Last Updated : June 04, 2026
The General Data Protection Regulation (GDPR) is an EU regulation on data protection and privacy for all individuals within the European Union. It expands the protection of personal data of EU citizens. The goal of GDPR is to create uniform data privacy rules to enforce across the continent. Personal data may be any information relating to an identifiable individual.
The enforcement of GDPR comes into full effect across all European member states on May 25, 2018. You can read details of the regulation here. Any organization which collects or processes personal data of persons in the EU need to be GDPR compliant. The failure of which could potentially lead to hefty fines. GDPR applies to any organization, whether situated in EU or any other part of the world, that processes personal data of persons in the EU.
As an employer or a recruiting agency, you act as Controller of Your Data. The role of Controller is to decide how the data is used, how it should be processed, who should process it, when and how it needs to be updated, when it needs to be deleted, etc.
Recooty on the other hand, stores and processes data on behalf of the Controller (i.e. You) and hence is considered as a Processor of Your data. Recooty carries out operations on data only as per your instructions/ directions, thereby giving you the desired results.
In order to give you a stellar service, we may also share some personal information we receive about you with certain vendors and service providers, also known as subprocessors. However, we assure you we have taken adequate measures for the protection of your data during or after the transfer to any such third parties. You may read about the manner in which we treat the transfer of such information in our Privacy Policy.
We take data protection seriously and have designed our practices to align with the requirements of the GDPR. We continue to review and update our data processing activities, our agreements with sub-processors, and our security measures as part of our ongoing commitment to supporting GDPR compliance.
In order to be increasingly compliant with GDPR, you must ensure that you have processes in place to follow up on requests from your users (candidates or also customers in case of recruiting agencies) regarding the handling of their personal data.
Regarding the data stored in Recooty, kindly review our updated Terms of Service and Privacy Policy which are now in accordance with the GDPR regulation. Our privacy policy states our approach to handling personal data in a clear, concise format and a language that any average user will understand.
Recooty also provides features designed to help you maintain your own GDPR compliance, and we continue to develop additional capabilities to further support you. The availability of specific features may vary by subscription plan.
This was just an outline of the steps taken at Recooty to meet the compliance of GDPR. However, this is an ongoing process and we are zealously committed to the practice of protecting your data and providing for the secure handling of your critical business information.
