GDPR Readiness

GDPR Readiness

Europe's new privacy policy law intends to give more control to individuals over their personal data. This control over information is given through a few rights. Zoho Recruit has brought in features to make you be compliant under GDPR.
Based on user feedback, we have reworded "consent" into "Opt-In". The functionality remains the same. "Consent Declined Candidates" view name has been changed to "Opted-Out Candidates."

What are the different rights which an individual (or a candidate) is entitled to?

Right to be informed.

Zoho Recruit helps you to be compliant under GDPR and keeping your candidates in the know is the first step towards it. You can now inform applicants about what information you want from them, why you need it, how long you're going to hold it, and what you intend to do with it.

Changes in the system are with regard to applicants (candidates who are not in your system) and candidates (who are already in your system).
Know more about GDPR for applicants.
Know more about GDPR for candidates.  

Right to access.

To ensure the right to access, Zoho Recruit offers Candidate Login wherein candidates can access their information anytime and know about the jobs they had applied for.
To enable Candidate Login, go to Setup > Career Website > Enable Candidate Login.

Right to rectification.

Enabling Candidate Login will give candidates the right to correct their personal data.

Right to erasure.

You should be able to erase candidates' personal data should they request it, provided there's no "compelling reason" for you to continue storing/processing their data.
To erase a candidate's data, go to Candidates > select a candidate's record > More Actions > Delete.

Note: You need to delete it from the recycle bin to delete records permanently. 

To delete records from the recycle bin:

  1. Go to Setup > Data Administration > Recycle Bin
  2. In the Recycle Bin, select the check boxes of the records that you want to permanently delete.
  3. Click Delete

Right to restrict processing.

You should restrict the processing of candidates' data should they request it, regardless of reason. 
To restrict processing of data in Zoho Recruit, go to Candidates select a candidate's record More ActionsRestrict ProcessingCandidates whose data has been restricted to process will be moved to a new Custom View by the name "Processing Restricted Candidates" for whom you will be able to Edit, Delete, and Remove Restriction.

Right to data portability.

Candidates have the right to receive their personal data. You must export their details in a machine readable format (CSV) and hand it over to the candidate.
To export data in Zoho Recruit, go to Setup Data Administration Export
Select the module, and the Custom View to be exported and click Export.

What's coming up?

1. Switching ON/OFF the compliance settings for GDPR in Setup > Compliance > GDPR.
2. Enablling the modules you would like to bring inside the GDPR compliance. 
3. Marking the Data Processing Basis for the respective module records. 
4. Enhancing the consent management process through form and manual process.
5. The Field Data Processing Basis would be available in Custom Views, Reports, Workflows, etc., 
6. Accessing privacy details of a record through a tab Data Privacy under records detailed page.

Note:

  • GDPR feature will be enabled by default for customers who have signed up from EU Server. 
  • Customers from US Server who want to use this feature can contact our Support team at support@zohorecruit.com . 

    • Related Articles

    • EU Data Protection (GDPR): Zoho Desk's Readiness

      The GDPR is here. The European Union has taken a monumental step in protecting the fundamental right to privacy for every EU resident with the General Data Protection Regulation (GDPR) which came into force on May 25, 2018. Simply put, EU residents ...
    • GDPR Compliance

      Enable GDPR Compliance and protect your customer data from unauthorized access Help guide GDPR and Zoho CRM - An Introduction Consent Management Data Subject Rights Data Privacy
    • GDPR Settings

      When you have enabled GDPR compliant email marketing, you can view the settings you have configured in the GDPR Settings subtab under Manage Consent. Contact Data Erasure GDPR compliance is a must for companies that store and process personal ...
    • GDPR Settings

      When you have enabled GDPR compliant email marketing , you can view the settings you have configured in the GDPR Settings subtab under Manage Consent . Subscriber Data Erasure When leads in EU want to unsubscribe from an organization, it is mandatory ...
    • GDPR Glossary

      GDPR - The GDPR(General Data Protection Regulation) is a regulation that sets guidelines for the collection and processing of personal data of EU (European Union) residents. It is enforceable from May 25, 2018. The GDPR will replace an older data ...