Data protection in recruitment
The new General Data Protection Regulation (GDPR) comes into effect across Europe on 25 May 2018. This regulation applies wherever an individual’s personal data is entered, processed and stored. Accordingly, there are also changes that affect how the personal data of applicants is processed.
What is the GDPR and who is affected?
The EU General Data Protection Regulation (GDPR) is a key adjustment of existing data protection regulations for all EU states. This new regulation applies wherever an individual’s personal data is entered, processed and stored.
The regulation was passed in May 2016 and must be implemented by 25 May 2018. The GDPR not only affects companies within the EU, but also companies that maintain business relations with the EU or process the data of EU citizens.
Fines of up to 20 million euros or four per cent of a company’s global turnover are possible in the event of violations of the GDPR.
How is ictjob preparing for the GDPR changes?
ictjob has been working hard over recent months to prepare for the new General Data Protection Regulation. For example, an external audit has been conducted as part of extensive preparations to ensure that ictjob meets all of the provisions of the GDPR by the deadline and its products and services for candidates and companies comply with data protection legislation.
What will change for me as a customer in terms of my working relationship with ictjob?
Nothing will change for you as a customer in terms of your working relationship with ictjob. As a company, however, you must comply with the data protection regulations. You can find further information on the GDPR online, e.g., by visiting the website of the European Commission at: http://ec.europa.eu/justice/smedataprotect/index_en.htm.
What do I need to bear in mind when publishing my job ad on ictjob?
Is tracking permitted within the job ads?
No, any kind of tracking within the job ads on the part of the customer is prohibited. The reason for this is that ictjob is unable to obtain individual authorisation to gather data for each customer within each job ad. Without this authorisation, you too in your capacity as a recruiting company will be violating the provisions of the GDPR.