What Is GDPR?
The General Data Protection Regulation (GDPR) is an EU Regulation, related to protection of personal data that took effect on the 25th of May 2018. The goal of GDPR is to protect the rights of EU citizens within data privacy and to ensure transparency, security, and accountability by data controllers and data processors. Simply speaking, it gives EU citizens the right to know what, why, where, and when their data is being processed, as well as a right to be erased or forgotten.
How Alva Labs Protects and Processes Users’ Data
At Alva Labs, we take data privacy very seriously. Below you will find a brief summary of how we process and protect your data as an Alva Labs user and how you can control it at all times.
Candidates and/or employees submit data to the Alva platform, usually in the form of a personality test, logic test, or coding test.
This data belongs to the user, which actively grants access to her data, either as an applicant or an employee. At any time, the user may revoke access to the data from any organisation.
The user can at any time delete their account along with all data that is associated with the account.
Alva will never keep any personal data longer than necessary.
All data is hosted, and protected, by Google Cloud Platform and is stored on their servers in Belgium. Alva has a data processor agreement with Google Cloud Platform.
For more information on how we work with personal data click THIS LINK.
Security Measures to Keep Our Platform Safe
Our customers’ security and integrity is very important to us and something we take seriously. Our systems are designed with Privacy by design and Privacy by default in mind. Access to sensitive data is restricted by strong authentication both internally at Alva Labs and externally. When transferring and storing data we always use recommended end-to-end encryption protocols and algorithms. We continuously run tests to ensure that unauthorised access to sensitive data cannot occur.