Becoming GDPR Compliant – Step 5 of 12

Posted · Add Comment

In Step 2 of our GDPR blog series, we talked about the importance of data mapping: knowing where data is being sent to and who is handling it.

In addition to the obligation to map data, data controllers are obligated to ensure that their vendors properly handle the personal data entrusted to them.

As we have seen with data mapping, there is usually a data processing chain created when conducting pre-employment screening – so any data controller should look at two things:

  1. How it handles the relationship with its data processor (which we’ll explore further in a future blog post within this series)
  2. How that data processor manages its own vendor relationships

Now it’s time to continue the journey with Step 5 on the road to GDPR compliance:

“Vendor management – Through the GDPR looking glass”
In Step 5, you will learn:

1. The Past – The wrong side of the looking glass

2. The Future – Through the looking glass

3. The Present – Stepping into the looking glass

Click to read the full blog on our EMEA site

*Did you miss Step 4? Read it here.

Download: The 2017 Employment Screening Benchmark Report
The 10th Annual HireRight Employment Screening Benchmark Report

The most comprehensive global survey of its kind – providing 10 years of insight on industry best practices.

Get Your Copy Now!


HireRight is a leading provider of on-demand employment background checks, drug and health screening, and electronic Form I-9 and E-Verify solutions that help employers automate, manage and control background screening and related programs.

More Posts

Follow Me:
TwitterFacebookGoogle Plus



The HireRight Blog is provided for informational purposes only. It is not intended to be comprehensive, and is not a substitute for and should not be construed as legal advice. HireRight does not warrant any statements in the HireRight Blog. Any statutes or laws cited herein should be read in their entirety. You should direct to your own experienced legal counsel questions involving your organization’s compliance with or interpretation or application of laws or regulations and any additional legal requirements that may apply.