AdeptID GDPR Compliance: Our focus on Data Protection and Privacy
Strengthening our commitment to data protection, security, and user empowerment in the talent technology industry.
Data Privacy: The Foundation of Trust in AI Talent Solutions
Data privacy isn’t just a regulatory requirement; it’s a fundamental component of transparent and fair AI practices and a cornerstone of customer trust. At AdeptID, we understand that our AI solutions rely on sensitive career and skills data, making privacy protections not just compliance checkboxes but essential elements of our company’s privacy standards. As a Public Benefit Corporation, doing right by our customers and their consumers is part of our mission, too.
We’re proud that AdeptID is fully compliant with the General Data Protection Regulation (GDPR), one of the most comprehensive privacy frameworks globally.
Understanding GDPR and Its Significance
Implemented in 2018, the General Data Protection Regulation stands as the gold standard for privacy regulations worldwide, enhancing the protection of personal data while increasing obligations on organizations that collect or process this information if they are based in, or serve constituents of, the EU.
GDPR compliance demonstrates our commitment to treating personal data responsibly. Compliance includes:
- – Lawful Basis for Data Handling: Every piece of data we collect has a clear legal justification for why this data is collected.
- – Comprehensive Data Subject Rights: We fully support accessing, correcting, and deleting personal data.
- – Data Minimization Principles: We collect only essential information when needed. We never collect data revealing sensitive details such as racial or ethnic origin, political opinions, religious or philosophical beliefs, or biometric data.
- – Enhanced Security Infrastructure: We implement end-to-end encryption across all data storage and transmission layers so that personal data is stored responsibly.
- – Robust Risk Management Protocols: Risk mitigation and management plans are documented, and we’ve designated a Data Protection Officer oversight to ensure ongoing data protection compliance and improvement.
AdeptID’s GDPR compliance means our customers can confidently integrate AI talent solutions that protect their customers’ data and trust in their business. Additionally, jobseekers supported by AdeptID benefit from control and transparency around how their personal data is being used to power their career opportunities.
Our Ongoing Commitment to Privacy, Security, Transparency, and Fairness
Privacy and security aren’t one-time achievements; they are ongoing commitments that require rigorous verification. And we don’t just protect data; we ensure we’re fair and transparent with how we use it. Here are additional steps we continue to take to maintain trust.
SOC 2 Type 2 Compliance
AdeptID is SOC 2 compliant, demonstrating our adherence to industry-leading operational standards for cybersecurity and data privacy for:
- – Protecting systems against unauthorized access
- – Ensuring systems operate as committed
- – Processing data completely, accurately, and in a timely manner
- – Protecting confidential and personal information
- – Handling personal information in accordance with our privacy commitments
This certification validates that we meet the specific controls needed for handling sensitive workforce data responsibly.
Third-Party AI Fairness Audits
We undergo comprehensive annual third-party audits with our partners at CredoAI to ensure our models are fair, transparent, and free from adverse impact or bias. These independent evaluations provide our partners with objective assurance that AdeptID’s privacy and security measures meet industry-wide transparent and fair standards. The audit reports ensure our compliance with regulations such as NYC Local Law 144.
Preparation for the EU AI Act
The anticipated EU AI Act will ensure that AI systems in the EU are safe, respect fundamental rights, and foster trustworthy, human-centric AI by regulating their development and use according to the risks they pose. As a system that applies AI in a recruitment context, AdeptID will fall into the EU AI Act’s “High-risk” category.
We are not waiting to address EU AI Act compliance retroactively. AdeptID is already compliant with all expected requirements applying to high-risk systems.
Connect With Us
We believe that sustainable innovation in talent technology must include strong privacy foundations and frameworks, and we’re proud to lead by example in this essential area.
Have questions about our privacy approach or want to connect on how compliance might impact your specific implementation? We welcome the conversation.
Visit our Trust Center at trust.adept-id.com to learn more, or contact our team to discuss how our privacy-centered AI solutions can support your organization’s goals while maintaining the highest standards of data protection.