This article provides information on the scope of our support in relation to the list of data processing activities.
Pursuant to Article 30 of the EU General Data Protection Regulation, you as the customer have to keep a record of all processing activities that are performed within your responsibility.
This obligation applies to you if your company has more than 250 employees or if the processing activity involves a risk to the rights and freedoms of the persons concerned, which is usually the case for the processes in human resource management and recruiting. For this reason, we have compiled a list of the main processing activities within the Personio software.
Please note that we have kept this information as universally valid as possible, so that it can be used to the greatest extent by all of our customers. However, since you know your processes best, it is important that you review the information provided to make sure it is complete, and adjust it to your circumstances.
Please send an email to datenschutz@personio.com to request a template with the corresponding information. The template is intended as a suggestion only, without any claim to completeness or accuracy. In particular, you are required to add any further processing activities that you perform outside Personio in human resources and recruiting, such as postal applications, unsolicited applications outside Personio, or your talent pool management. You therefore have to adjust this template to suit your specific requirements, and add any missing details.