The General Data Protection Regulation (GDPR) goes into effect in the European Union on May 25, 2018. It will expand upon data privacy rights, requiring companies to safely and securely collect and process personal information. Its goal is to improve and protect personal data and information.
The GDPR applies to all companies with locations in the EU, as well as for all companies who handle and process the personal information of EU citizens. It expands upon the data privacy rights of these persons and applies not only to large companies, but to small and medium-sized businesses as well.
Privacy is a top priority at absence.io. Our vision is to simplify your HR processes, which of course also means helping you to work in full compliance with the GDPR. This is why we have thoroughly analyzed the requirements of the GDPR, and are currently re-evaluating all of our processes and procedures accordingly. We will be expanding upon our software, contracts, and documentation to ensure the absolute best protection of your data and the information of your employees.
All of our software applications are configured with data privacy-friendly basic settings. As an absence.io customer, you’re able to allocate different roles to you and your team depending on what you require: Owner, Admin, HR, and User. Owners can see and manage all details of the account, including upgrades and account cancellations. Admin and HR only have access to functions specifically assigned to them, while Users only see their own and the team's absences.
Our employees' access to information is based on a need-to-know principle. They are only permitted to access certain data where a justifiable need exists to do so. For example, if a customer contacts our support with a problem, the corresponding employees do have access to his or her information to effectively respond to the support request. In addition, our IT developers are permitted situation-based access to customer information to continually develop and improve our software. We will be re-examining this concept based on the changes produced by the new regulation.
A fundamental principle of the new General Data Protection Regulation is data economy. At absence.io, we collect data and information only when it is absolutely necessary for the applications of our software. Let’s say you sign up for a free trial. This means we’ll have to store your name and email address to give you access to our software. Any additional information will not be collected in this case.
We protect all personal data using Transport Layer Security (TLS) encryption. We additionally use HTTPS encryption in our software and on our website. Whenever a data transfer occurs, your data and information are not visible, and protected from third-party access.
absence.io's data and information are hosted on LimTec servers in a data center in Germany.
We have a data protection officer who assists us with any data privacy questions, concerns, and issues.
Our solution carries the “Software Made in Germany” quality seal which stands for top quality, groundbreaking innovation, proven solutions, an the very best in customer service.