What is data privacy and data protection anyway?
Data privacy and data protection both deal with the processing of data. Data protection focuses on protecting assets from unauthorized use, while data privacy defines who is authorized to access the data in the first place.
One important difference is who controls which part. With data privacy, controls are mostly given to the user (in other words, the user can control which data is shared with whom), while data protection is mostly a company's responsibility.
What is personal data?
Personal data is defined as any data that can be linked back to a natural person. Everything you do online - from creating a Facebook account to posting a photo on Instagram - leaves a digital footprint. While it may seem small, it adds up and unprotected, an individual is vulnerable to having their personal data shared with third parties. Luckily, data privacy law focuses on ensuring an individual's rights are secure.
What's General Data Protection Regulation (GDPR)?
Today, data protection law impacts organizations and governments around the world. The EU implemented a higher protection threshold than most other countries with the introduction of General Data Protection Regulation (GDPR) in 2018. GDPR introduced changes to previous data protection and data privacy law, specifically around areas like consent, reporting obligations, internal procedures, accountability, and penalties.
Does GDPR apply to me?
Yes. GDPR applies to you too even if you are located outside of the EEA (European Economic Area). It applies to any business that a) markets their products to people in the EEA or b) monitors the behavior of people in the EEA. In other words, even if you’re based outside of the EEA, if you control or process the data of EU citizens, GDPR applies to you.
Pitch is hosted on Amazon Web Services (AWS). The servers where Pitch's data is stored are located in Ireland (eu-west-1 region).
Pitch was founded shortly before GDPR came into effect. As a result, we have been focused on ensuring GDPR compliance from the beginning.
We have signed DPAs with all of our third-party business providers (sub-processors). If you want to know more about these Data Processing Agreements, click here and go to Annex 7.2.
In addition to external efforts, we have taken a number of steps to ensure GDPR compliance at all levels of the company. We require all employees to undergo GDPR training and have created a Data Protection Handbook that details our internal procedures related to data. In addition, we have a dedicated Data Protection Officer who can be reached at dpo@pitch.com.
If you are a business customer of Pitch, you can find our Data Processing Agreement here. Download our pre-signed PDF version and sign it.
Disclaimer
This website is not legal advice for your company to use in complying with EU data privacy laws like the GDPR. Instead, it provides background information to help you better understand how Pitch has coped with some important legal issues. This legal information is not the same as legal advice, where a legal professional applies the law to specific circumstances, so we insist that you consult a legal professional, if you’d like advice on your interpretation of this information or its accuracy. In a nutshell, you may not rely on this paper as legal advice.
Absolutely! While the Pitch application is written mostly with Clojure, we use lots of more widely-known libraries and languages (e.g. React.js) as well. Every engineer who joins without prior knowledge of Clojure can expect extensive mentorship, time, and resources to learn Clojure and our codebase before diving into the deep-end.
Yes, of course. Pitch wants to hire the best and brightest regardless of where they're based geographically. On occasion, teams have a preference for candidates whose working hours overlap with the rest of their team, but there is always flexibility.
No. While we do have an office in Berlin, physical presence there is 100% optional.
Absolutely, feel free to submit a speculative application.
We do our best to get back to all applicants within one week of their applications. That being said, the application review process has lots of moving parts and depends on the availability of our hiring teams, holidays, and other unpredictable factors. We do our best, but appreciate your patience if it takes >1 week to respond to you.
Given the high volume of applications we receive, it's not possible for us to give tailored feedback to candidates who aren't selected for first-stage interviews. If you do progress beyond the first-stage interview, however, we try to give specific, tailored feedback should there not be a fit.
The typical Pitch interview processes consists of the following steps, all of which are conducted remotely.
We process and store all data in accordance with GDPR standards. You can request to have your data deleted at any time after applying and we will action this request within 1-2 days.
The average recruitment process lasts between 4-5 weeks to get through all the stages, although there's some variability depending on availability on both the hiring team and candidate side.
The short answer is 'no'. We practice asynchronous communication.
Yes, one might miss having the office as an anchor, or the occasional water-cooler chat with colleagues. But 100% remote work doesn't have to be disengaged and disconnected! At Pitch, we put a lot of emphasis on connecting (not just about work!) through virtual coffee chats, catch-ups via Zoom (as and when needed)... and Slack shenanigans. Additionally, we are big fans of team offsites, yearly company get togethers, and Weekly Bulletins (our async alternative to All-Hands). We believe remote working empowers you to work autonomously and flexibly on something you believe in, and your colleagues are only a Slack away for a second opinion, cheering up, and various meme shenanigans.