randstad & GDPR.

The General Data Protection Regulation (“GDPR”) came into force on 25 May 2018. This new data protection law emphasizes the importance of personal data in our society and gives the “data subjects” more means to ensure their rights are protected and are consistent with an EU wide standard. As personal data is of critical importance for Randstad’s business, Randstad is committed to the protection of personal data of (among others) our employees, candidates, clients and suppliers.  Our core values and business principles also align with the principles of the GDPR.

what steps has randstad taken to align with the GDPR requirements?

Randstad’s services and our digital strategy are dependent on a strong data protection foundation.  Our local teams have been working hard to to ensure compliance with the GDPR and implement our new Randstad Group Data Protection and Information Security policies. These policies support us in ensuring our business practices align with the new regulatory framework. Examples are:

  • Privacy notices have been updated
  • Training and awareness has been increased
  • Processes have been updated where needed
  • Privacy & Security by design is applied and included in our application life cycle
  • Cookie management is continuously being improved using cookie management tooling

Substantial progress has been made on these topics and continued attention is required to consolidate and improve our performance and resilience and live up to our core values and brand promise.  All Randstad employees are committed to this vision. Data and technology present huge opportunities for the employees, candidates, suppliers and clients of Randstad. It is in Randstad’s best interest to ensure that opportunities and risks related to the use of data are known and managed in a professional manner. As our business processes rely on data, and will be increasingly more data-driven moving forward, data protection will remain core to our strategy.

what does this mean for candidates, clients and other stakeholders?

We expect our employees to treat all personal data in an appropriate and lawful manner, respecting the rights and interests of each individual. For this purpose, Randstad’s Group Data Protection Policy sets out the minimum compliance standards for collecting and processing personal data and provides consistent safeguards for the handling of personal data by Randstad. We continually review and monitor compliance with the Randstad’s Group Data Protection Policy - we do this via our key control framework and internal in-control statement process, quarterly data protection compliance reviews, and risk-based internal and external audits.

We ensure that the personal data we handle is collected and processed fairly and lawfully and used in a manner appropriate for the purpose for which it was collected. We take all necessary measures to ensure the accuracy, security and confidentiality of stored personal data and do not keep it longer than is required to fulfill its business purpose. Particular care is taken when transferring personal data to third parties to ensure an adequate level of protection for such personal data.

Our principles apply to all the personal data we process. So if you are an employee, candidate, client or supplier and you have any concerns on how your personal data is treated you can contact Ioulia Romaidou, Data Protection Officer, using the following contact details: address: 2 Mesogeion Av. & Sinopis str., Athens Tower, Building A, Athens, 11527, telephone no: +30216 6008330, email: iromaidou@randstad.gr to share your concerns or, alternatively, if you want to share any serious concerns anonymously you can make use of the integrity line under our Misconduct Reporting Procedure.