was last updated by checking the "last updated" date displayed at the top of this Privacy Notice. If you continue to use the relevant functions on the Mindray Platform or contact us through the contact information shown on the Platform, you are deemed to have accepted the updated Privacy Notice.

Contact us at privacy@mindray.com if you have any questions, comments, concerns or complaints related to your personal data held by us or in case you wish to exercise any of your data privacy related rights. Please note that this email address is strictly for privacy related queries. We will review your problem without delay and make timely reply according to the applicable laws and regulations.