Crelate and GDPR
Our mission is to empower and enable the process of connecting talent with opportunities the world over. We believe that relationships and trust is paramount to the success of this mission.
The European Union (EU) General Data Protection Regulations (GDPR) is a comprehensive set of new privacy laws that come into effect on May 25, 2018. The GDPR mandates how companies collect, store and process the personal data of EU citizens. The law applies to any company that processes the personal data of EU citizens, regardless of the physical location of the company or whether it has any actual customers in the EU.
Our Commitment
Crelate is committed to complying with the requirements of a Data Processor under the GDPR. We will complete a review of our vendors, contracts, policies and products to ensure that we are fully in compliance with GDPR by the May 25, 2018 deadline. We are also committed to providing our customers with tools and features that they can use to help achieve their own compliance as Data Controllers.
Helping our customers comply with the GDPR
Crelate already provides many features that customers can use to help them comply with the GDPR. Our existing customizable application forms, portal disclaimer, email templates, delete and reporting capabilities already support these efforts. However, we plan to provide the following additional features to help make complying with the regulations even easier:
Candidate Portal: We will expand our custom form capabilities to improve the consent gathering process. We will also make it easier to include links to your Recruitment Privacy Policy and customizable consent disclaimers of your choice.
Request Tracking: We will provide new capabilities to help you gather and manage requests from candidates (Data Subjects) to withdraw consent, make corrections, delete and provide data. This should make it easier to comply with the “Right to be forgotten” provisions of the GDPR.
Consent and Contacted Tracking: We will provide new visualizers and reports to make it easier to see who has provided consent and who has been contacted within a specific period of time.
Delete Changes: Crelate already makes it easy to delete data in bulk. We will look to enhance our delete feature to allow the deletion of personal data, while maintaining the accuracy of your reports such as time in stage.
Email Templates: We will review and enable the sending of templated emails throughout the product to better help you send necessary templates at the necessary time.
IMPORTANT NOTE: The above list is subject to change with or without notice. The features and capabilities Crelate provides to help customers be compliant will change over time as best practices and market feedback dictate. Crelate does not claim to ensure our customer’s compliance with the GDRP. It is up to each customer to determine if the tools and capabilities we provide will meet their specific compliance requirements.
Disclaimer: This article and the information herein is provided “as is” without any warranty expressed or implied. This article does NOT constitute legal advice. Crelate makes no claims that the information in this article is either complete or accurate. Crelate does not provide legal advice, and customers should consult with a their legal professional to determine their responsibilities under the GDPR.