What is GDPR?
In 2016, the European Commission approved and adopted the new General Data Protection Regulation (GDPR). GDPR is a major change in data protection regulation in the EU and replaces the existing legal framework (the Data Protection Directive and the various member state laws). It will come into effect on May 25, 2018.
Why is GDPR important?
GDPR adds some new requirements regarding how companies should protect individuals’ data that they process. It also raises the stakes for compliance by increasing enforcement and imposing greater fines for breach. We are following the developments about GDPR and are taking steps to prepare for compliance.
What is HireHive doing to comply with GDPR?
We are implementing changes throughout the organisation to ensure that we remain fully compliant with all European Data Protection Regulation.
Our compliance, data protection, and information security teams are working to prepare our services for GDPR. We are reviewing our data processing activities, and assessing and prioritizing any changes that need to be made in advance of the GDPR effective date in May 2018.
Here are some ways HireHive is already enabling customers to become GDPR ready:
Transparency into information use.
The GDPR will likely require organizations provide more information about how individuals’ information is used.
How HireHive enables transparency.
Here at HireHive, transparency is a vital part of our overall business process. HireHive is designed to provide customers with full control of their contents and ways to access it.
HireHive is designed in a way that company account administrators have the ability to grant or rescind access to their HireHive account through the ‘Hiring Team’ dashboard. This means customers are the ones that control who can access the account.
Product release communication.
Feature changes and product releases are communicated to customers through regular release notes via Intercom on the company dashboard. Customers receive the most up-to-date information in a clear and easily accessible way.
Visibility into processing.
Under the GDPR, individuals can access a copy of their data and know where their data is being processed.
How HireHive enables processing visibility:
- Effortless downloads. All data can be easily downloaded for full access.
- Right to be forgotten. Individuals can ask to delete their personal data.
How can HireHive further assist in your GDPR compliance efforts?
You should start your compliance efforts now, if you haven’t already. It is never too early to review your organization’s data privacy and security practices, and there are several ways in which HireHive can help.
Expansion of Individual Rights: HireHive can help you promptly respond to requests from your candidates pursuant to their expanded individual rights under the GDPR.
• Right to be forgotten: You may delete individual candidates upon their request at any time.
• Right to rectification: You may access and update your account information within your HireHive account to correct or complete candidate information upon their
access information that we hold about them.
• Right of portability: You may export any of your candidate lists by accessing your HireHive account.
We are here to help
We are working with our customers to answer any questions and address any concerns regarding the steps we take to protect their personal data and how we are preparing for GDPR. If you have any questions regarding data security or your account in general, please don’t hesitate to contact us at firstname.lastname@example.org
Please note that while HireHive has consulted with legal professionals regarding GDPR to update our Terms of Service, create our GDPR related content and update our own product, HireHive is not a legal firm. All information we provide regarding GDPR is general information only. It is not intended to constitute legal advice or seek to be the complete and comprehensive statement of the law, nor is it intended to address your specific requirements. Organisations should take independent legal advice regarding their own provisions for data protection.