What is the GDPR?

The General Data Protection Regulation (GDPR) is a European Union law that was implemented May 25, 2018, and requires organizations to safeguard personal data and uphold the privacy rights of anyone in EU territory. The regulation includes seven principles of data protection that must be implemented and eight privacy rights that must be facilitated. It also empowers member state-level data protection authorities to enforce the GDPR with sanctions and fines. The GDPR replaced the 1995 Data Protection Directive, which created a country-by-country patchwork of data protection laws. The GDPR, passed in European Parliament by an overwhelming majority, unifies the EU under a single data protection regime.

Additional information, including a summary of the GDPR can be found here.

Source: https://gdpr.eu/faq/

Do I need to comply with GDPR?

Any business or organization which processes personal data of, or offers goods or services to, EU citizens or residents must comply with GDPR, regardless of the entity's affiliation, or lack thereof, with the EU.

Personal data is any information that relates to an individual who can be directly or indirectly identified, such as name, e-mail address, IP Addresses, eye color, political affiliation, and so on. Additional compliance information can be found 
here.  

Source: https://gdpr.eu/faq/

GDPR Compliance Features

With respect to GDPR, we act as a data processor - a third party that processes personal data on behalf of a data controller. Your organization acts as the data controller of your applicant and employee data. As your data processor, we have built a feature suite that facilitates your compliance with GDPR regulations. To make sure your hiring needs are in compliance with GDPR regulations, follow the steps below to enable the GDPR compliance feature. 

Enabling GDPR Compliance

Note: Your account must have the new careers page format enabled in order to take advantage of the Compliance features suite. Visit the Look & Feel section of Account Details or contact Support to enable.

  1. From your applicant tracking system (ATS) dashboard, go to the Menu Icon on the upper right of your screen and select Account Details from the Main Menu. 

  2. Under Account Details, scroll down to the Company & Users section, locate and select Compliance.

  1. Under Compliance, Toggle Candidate Cookie Policy and Candidate Opt-In ON

* Compliance in British Columbia, Nova Scotia, and Canadian federally regulated businesses may involve additional requirements. Please contact our support team for more information.

Candidate Cookie Policy

This feature will add a cookie notification banner to your careers page(s). This feature is required for GDPR, CCPA and PIPEDA compliance. Here is an example of the notification banner.

Additionally, our Candidate Cookie Policy can be found here for review.


Candidate Opt-In

This feature will require all candidates to actively opt in and accept the Candidate Privacy Policy as part of submitting their application. This feature is required for GDPR, CCPA, and PIPEDA compliance. When enabled, the following Opt In box will appear above the Submit Application button.

Additionally, our Candidate Privacy Policy can be found here for review.