protecting personal data

Data protection in recruiting: Secure, transparent, and GDPR-compliant

The protection of personal data is particularly important in the HR sector, as this area deals with highly confidential information such as personal details and application documents. As your partner for digital personnel selection, we guarantee the highest level of data security in accordance with the GDPR and BDSG through purpose-specific data processing. Our professional data protection management protects the privacy of your talent in the long term while minimizing legal liability risks for your company.

Download Whitepaper

On the safe side

Maximum data security with Applysia

Eine Hand zeigt auf ein transparentes Wolkensymbol, das mit elektronischen Schaltkreisen gefüllt ist. In der Mitte des Symbols befindet sich ein Vorhängeschloss, das Datensicherheit und Cloud-Schutz darstellt. Im Hintergrund sind diverse technische Netzwerkverbindungen und Diagramme zu sehen, die die digitale und vernetzte Natur der Cloud-Technologie unterstreichen.

Data protection and IT security are not optional extras for us, but a key prerequisite for the success of your digital HR processes. We do not only comply with applicable legal regulations on data protection (e.g., GDPR, BDSG) and industry standards on IT security (e.g., ISO 27001), but go even further to ensure the highest level of data protection and security for your data – while providing an optimal user experience.

Our security architecture at a glance

Software security

Certified infrastructure

We integrate measures to protect data as effectively as possible right from the development stage.

Privacy by Default

Each user receives an exclusive, confidential database area. The default setting for data is always “confidential” and the deletion period is set to “active” by default.

Privacy by Design

We consistently pay attention to data minimization during development. Data is used as sparingly as possible.

We rely on a highly secure system environment to guarantee the integrity of your data at all times.

Server Location Germany

Data storage and management takes place in German data centers that are certified according to ISO 27001, an international standard that sets strict requirements for information security management systems (ISMS).

GDPR Compliance

We guarantee seamless, legally compliant data processing in accordance with the European General Data Protection Regulation.

Legal protection & compliance

Legal basis

We comply with all requirements under the GDPR, BDSG (§ 38, § 64) and TDDG (§ 11). This primarily includes strict adherence to the principles for processing personal data.

Order Processing Agreement (OPA)

We enter into legally binding agreements with our customers in accordance with Art. 28 GDPR, which regulate the secure transfer and processing of your data.

Data protection officer

An external data protection officer (Keyed) monitors compliance with all requirements and carries out independent checks.

Verified partners

We ensure that our external service providers also meet all data protection requirements through careful selection and regular reviews.

Internal guidelines

To protect data, we rely on clear guidelines for our employees such as confidentiality obligations, regular training, and consistent implementation in everyday work.

Artificial intelligence (AI) with responsibility

Innovation and safety go hand in hand for us.

Eine robotische Hand, die in einem digitalen Netzwerk aus miteinander verbundenen Lichtpunkten schwebt. Die Szene ist in Blau- und Violetttönen gehalten, wobei Lichtstrahlen die Netzwerkverbindungen betonen. Das Bild vermittelt ein futuristisches und technisches Ambiente.

AI-based management summaries

These are based exclusively on the observers' competency notes and assessments.

Data sovereignty

The text is created using Microsoft Azure with servers located within the EU.

Human control

Before publishing a report, it is always necessary to manually review the AI-generated text.

Support

Our AI chatbot “Bernd” will be happy to assist you with any questions you may have within the application.

Our promise: Your data is in the best hands

We respect and support all data subject rights in accordance with the GDPR – from access to rectification to erasure of your data. Through the combination of certified technology, clear processes, and trained experts, we offer a trustworthy framework for your entire personnel selection process.

Would you like to delve deeper into our security architecture?

Download our detailed whitepaper or read our complete Privacy Policy.

Download Whitepaper Our data privacy protection partner

Our reference customers from various industries rely on us

START NOW

Book a free Demo

Book a free Demo appointment with us.
We are pleased to present our software to you.

Book a free Demo

Accept
Name	LinkedIn Insight-Tag
Provider	LinkedIn Inc.
Purpose
Duration

Accept
Name	Google Tag Manger
Provider	Google LCC
Purpose
Duration
Further information	https://policies.google.com/privacy

Accept
Name	Microsoft Clarity
Provider	Microsoft Corporation
Purpose	Mircosoft Clarity is a website analysis tool. The tool can be used to check the usability of the website.
Duration	Data is deleted as soon as it is no longer required for processing.
Further information	https://privacy.microsoft.com/de-de/privacystatement

Accept
Name	Microsoft Ads
Provider	Microsoft Corporation
Purpose
Duration	Daten werden gelöscht, sobald sie für die Bearbeitung nicht mehr benötigt werden.
Further information	https://privacy.microsoft.com/de-de/privacystatement

Accept
Name	Google Double Click
Provider	Google LLC
Purpose	This website uses Google Double Click to serve ads that are relevant to users, to improve campaign performance reports, or to prevent a user from seeing the same ads more than once. The data is transferred to a Google server in the USA and stored there. The personal data is transmitted on the basis of Art. 46 and/or Art. 49 para. 1 lit. a) GDPR.
Duration	Data is deleted as soon as it is no longer required for processing.
Further information	https://policies.google.com/privacy

Accept
Name	Google Adsense
Provider	Google LLC
Purpose
Duration	Daten werden gelöscht, sobald sie für die Bearbeitung nicht mehr benötigt werden.
Further information	https://policies.google.com/privacy

Accept
Name	CookieLaw
Provider	One Trust Technology Limited
Purpose	The operator of this website uses the functions of Cookie Law of the company OneTrust Technology Limited. CookieLaw is part of the CookiePro service and provides the website operator with a legally required cookie notice and enables the operator to manage opt-in and opt-out as required by law with the help of a Cookie Consent Manager.
Duration	Daten werden gelöscht, sobald sie für die Bearbeitung nicht mehr benötigt werden.
Further information	https://www.onetrust.com/privacy/

Accept
Name	hellotrust
Provider	Keyed GmbH
Purpose	hellotrust stores the user's consent status for cookies on the current domain.
Duration	Data is deleted as soon as it is no longer needed for processing.
Further information	https://hellotrust.de/datenschutz

Accept
Name	Cloudflare
Provider	CloudFlare Inc.
Purpose	Data will be deleted as soon as they are no longer needed for processing and the operator of this website uses the functions of CloudFlare. Provider is CloudFlare, Inc. 665 3rd St. 200, San Francisco, CA 94107, USA. CloudFlare offers a so-called worldwide distributed content delivery network with DNS. The personal data is transmitted on the basis of Art. 46 GDPR.
Duration	Data is deleted as soon as it is no longer required for processing.
Further information	https://www.cloudflare.com/de-de/gdpr/introduction/

Accept
Name	Google Analytics
Provider	Google LLC
Purpose	This website uses Google Analytics to analyse website usage by users. The data is transferred to a Google server in the USA and stored there. The personal data is transmitted on the basis of Art. 46 and/or Art. 49 para. 1 lit. a) GDPR.
Duration	Data is deleted as soon as it is no longer needed for processing. As a rule, the cookies are stored by Google for a period of 2 years.
Further information	https://policies.google.com/privacy

Accept
Name	Hubspot
Provider	Hubspot Ltd.
Purpose
Duration	Daten werden gelöscht, sobald sie für die Bearbeitung nicht mehr benötigt werden.
Further information	https://legal.hubspot.com/privacy-policy

Data protection in recruiting: Secure, transparent, and GDPR-compliant

Maximum data security with Applysia

Our security architecture at a glance

Software security

Certified infrastructure

Privacy by Default

Privacy by Design

Server Location Germany

GDPR Compliance

Legal protection & compliance

Legal basis

Order Processing Agreement (OPA)

Data protection officer

Verified partners

Internal guidelines

Artificial intelligence (AI) with responsibility

AI-based management summaries

Data sovereignty

Human control

Support

Our promise: Your data is in the best hands

Book a free Demo

We use cookies