To submit an application to Framebunker ApS through this Site, you will be required to submit Personal Data so that we may:
To do this, we may collect and store the following types of Personal Data:
If you intend to provide us with details of a reference, prior supervisor or any other third party, it is your responsibility to obtain such third party’s consent prior to passing their personally identifiable information to us.
You are responsible for the content of the information you provide to us and you must ensure it is legal, honest, truthful, accurate and not misleading in any way. You must ensure that the information provided by you does not contain material that is infringing on any rights of any third party, or otherwise legally actionable by such third party.
We will retain and use your Personal Data to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our policies. With your explicit permission, we may store your Personal Data in a candidate database for the purposes of considering whether you are suitable for future job vacancies.
Regardless of how long we have agreed to store your information, you have the rights to:
If you have any questions, or if you wish to exercise your right to access your Personal Data, to object to it being processed or to rectify processed data, please contact firstname.lastname@example.org or send a letter to Framebunker ApS, Esromgade 15, 2. 2210, DK-2200 Copenhagen N, Denmark, Att.: Data Privacy.
Your personal data will be reviewed using a Keybase sub-team for communication. This allows for end-to-end encrypted discussion about your application. This sub team has its own signature chain that’s inserted directly into the Keybase global tree under pseudonyms so that it remains private and invisible to anyone not directly involved in reviewing your personal data. Our computer systems may contain local copies of your personal data while we review it. In such cases, your data is on devices featuring full-hard-drive XTS-AES 128 encryption. All transmission is sent via a VPN that passes data through network in Switzerland and Iceland. Our VPN exclusively uses ciphers with Perfect Forward Secrecy, meaning that your encrypted data cannot be captured and decrypted later, even if an encryption key gets compromised in the future.
Local archival related to your personal information is stored on encrypted hard drives. For remote archiving, we encrypt every file and relevant file metadata with unique, randomly generated encryption keys. These keys are never sent to our servers in unencrypted format. Our key sharing is based on RSA-4096 with OAEP padding scheme, used in group mode, and PKI certificates combined with a tree of symmetric keys.
Email to this Site is stored in an encrypted format in a Swiss datacenter located under 1000 meters of granite rock in a heavily guarded bunker which can survive a nuclear attack. The architecture of our mail host means that third parties (including our host) do not have access to your messages and internal emails are transmitted and stored in an encrypted form. When we access your messages, we do so through two-factor authentication on devices that feature full-hard-drive XTS-AES 128 encryption. If you contact us at email@example.com, we will only keep a record of the correspondence for one week or until you indicate that your question has been answered (which ever happens first). If you contact us at any other email address at this domain, we may keep a record of the correspondence.
We may share files that contain Personal Data with you. These files will be password protected and shared with end-to-end encryption. We employ a combination of download limits, link expiration dates, and access log monitoring to ensure that you are the only one accessing the files. Additionally, our sharing system guarantees that shared files cannot be modified without our knowledge, even if somebody hacks our system, through the application of a Message Authentication Code (MAC) to each files content, with a key known only to our local client (and to you), but not by the server.