GDPR

ENSURING COMPLIANCE WITH THE GDPR – HOW WE PROTECT YOUR PERSONAL DATA

Working together to protect Personal Data

We know that the GDPR significantly extends the scope of your obligations as business owner and data controller but also our obligations to you where we process your personal data.

How do we use and process your personal data?

As a Data Controller for account and contract management

We are a data controller only in very limited circumstances. This is where we collect personal data from you and use it in the administration and management of your account and the contract between us.

This information will include personal contact details (name, e-mail, phone number and postal address). We collect and process this information solely so that we can continue to provide support and deliver our services to you.
Where we hold and process this personal data, we do it securely and always in accordance with our Privacy Policy.

We keep your personal data secure and only store it for as long as necessary or we are legally obliged to, and always in accordance with our Privacy Policy; once personal data is no longer needed, it will be destroyed securely.

As a Data Processor

When you use our services, there is likely to be a lot of personal data about your employees that is passed to us and held within our platform. This personal data will be processed by us as a natural consequence of your use of our platform. We will be the data processor in respect of this personal data, and you will continue at all times to be the data controller.
As a data processor, we are required to act only on your instructions and we take this very seriously. We will not do anything with this personal data unless you have asked us to or we have your consent.

Security

Security is important to us and we know it is important to you. As required by law, we have implemented a number of technical and organisational measures to ensure security. With Single Sign-on and roles-based access, our platform is designed with security at its heart, without compromising ease of use and employee convenience.

Our third-party partners and service providers

As with all software service providers, we use trusted third-party service providers to augment and underpin our platform and services. These include our hosting provider and any third-party APIs. It is necessary for us to share your personal data with these third parties in order to provide our services to you. Where we share this personal data, we ensure that our partners’ processing of this personal data is protected by appropriate safeguards and contracts that contain all of the compulsory provisions required by the GDPR.

We are confident that the partners we work with are best in class and, proportionately, adopt the highest levels of information security and data protection controls in their respective industries. This ensures not only compliance with privacy laws, but also that you can be satisfied that your personal data is being held and processed securely and in line with your instructions.

If you would like further information on our third-party service providers who might process your personal data, please contact us using the details below.

Helping you to ensure compliance – Contractual Terms (our Data Processing Addendum)

To ensure compliance with the new contractual requirements and obligations, and to help you to meet your obligations under the GDPR, we have created a balanced set of terms which govern the way we process personal data under our contracts with you.

These terms are contained in our Data Processing Addendum. These attached standard terms are in addition to the other information and security documents we have provided you with. If you would like some more information about our information security and data protection policies and procedures, please do not hesitate to contact our team at gdpr@applaudhr.com

Our mutual data protection indemnity. Our Data Processing Addendum includes an indemnity to each other in the event of a breach of our obligations under Data Protection Legislation.