The EU General Data Protection Regulation (GDPR) is a data protection legislation, which will apply to all companies operating in the European Union from 25th May 2018 onward. The GDPR regulation covers the personal data of all EU citizens and security practices around their personal data. At the moment we are in a transition period of the amendment.
Benefits of the Data Protection Regulation
The change comes with many benefits. Many people have their doubts, but it’s better to look at the new possibilities this law change brings along. The biggest beneficiaries are private people who will get the right to know how and for what their personal details are being used. For a consumer, GDPR creates certainty that a company has good enough data security standards and that all personal data is handled with care and diligence. With GDPR, companies have more credibility as trusted partners in their network.
In all of its complexity, GPDR is actually pretty simple to understand. It aims to protect personal data from anyone other than authorized personnel, and on the other hand, ensures that all details are being updated.
An organization needs to clearly inform:
What data does the company have
Where the data is located
For what usage is the data collected
Who admins the data
Who has access to the collected data
How does the data move between different programs or systems
How can an individual archive, correct or remove all stored data
There haven’t been any general data security regulations in the EU before, and the varying regulations have made it difficult for companies to grow internationally within the EU. GDPR aims to standardize current practices and to make companies’ data security practices transparent.
The changes will affect how, for example, customers’ information is stored or used.
GDPR aims to improve organizational information security, with personal data protection being just one part of the bigger picture. This means overall development of the data security policies while also focusing on data handling and securing.
The GDPR regulations and penalties are meant to guide organizations towards the right information security practices. The penalties should work as a motivator; companies in breach of the GDPR can be fined up to 4% of annual global turnover or 20 million Euros, whichever is greater.
How does the GDPR affect recruiting?
The upcoming changes will affect all organizations that handle personal data. They will especially affect recruiters who deal with job seekers’ information. Recruiters will need a permit to collect data – the permission and agreement policy is one of the key elements of GDPR. This needs to be stated clearly for job seekers, without tens of pages of law jargon or any pre-filled consents.
The worry about possible penalties has now resulted in fear of more difficult job seekers' data collection and administration. It’s likely that after a while the recruiters will start seeing the benefits rather than focus on the extra work that the change brings along. The General Data Protection Regulation will bring the privacy and the overall experience of a jobseeker to a whole new level.
The changes will affect most companies that do manual recruiting via email and excel sheets. Now is the right time to start using recruiting tools. Forget about email applications, excel-sheets and saving the applicant details on your computer – this will be an uncontrollable mess.
Recright is GDPR-compliant recruiting tool
Recright applicant tracking system and video interviewing platform are created according to the GDPR requirements. With this video recruitment system, one can easily limit access to all personal data for only those involved in the recruiting who actually need the information.
Do you want to hear more about how Recright video interviews and Applicant Tracking System can make your recruitment easy and GDPR-compliant? Send us a contact request, and we will be in touch within 24 hours.
Subscribe to our newsletter
Get recruitment insights, tips, and best practices delivered to your inbox monthly!