GDPR FAQ

Some of the most frequently asked questions concerning the General Data Protection Regulation, compliance, and eBoss services and tools.

22 articles in this collection
Written by Robin Bonass

Why am I being asked for my consent again? I have already been asked this / previously unsubscribed! | GDPR FAQ

Sometimes, eBoss will ask for consent to send you mail - even though you have already answered before. Here's why...
Written by Robin Bonass
Updated over a week ago

What are the new rights of the data subject under GDPR? | GDPR FAQ

What are the new rights of the data subject under the GDPR? Read on to find out...
Written by Robin Bonass
Updated over a week ago

Is eBoss compliant? What measures are in place? | GDPR FAQ

A rundown of some of the steps eBoss has taken to ensure compliance across all of our products and services.
Written by Robin Bonass
Updated over a week ago

What is ‘Privacy by Design’? | GDPR FAQ

Privacy By Design is one of the fundamental factors of the GDPR. But what is it? What does it mean for businesses like yours?
Written by Robin Bonass
Updated over a week ago

What is personal data under GDPR? | GDPR FAQ

GDPR places new controls over the way organisations and businesses use personal data. But what is personal data? eBoss explains...
Written by Robin Bonass
Updated over a week ago

What is a controller – processor agreement? | GDPR FAQ

eBoss has issued fresh agreements for data processors and controllers. But what are they for? Find out here.
Written by Robin Bonass
Updated over a week ago

Which basis for processing should I use? | GDPR FAQ

Sometimes, there will be multiple legal grounds for processing data. in these cases, which one should you choose? We consider some factors.
Written by Robin Bonass
Updated over a week ago

What is a ‘Double Opt-In’ of consent? | GDPR FAQ

Getting your marketing into compliance can be one of the toughest elements of GDPR compliance. Double opt-in is considered best practice.
Written by Robin Bonass
Updated over a week ago

What security measures has eBoss taken? | GDPR FAQ

How does eBoss maintain data compliance across all of its services? Find out here.
Written by Robin Bonass
Updated over a week ago

Who is the eBoss Data Protection Officer? | GDPR FAQ

If you have a data compliance question about eBoss services, who can you talk to?
Written by Robin Bonass
Updated over a week ago

The Data Protection Officer | GDPR FAQ

What is a Data Protection Officer (DPO)? Does your company need to hire one?
Written by Robin Bonass
Updated over a week ago

Where are the eBoss servers located? | GDPR FAQ

GDPR limits the ways organisations can transfer personal data across borders. Learn how eBoss remains compliant to new laws.
Written by Robin Bonass
Updated over a week ago

Do I have the Right To Access My Data? | GDPR FAQ

Do eBoss customers have the right to access candidate data stored on the eBoss system? Yes, but it is not necessarily because of the GDPR.
Written by Robin Bonass
Updated over a week ago

What are Data Controllers and Processors? | GDPR FAQ

Organisations may have distinct legal statuses on GDPR, depending on how they interact with personal data. Learn the difference here.
Written by Robin Bonass
Updated over a week ago

eBoss as a Data Processor | GDPR FAQ

How does eBoss demonstrate its compliance to customers and clients?
Written by Robin Bonass
Updated over a week ago

Which basis for processing is most important? | GDPR FAQ

Does one legal basis for processing take precedent over all others? No: only one legal basis is needed, and any applicable basis is valid.
Written by Robin Bonass
Updated over a week ago

What will happen with GDPR after Brexit? | GDPR FAQ

Brexit may change the legal status of UK citizens, but it is unlikely to change the way recruiters adhere to the GDPR.
Written by Robin Bonass
Updated over a week ago

Sending Marketing Mails Without Consent? | GDPR FAQ

Is it ever possible to send marketing copy without prior consent? It may be possible - but you must be very careful.
Written by Robin Bonass
Updated over a week ago

What are the legal grounds for processing? | GDPR FAQ

To process personal data under GDPR, you need a legal basis. What are the options?
Written by Robin Bonass
Updated over a week ago

How long do I have to erase data? | GDPR FAQ

Under GDPR, data subjects may request the deletion of any of their data. Recruiters must be aware of their obligations.
Written by Robin Bonass
Updated over a week ago

Handling a Data Portability Request | GDPR FAQ

The right to data portability is a new privilege for data subjects under GDPR. How does it work? What do recruiters need to know?
Written by Robin Bonass
Updated over a week ago

Can I avoid sending consent requests? | GDPR FAQ

Consent can be a convincing basis for processing. Is it always required? What are your options?
Written by Robin Bonass
Updated over a week ago