In accordance with the principles of the RGPD, you must ensure that you have the right to export these profiles (please check the terms of use you have with these suppliers). In addition, you must have a legitimate interest in exporting such data (i.e. work opportunities) and you must obtain the consent of the person. How can I ensure that candidates can access their data? Keep in mind that if you wish to be considered for another position within the company, you should accept the processing of your personal data as part of future recruitment processes: a. In accordance with Article 6, paragraph 1, point a), of the General Data Protection Regulation (RGPD) of 27 April 2016, I agree with the processing of my personal data contained in the recruitment application of PULSAR K. BOGUSZ, headquartered in Siedlec, for recruitment purposes. At the same time, I agree with the processing of my personal data contained in my CV for future recruitment procedures. My agreement remains in force for a period of no more than one year. I declare that I have been informed that I have the right to withdraw my consent at any time and I have read the information clause. And while we help our clients move their businesses forward by connecting with great talent, we also help protect the data generated by your recruitment activities. We strive to help our clients achieve compliance goals wherever their recruitment activities take place. It is true that once Brexit is finalised, the RGPD will have no immediate authority in the UK. However, the Information Office (ICO), the UK`s data protection authority, is working on legislation on the RGPD, making it highly likely that UK businesses will continue to benefit from this legislation or very similar legislation.
In addition, you will almost certainly receive requests from EU citizens, making it essential for your business to be in compliance with the RGPD. In the event of an exam, you must be able to prove that you responded to your candidates` requests after their data was deleted. Our proposal is to appoint a Data Protection Representative (DPD) in your company to conduct internal audits and ensure compliance with the RGPD. If the database hosts profiles of candidates, it is usually their responsibility, as they are responsible for processing, to ensure that they are in compliance with the RGPD and that they have obtained the necessary agreement to share with you the candidates` profiles. However, as you will become the data manager once candidate profiles are duplicated in your systems, it is certainly advisable to consult your suppliers on their efforts to become compliant. Can I ask applicants to renew their consent to keep their data? They should review the local legislation applicable to these cases. SmartRecruiters offers a global compliance center that makes it easier to adapt data storage policies for each application case. Download our SmartPaper for a detailed overview of the RGPD and its potential effects on your recruitment data.
