The General Data Protection Regulation (GDPR) went into effect on May 25, 2018. It is a set of protections for individuals located within the EU and is intended to keep their data secure. GDPR applies to all individuals located within the EU. This means that any person, regardless of their citizenship, who has their personal data collected while located in the EU, receives the protections granted under GDPR. A similar law in the United Kingdom, the UK General Data Protection Regulation (UK GDPR), protects individuals located within the UK.
Data Processing Laws: We process candidate information and background report information consistent with applicable law and our Privacy Policy. We also require our service providers to comply with applicable laws, including the GDPR and UK GDPR.
Data Protection Addendum (DPA): We ask customers to enter into a Data Protection Addendum (DPA) with Checkr to help protect candidate information and comply with international legal obligations. Our DPA includes the EU and UK standard contractual clauses for data transfers outside the EU and UK, respectively. Checkr is a processor of international candidate data. We process such data in accordance with local laws and our Privacy Policy, including responding to data subjects’ requests. We require our service providers to comply with applicable local laws, including the GDPR and the UK GDPR.
EU/UK data subjects and GDPR/UK GDPR: Our Privacy Policy sets forth our processing activities for personal data related to EU and UK data subjects.
Background Check Report Content: Other countries’ privacy laws are often stricter than US laws, meaning there may be less information available in other countries.
Report Permissibility: Certain countries do not permit background checks, and Checkr may not learn whether a background check is permitted by that particular country until we receive a response from the applicable government. If a report is not permitted, you will not be charged for the background check.