Data privacy information for job candidates and applicants
growth hub
Deutsche Telekom attaches great importance to protecting your personal data. It is important to us to inform you what personal data we collect, how your data is processed.
Who is responsible for data processing?
The job and application portal is provided by Deutsche Telekom AG, Friedrich-Ebert-Allee 140, 53113 Bonn, Germany. You can decide if and with which affiliated companies you want to share your data to find a job that fits to you. If you are not sure, for which exact job you want to apply, you can start by joining our Talent Network (list of interested candidates) or creating a candidate profile (account at our job portal). If you found a position, you can apply directly or based on your existing candidate profile. For the Talent Network, your candidate profile and any specific applications you can decide with whom you want to share your data:
- Only with the companies hiring for the positions you apply to
- Among all companies in the country in which you are based
- Among all global companies
All Deutsche Telekom companies are jointly responsible for the proper protection of your personal data (with some exceptions). In detail, we process your data as follows:
- Search with your CV - Processing limited to the user session, No data is stored/shared
- Talent Network - Joint processing according to your choices
- Candidate Profiles - Joint processing according to your choices
- Applications - In sole responsibility of the hiring entity, Joint processing if you choose to be considered for other positions in your country or globally
- Provisioning and operation of the job portal - In responsibility of Deutsche Telekom AG
To allow you to effectively exercise your data subject rights, Deutsche Telekom AG entered into an agreement with relevant group subsidiaries globally. This allows you to exercise your data subject rights centrally at Deutsche Telekom AG, Germany growthhub_team@telekom.de.
Where can I find the information that is important to me?
General information on privacy of job portal
General information on privacy of this portal, in particular on collected data, intended use, responsibility structure, your rights and involved sub-processors, etc. can be found in the following sections of this data privacy information.
For general inquiries regarding privacy, please contact the Group Data Privacy Officer at Deutsche Telekom AG:
Dr. Claus D. Ulmer, Friedrich-Ebert-Allee 140, 53113 Bonn, datenschutz@telekom.de.
Specific information depending on the subsidiary you apply at
If you are applying at a subsidiary of Deutsche Telekom, additional information is provided to you regarding exact responsibilities, DPO contact and local obligations such as varying deletion periods. Please check the sections at the of this document:
- Processing under EU’s General Data Protection Regulation (GDPR).
- Processing under Mexico’s Federal Law of Personal Data Protection held by Private Individuals (LFPDPPP).
What data do we process?
When using our job portal, creating an account and applying to positions, we process the following data about you.
-
Profile data: Basic information provided by you during profile creation (e.g. name, login data, contact data), your uploaded CV and other provided documents.
-
CV data: Content extracted from your uploaded CV and any qualifications, work experience or certificates manually provided by you.
-
Business network profile data: Public information from business-oriented social networks like LinkedIn.
-
Application data: Any additional data you provide to us as part of the application for a specific position and data that is linked to your application (e.g. assessments results, feedbacks, referrals).
-
Usage data: Information about your usage of our job portal, incl. device and user identifiers, your operating system, accessed pages, date and time of access. Such information is stored as system logs or cookies issued upon your login.
For which purposes do we process your data?
We offer the following features on our job portal through which we process your data under different purposes.
Searching with your resume
You can provide your CV data to get recommendations for suitable positions in our job portal.
You can search our open positions and filter them based on country or other criteria without sharing additional data. If you would like to evaluate your match to our positions easily, you can search with your CV. we will parse your uploaded CV and calculate a match score for our positions. The CV uploaded this way is only kept as long as the session consists. Please be aware that during that session the CV is automatically filled when creating a candidate profile or sending an application. When creating a candidate profile you can still choose to remove the CV.
Processed data
- CV data
Purposes
- To recommend suitable positions on our job portal
Join Talent Network
You can join our Talent Network if you are interested in job opportunities at Deutsche Telekom and wish to get contacted if we find suitable positions for you. To register yourself, you provide contact data, your CV and optionally your business network profile link.
We offer a voluntary service for persons interested in job opportunities at Deutsche Telekom, which is called Talent Network. You can join the talent network by
- actively registering yourself on our job portals with the functionality “Join Talent Network”.
- a recruiter that took interest in your profile and added it from a public source (e.g. LinkedIn). If this is the case, we will reach out to you and ask for your consent to keep the candidate profile. After two weeks without feedback or if you actively decline, we will delete the candidate profile without undue delay.
After you joined the Talent Network, we regularly ask for your confirmation to keep the profile inside Eightfold (every year). If we do not receive feedback, we will delete your profile and recruiting activity without undue delay. Apart from that, you can always decide to delete it on your own. We will use your profile to find matching positions and to reach out to you with interesting information or details about job opportunities. You are able to choose one of the following visibility options:
- Consider me for all open positions worldwide
- Consider me for all open positions in the country in which I am based
Your data will be shared with subsidiaries of Deutsche Telekom based on your selection.
Processed data
- Profile data
- CV data
- Business network profile data
Purposes
- To find suitable jobs for you
- To provide you with information, materials and invitations related to your profile
Candidate Profiles
You can create an account at our job portal to conveniently manage applications and receive news about opportunities at Deutsche Telekom. To register yourself, you provide profile data, your CV and optionally your business network profile link.
You can join our talent network and also apply without registering a candidate profile. We are only able to offer some features if you have a complete candidate profile. This includes the following:
- Tracking all of your applications in one place
- Sending multiple applications based on the same profile
- Modifying applications and your candidate profile
- Uploading additional documents to your profile
- Withdrawing applications
- Deleting your candidate profile if you have no outstanding applications
A candidate profile can be created by you actively registering yourself on our job portals with the functionality “Sign Up”. You can also decide to create your candidate profile after you already sent direct applications. We will merge all of your applications with your profile afterwards by email address and name.
We regularly ask for your confirmation to keep the profile in our portal (every year). If we do not receive feedback, we will delete your profile and recruiting activity without undue delay. Apart from that, you can always decide to delete it on your own. We will use your profile to find matching positions and to reach out to you with interesting information or details about job opportunities. When you are creating a candidate profile, you are able to choose one of the following visibility options:
- Consider me for all open positions worldwide
- Consider me for all open positions in the country in which I am based
- Consider me only for jobs I apply to
Your data will be shared with other subsidiaries of Deutsche Telekom based on your selection.
Processed data
- Profile data
- CV data
- Business network profile data
Purposes
- Selecting fitting candidates for our vacant positions (if you apply with your candidate profile)
- To display further suitable jobs to you as part of your personal user interface in the job portal
- To provide you with information, materials and invitations related to your profile
Applications
You can apply to any of our vacant positions (directly or based on your candidate profile). We will process your application through screenings, interviews (onsite or virtual) and by providing an offer to you if you are selected. You can also decide to be contacted with other suitable job opportunities based on your application.
Our main purpose for processing your application data is to find a right candidate for the vacant positions in Deutsche Telekom AG and its subsidiaries. The ways through which we are able achieve this purpose and process your personal data are, e.g. evaluation and assessing of the information included in your CV, motivation letter, references, videos or in questionnaires provided by us, while using various HR tools or techniques and conducting an interview with you either online or personally. If you attend a personal interview, your data may be processed also in the CCTV system in our premises, since we have legitimate interest to ensure health and safety of our employees and to protect our assets and your belongings. Last, but not least, we may process your data for the purpose of legal claims and proceedings and if we are requested to do so by the public authorities.
When you are submitting an application, you are able to choose one of the following visibility options:
- Consider me for all open positions worldwide
- Consider me for all open positions in the country in which I am based
- Consider me only for jobs I apply to
Your data will be shared with other subsidiaries of Deutsche Telekom based on your selection.
Deutsche Telekom Service Europe Romania S.R.L. is involved as the recruiting process agent for every application.
Generally, we delete applications 6 months after we have found a suitable candidate for a position. If you were successful, your application might be retained in your personnel file in accordance with applicable legislation and our internal HR regulations. However, if the required retention differs in your country, we fulfil those specific requirements. For details see section Specific information depending on the subsidiary you apply at.
Processed data
- Profile data
- CV data
- Business network profile data
- Application data
Data that is processed as part of your application includes, but is not limited to the following.
Details about data processed in the application process
| Data | Description |
|---|---|
| Information from your motivation letter | Any information that you decide to mention in your motivation letter. |
| Eligibility for work | Information related to possible obligation to prove legal eligibility for performance of respective job. |
| Declaration of integrity | Depending on the nature of the job and the country in question, we may request you to provide us with declaration from relevant public authority confirming that you have not been convicted of any crime, which would disqualify you from the selection process of applicant for the respective job. |
| Information provided through video call | It is possible that you will provide us with some of the abovementioned information in form of video or during the video call. |
| Information provided as part of online assessment | We may process information about you that we encounter as part of an online assessment of your abilities, skills, and personality, including some technical information about equipment you use (e.g. IP address). |
| Security-related information | Information about your entrance to our premises, your activities on CCTV records. |
| Special data category | Information about your health, however only in case this information is relevant for performance of job that you apply for. |
Purposes
- Selecting fitting candidates for our vacant positions
- To provide you with information, materials and invitations related to your profile
Applications are complex data processing structures. This is why we provide additional explanations regarding the processing purposes below.
Details about purposes in the application process
| Purpose | Description |
|---|---|
| Job interview and candidate selection | We can conduct the interview directly with you, or we can ask external personal agency to do so and then to provide us with information about you. We assess and evaluate the information from your CV and motivation letter submitted to us via various job portals or through references. |
| Internal review | If you are already employed in Deutsche Telekom AG Group (or if you have worked in Deutsche Telekom AG Group in the past) and you apply for another internal position, we can use information from your personal file in order to supplement information that you provide to us in job application. |
| Assessment | We may ask you to undergo an assessment of your skills, personality or cognitive aptitude. Such assessments are usually performed using third-party software or a third-party company, who will share the results with us. Prior to undergoing such an assessment, we will provide you with further information relevant to your specific situation. |
| Pre-employment screening | Depending on the nature of the job, we may ask a pre-employment screening expert to determine whether there are any circumstances which would disqualify you as a candidate from that job. Whether or not a screening will occur, as well as the scope and purpose will be discussed with you prior to the start of the screening. |
| Obtaining references | We may decide to obtain references from individuals who have worked with you in the past. Generally, we will only contact those individuals if you have provided us with their names and contact details. If you are already an employee in some entity of Deutsche Telekom AG Group, we may ask for references from your manager and/or co-workers, without your knowledge. |
| Onboarding process | If we decide you are the right candidate for the position in our organization, we will process your data to start the onboarding process. We will create you the accounts in various internal systems and we will enable you to access the applications necessary to start your onboarding. |
| Ensure health, safety and security in our premises | We want our employees and persons attending our premises to be healthy and safe. Therefore, we use security measures such as CCTV system, to ensure that our employees, visitors and property are safe. |
| Dispute resolution | We may process personal data for the purposes of resolving legal disputes, claims, complaints or proceedings. |
| Compliance with the law | We may have to process your personal data to comply with the law or with a decision of respective public authority or with a judicial order. |
Provisioning and operation of the job portal
We use your data to enable essential system functionality and to protect our services against illegal activities.
We process certain data to provide and operate this job portal incl. account administration, updating, securing, troubleshooting, providing support and improving our job portal and recruiting processes. We use certain data to establish or preserve a legal claim or defense; and to prevent fraud or other illegal activities, including attacks on our information technology systems.
For these purposes we also work with technically necessary cookies. They are saved as long as a user session exists, but no longer than 1 day. Usage logs are saved up to 6 months.
Data processed
- Profile data
- CV data
- Business network profile data
- Application data
- Usage data
Purposes
- Enabling essential system functionality and user experience
- Ensuring security of our systems via logging, monitoring and backup (based on requirement to implement technical and organization security measures)
Who does Deutsche Telekom pass my data on to?
To processors
We engage companies particularly in the following areas: IT, recruiting support, affiliates.
Our current processors are
- Eightfold AI Inc, 2625 Augustine Drive, Suite 601, Santa Clara, CA 95054, USA
- Deutsche Telekom Services Europe Romania S.R.L., 319 G Splaiul Independentei, Sema Parc, Atrium House, 2nd floor, Bucharest, District 6, Romania
- Subsidiaries and associated companies of Deutsche Telekom AG based on your visibility preferences and internal outsourcing
Owing to legal obligations
In certain cases, we are legally obliged to transfer data to a state authority that requests it.
How is my data protected?
We make reasonable efforts to ensure a level of security appropriate to the risk associated with the processing of your personal data. We maintain technical and organizational measures designed to protect your personal data within our organization against relevant security threats, including against unauthorized access, destruction, loss, alteration or misuse. Your data is only accessible to a limited number of personnel who need access to perform their duties. For measures implemented specifically in the growth hub application, please refer to the next section. In case you wish to learn more about our technical and organizational measures, you can contact
- the Deutsche Telekom AG DPO (listed in the beginning of this document) for general technical and organizational measures
- the application team at growthhub_team@telekom.de for more details on technical and organizational measures implemented in growth hub
- the respective DPO contacts of DTAG subsidiaries listed in the section Specific information depending on the subsidiary you apply at for information regarding local technical and organizational measures (especially in handling your application)
Where is my data processed?
Data is stored and servers are running within data centers of Amazon Web Services, Inc. (sub-processor of Eightfold) in Frankfurt, Germany. Eightfold AI Inc., together with its sub-processors delivers services (development, maintenance, product and customer support) from outside of the EU. To ensure a secure handling of your data, the Standard Contractual Clauses (SCC) as predetermined by the European Commission were agreed with Eightfold. Additionally, the following technical and organizational measures were implemented to protect your data:
- Data at rest and in transfer is encrypted according to state-of-the-art. The encryption key is managed by Deutsche Telekom AG – this means that Eightfold is being permissioned to use cryptography primitives without owning the actual key.
- Detailed logging of non-EU data access with strict purpose limitation – this means that access to the data is continuously monitored and it is ensured that it is bound to a certain purpose (e.g. support ticket opened by employee).
We only share your data with companies that are part Deutsche Telekom Group, if they have signed the Telekom Binding Corporate Rules Privacy.
Am I subject to automated decision making or profiling?
Your personal data may be subject to profiling. During the candidate selection process, we use a matching model to identify how well you match the vacant position to which you applied. We do not rely solely on such results and they are always revised by our employees which reduces the significance of such processing to a minimum.
The Eightfold Matching Model is an artificial intelligence system which produces a match score, that predicts the match of a profile to a position. It ranges from 0 through 5 in increments of 0.5 (5 indicates the highest possible match). Relevant recruiting personnel has insights into these scores and all the other candidate data to make informed hiring decisions. Per Eightfold’s design it is not intended to execute hiring decisions autonomously. Only a recruiter is able to advance an applicant.
Technical Details
In detail, the goal of the Eightfold Matching Model comprises the creation of an enriched talent profile for a candidate, a calibrated job profile and discovering complex relationships between these components which result in the Eightfold Match Score (likelihood that candidate will perform well in the application process and succeed in the job).
The Matching Model was audited regarding bias by the US company BABL AI Inc., which specializes on AI Auditing. They conduct bias audits according to New York City Local Law No. 144 of 2021 on Automated Employment Decision Tools (AEDTs). They primarily test for unusual selection rates of candidates with certain gender or ethnic background, known as disparate impact. Disparate impact is assumed, when the average score for a group of individuals divided by the average score of individuals in the highest scoring group (impact ratio) is lower than 80%. The Matching Model did not deliver impact ratios below 0.992 for gender categories and 0.923 for race/ethnicity categories. Apart from that, Eightfold passes additional formal audit requirements, such as having a accountable party for ethics and bias.
What data privacy rights do I have?
- Information and access: Receiving details about the categories of the personal data processed, the purposes of the processing, any recipients of the data and the envisaged storage period
- Rectification: Requesting that inaccurate or incomplete data be rectified or supplemented
- Consent withdrawal: Withdraw consent at any time with effect for the future if data is processed based on your consent
- Erasure: Requesting that data should be erased, provided that
- the data is no longer required for the intended purpose and/or is being unlawfully processed, or
- you withdraw consent (unless there is another legal ground for the processing), or
- in the case of data processing on account of legitimate interests you object to the processing and there are no overriding legitimate interests for the processing, or
- data has been unlawfully processed, or
- the personal data has to be erased for compliance with a legal obligation
- Restriction: Demanding under certain circumstances the restriction of data processing where erasure is not possible or the erasure obligation is disputed
- Data portability: Requesting a copy of your data in structured and machine-readable format or request that we send such a copy to another data recipient selected by you
- Object to Processing: Objecting to specific types of processing on grounds relating to your particular situation, to processing of personal data concerning you
- Complaints: Lodging a complaint with a data protection supervisory authority regarding the processing of data
If you wish to contact us or exercise your rights, you can use the following functional mailbox regardless of the Deutsche Telekom company where you applied at:
Alternatively, you can also contact the Deutsche Telekom company you applied at or the central contact for data privacy at:
If you are not satisfied with how we adressed your inquiry, you have the right to approach a competent data protection authority with your request or complaint. The data protection authority competent for Deutsche Telekom AG is:
Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen
Postfach 20 04 44, 40102 Düsseldorf, Germany
Processing under EU’s General Data Protection Regulation (GDPR)
This section applies and provides you with further information if your personal data is processed by one of our companies located in the European Economic Area. The General Data Protection Regulation requires us to provide you with information on the legal basis of the processing of your personal data.
- Your consent to join our Talent Network, create a candidate profile, or to be considered for other positions besides your application - Art. 6 (1) (a) GDPR (Consent)
- Preparation of contracts or performance of our obligations under any contracts (mainly work relationship contracts and offers) - Art. 6 (1) (b) GDPR (Preparation of contracts and contract performance)
- Compliance with our legal obligations - Art. 6 (1) (c) GDPR (Compliance with legal obligations)
- Legitimate interests pursued by us - Art. 6 (1) (f) (Legitimate interests)
The legitimate interest pursued by us in relation to our use of your personal data is the efficient processing of your application at Deutsche Telekom. Where we rely on our legitimate interest for a given purpose, we are of the opinion that our legitimate interest is not overridden by your interests and rights or freedoms, given
- the regular reviews and related documentation of the processing activities described herein
- the protection of your personal data by our data privacy processes, including our Binding Corporate Rules Privacy
- the transparency we provide on the processing activity, and
- the rights you have in relation to the processing activity.
If you wish to obtain further information on this balancing test approach, please contact us at datenschutz@telekom.de
Additional information about our companies in the EU
Deutsche Telekom Cloud Services (DTCS)
Responsibility
Please consider that depending on the location of the job you are applying for within DTCS, one of the following DTCS companies is responsible for the protection of your personal data and for ensuring compliance with this Privacy Statement as the controller:
- Deutsche Telekom Cloud Services s.r.o., with its registered seat at Ružová dolina 6, 821 08 Bratislava, Slovak Republic, ID No.: 48 129 178;
- Deutsche Telekom Cloud Services Kft., with its registered seat at 1117 Budapest, Inforpark sétány 3, Hungary, ID No.: 01-09-271999;
- Deutsche Telekom Cloud Services EPE, with its registered seat at 9 Fragkoklisias Str., 15125 Marousi of Attica, Greece, ID No.: 134112901000 / 300378;
- Deutsche Telekom Cloud Services S.R.L., with its registered seat at B-dul, Dimitrie Pompei nr. 9-9A, Iride Business Park Cladirea 20, etaj 3, Sector 2, Bucharest, Romania, ID No.: J40/4603/2016; or
- Deutsche Telekom Cloud Services d.o.o., Radnička cesta 21, 10000 Zagreb, Croatia ID No: 080987135.
Deletion of CCTV data
Your data processed through CCTV systems of DTCS will be stored for 3 days and then automatically erased.
Additional sub-processors
DTCS may share your personal data with its suppliers who support DTCS in recruiting processes or provide DTCS with partial services, e.g. recruitment agencies, physical security services, legal, tax and audit services, IT support services and technical subcontractors, HR services, etc. DTCS shares your data within group of DTCS companies and with affiliates of Deutsche Telekom Group AG as mentioned above.
DTCS involves additional sub-processors to support its recruiting processes:
- HireVue Inc., 10876 S River Front Pkwy Ste 600 South Jordan, Utah 84095, United States (to conduct online assessments)
Complaints
If you would like to file a complaint about how DTCS processes your personal data, you can contact DTCS Data Protection Officer (see contact details below) and your suggestions and requests will be reviewed. If you are not satisfied with the response or you believe that DTCS processes your data unfairly or unlawfully, you have the right to lodge a complaint with a supervisory authority. Depending on which DTCS company is the controller responsible for the protection of your personal data, the supervisory authority
- for Deutsche Telekom Cloud Services s.r.o. is the Office for Personal Data Protection of the Slovak Republic, www.dataprotection.gov.sk.;
- for Deutsche Telekom Cloud Services Kft. is the National Authority for Data Protection and Freedom of Information, www.naih.hu;
- for Deutsche Telekom Cloud Services EPE is the Hellenic Data Protection Authority, www.dpa.gr;
- for Deutsche Telekom Cloud Services S.R.L. is the National Supervisory Authority for Data Processing, www.dataprotection.ro;
- for Deutsche Telekom Cloud Services d.o.o. is the Agency for Protection of Personal Data, www.azop.hr.
Contact DPO
Deutsche Telekom Services Europe Romania S.R.L. (DTSE RO)
Please find the privacy notice here.
Processing under Mexico’s Federal Law of Personal Data Protection held by Private Individuals (LFPDPPP)
This section applies and provides you with further information of how personal data is processed in Mexico. The LFPDPPP requires us to provide you with information on the legal basis of the processing of your personal data.
- Your consent to join our Talent Network, create a candidate profile, or to be considered for other positions besides your application - Art. 7 (Consent)
- Preparation of contracts or performance of our obligations under any contracts (mainly work relationship contracts and offers) - Art. 11 (Preparation of contracts and contract performance)
- Compliance with our legal obligations - Art. 9 (I and VII) (Compliance with legal obligations)
- Legitimate interests pursued by us – Art. 12 (Legitimate interests)
The legitimate interest pursued by us in relation to our use of your personal data is the efficient processing of your application at Deutsche Telekom. The processing of personal data will be as necessary, appropriate, and relevant according to the purposes mentioned on this document, and making reasonable efforts to limit the processing period to the minimum necessary due to:
- the regular reviews and related documentation of the processing activities described herein
- the protection of your personal data by our data privacy processes, including our Binding Corporate Rules Privacy
- the transparency we provide on the processing activity, and
- the rights you have in relation to the processing activity.
Additional information about our companies in Mexico
T-Systems México
Contact DPO
Data privacy information last revised: 26.03.2025