We’re GDPR Compliant
Gyfted is privacy-first and cares about your security
Keeping your data safe is important to us
Compliant with EU GDPR data and privacy protection laws
User pseudonymization
and data encryption
and data encryption
Reliable Google Cloud
data servers
data servers
Data processing
agreement
agreement
Frequently asked questions
What is GDPR?
GDPR: The European Union General Data Protection Regulation (GDPR), a regulation in EU law on data protection and privacy for all individuals within the European Union (EU) and the European Economic Area (EEA). The General Data Protection Regulation applies to all companies processing the personal data of people in the EU. The intent of GDPR is to give individuals (who are known in the regulation as “Data Subjects”) control of their personal data, this requires web service providers to get consent from or provide notification to a person in order to be able to use their personal data.
What is personal data?
Personal data is defined as any information relating to an identified or identifiable person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to information such as a name, telephone number, email address, location data, IP address or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.
What is Consent?
For privacy purposes, we ask people if we may use their data for specific purposes. We describe how anyone's data will be used overall in our Privacy Policy, and we ask each person to accept this policy. This acceptance becomes their consent for the uses outlined in our Privacy Policy
.Contract regarding your rights
Send us an email to [email protected] with the phrase “GDPR Request” in the subject line and tell us what you'd like for us to take the needed action (e.g. delete, make a copy, etc.).
What is Anonymization, Pseudonymization, and Data Encryption?
Anonymization means that it is no longer possible to identify specific individuals - it takes data out of the scope of GDPR.
Pseudonymization means an individual can only be identified with additional information (such as a token or a look-up table) and is an important part of privacy by design to reduce the risk of leaking personal data. At Gyfted - in our candidate marketplace - we focus on candidate pseudonymization to provide faster, more efficient job matching and diversity-oriented selection to benefit both candidates and employers.
Data Encryption, which is not mandatory under GDPR, is another tool we can use to protect personal data. This includes such practices as only transmitting personal data via secure methods. For example, we ensure that our website uses “https” rather than “http,” and so on.
How does anonymization and pseudonymization help with diversity?
By not providing data on candidate (in our candidate marketplace) gender, age, minority status, name or photo during the sourcing and selection process we ensure that we eliminate the core implicit biases that negatively impact hiring manager and/or recruiter selection. Pseudonymization helps ensure that objective, meritocratic criteria are the main basis for selection of candidates.