What is GDPR?
GDPR stands for General Data Protection Regulation and is a law that helps individuals retain control of their personal data collected by organizations. The complexities of GDPR are, well, complex! But there are two key concepts that are important to understand:
YOU as Getro's customer are the Data Controller -- or, more accurately, your organization is the Data Controller. GDPR defines Data Controller as “the entity that determines the why and the how for processing personal data." Your company has determined that the personal data it collects on their job board (and talent network) will be processed through Getro, which brings us to our next key concept:
Getro is the Data Processor. GDPR defines Data Processor as “the entity that processes personal data on behalf of the Data Controller." You chose to process through us, and we are processing that data on your behalf.
What personal information or data does Getro process?
GDPR calls this information "Personally Identifiable Information" (or, PII). PII is information that can be used to identify an individual even if you don't intend to use it for that purpose. The PII that Getro handles includes:
- Cookies, which we use on all our products
- Information we collect about network admins and company admins, such as names and emails
- Information we collect about talent members, such as names and emails (GetroNetwork only)
How does Getro help me be compliant?
Collecting this information from the start
What do I need to do?
If you are a customer who joined us before February 2021, simply follow these simple steps:
- Go to https://www.getro.com/app/login
- Log in with your Getro credentials
- Navigate to the Settings page on the left
- Click Save
If you are a customer who joined us after February 2021, no action is required.