The EU General Data Protection Regulation (GDPR) is the most significant piece of European privacy legislation in the last twenty years. It replaces the 1995 EU Data Protection Directive (European Directive 95/46/EC), strengthening the rights that EU individuals have over their data, and creating a uniform data protection law across Europe.
Bullhorn will comply with applicable GDPR regulations as a data processor when they take effect on 25th May 2018. Working in conjunction with our clients, we will explore opportunities within our services offerings to assist our customers to meet their GDPR obligations.
We are committed to address EU data protection requirements applicable to us as a data processor. These efforts have been critical in our ongoing preparations for the GDPR:
Data processing: Our ability to fulfill our commitments as a data processor to our customers, the data controllers, is a part of our compliance with GDPR where data controllers are using a third-party like us to process personal data. Because of this requirement, Bullhorn has worked extensively with local EU counsel to provide that our Master Subscription Agreement and related agreements contain appropriate provisions for personal data we store, and balance the risks and responsibilities between data controllers and data processors.
Third-party audits and certifications: Bullhorn has the distinction of being one of the first applicant tracking systems (ATS) to be SOC 1 audited, and one of the first non-Financial industry based software-as-a-service (SaaS) companies to utilise the SSAE 16/18 framework to provide security review. Bullhorn undertakes an independent third party annual SOC 1, Type 2 audit that reviews certain of its internal controls and processes. The audit covers internal governance, production operations, change management, data backups, and software development processes. It evaluates that we have the appropriate controls and processes in place and that they are actively functioning appropriately in accordance with related standards.
The SOC program offers independent verification that our security practices offer a recognised standard of security measures. Furthermore, the program is designed to cover key elements of data processing and integrity, while maintaining auditing practices within our business and operational processes. As all customers are concerned with their data and its security, Bullhorn has integrated its SOC controls into its operating procedures. These procedures span the organisation, teams or functions that provide service or support to our clients on our platform. The key components of our SOC controls environment include:
International data transfers: Bullhorn, Inc. complies with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and Switzerland to the United States, respectively. Bullhorn, Inc. has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. To learn more about the Privacy Shield programs, and to view our certification, please visit https://www.privacyshield.gov/. Bullhorn, Inc. is committed to subjecting all personal data it receives from data exporters in any European Union (EU), Switzerland or European Economic Areas (EEA) member state, under the Privacy Shield Framework, to its applicable Privacy Shield Principles. To learn more about the Privacy Shield Framework and the Privacy Shield Principles, please visit the U.S. Department of Commerce’s Privacy Shield website at https://www.privacyshield.gov.
Data portability: The GDPR includes certain requirements on data controllers for the portability of personal data. The data our customers store in Bullhorn is theirs. We provide for portability and are continually working to enhance the robustness of our data export capabilities.
As a current or future client of Bullhorn, now is a great time for you to begin preparing for the GDPR as a data controller. Consider these tips:
Get to know GDPR: Familiarise yourself with the provisions of the new regulation, particularly how it may differ from your current data protection obligations and consider the relationships you have with both your clients and candidates. Also, note the variance of local provisions which may be superseded by the new regulations when they become EU law in May next year. Be aware that new requirements may require new solutions that meet the stringent requirements ahead.
Audit your data and processes for data capture: Consider creating an updated and precise inventory of personal information that you control. Review your current controls and processes to ensure that they're adequate, and build a plan to address any gaps. Here are some steps you can take today:
1. Review your field maps 2. Review your process documentation 3. Ensure you have a lawful basis for processing the data
Depending on your usage of Bullhorn, you may find that you have some data maintenance to conduct to be compliant with GDPR. Our professional services team is eager to help meet your needs in advance of May 25.
Stay informed: Stay abreast of updated regulatory guidance as it becomes available and consider consulting a legal expert to obtain guidance applicable to you. We recommend regular review of the Information Commissioner's website, which is the UK representative within the EU working group: Article 29.
At Bullhorn, we strive to deliver an incredible customer experience, earning the trust of hundreds of thousands of users globally. We will continue to make additional required operational changes resulting from the new legislation, and will keep our clients, partners and regulatory authorities informed throughout this process. We have an internal cross-functional team who continue to monitor GDPR as it moves to become more clearly defined over the next few months, and who will continue to inform our strategy for GDPR.
Copyright Bullhorn, Inc. 2017. This document is provided as of August 2017, for informational purposes only and not to be relied on for any reason. It is subject to change or removal without notice.
Live Demo
Vice President of Marketing
As the Vice President of Marketing at Bullhorn, Catherine is responsible for all marketing efforts across the organization. Catherine has been with Bullhorn based in the Boston office since 2010 and has recently relocated to London. Over her tenure, she’s overseen several marketing functions including demand generation, marketing operations, and events. She is passionate about marketing technology, building high-performing teams, and leveraging both to drive for results. Catherine has a Bachelor of Arts in Global Studies from Providence College.
SVP of Alliances and Business Development
Nina Eigerman is Bullhorn’s SVP of Alliances and Business Development, responsible for the company’s technology and services partnerships. Prior to joining Bullhorn, Nina ran the Business Services practice at G2 Capital Advisors, helping agencies and their providers with capital market transactions. Earlier in her career, she was the President of Aquent Solutions and a consultant with McKinsey & Company. She also ran a full desk at a-connect, a global strategic staffing firm. Nina has a Bachelor of Arts from Harvard College and graduated from the MIT Sloan School of Management.
SVP of Product and Salesforce
Jonathan Novich is SVP of Product and Salesforce for Bullhorn, the global leader in CRM and operations software for the recruitment industry. A staffing technology innovator, he has developed broad and deep product and technical experience consulting to staffing firms over the past 15 years. Jonathan has acted as an independent consultant for some of the largest staffing companies in the world and advised companies on acquisition targets. At Bullhorn, he oversees product initiatives as more than 10,000 staffing companies rely on Bullhorn’s cloud-based platform to drive sales, build relationships, and power their recruitment processes from end to end. He graduated with honors from Princeton University, earning a Bachelor of Science in Engineering in Computer Science and a certificate in Operations Research.
SVP, Global Support & Training
As Senior Vice President, Global Support and Training, J.R. leads our global Support and Training for all Bullhorn product lines. J.R. directs both the company’s customer service and training efforts around the world engaging customers throughout all points in the customer journey, both proactively and reactively, delivering incredible customer experiences via transactional interactions and client engagements. He brings a broad range of customer service leadership skills and experience to the company spanning performance management, project management, employee and leadership development, organizational design, and strategy which all align to focus on driving an incredible customer experience. Prior to joining Bullhorn, J.R. led call center optimization efforts for AT&T Mobility, directing the call center strategy for more than 100 contact centers. J.R. has spent 20 years working in the contact center space and has held a number of key leadership roles prior to joining Bullhorn.
Executive Vice President of Enterprise and Salesforce
Ryan Murphy is the Executive Vice President of Enterprise and Salesforce. He began his 10-year career at Bullhorn as a finance and sales intern, affording him a 360-degree view of the software-as-a-service industry and Bullhorn’s business model. Prior to his current role, Ryan served as an Enterprise Account Executive where he honed his customer-first leadership style and championed Bullhorn’s offerings to its most strategic clients. Today, Murphy is charged with leading the enterprise strategy and go to market for both Bullhorn and Bullhorn for Salesforce, enabling customers to maximize their investments on both platforms and deliver an incredible experience to their customers and candidates. Ryan has a Bachelor of Arts in Business Administration from Boston University.
[gravityform id=”1″ title=”false” description=”false” ajax=”true” tabindex=”500″]
Team Lead – Enterprise Solution Consultant, APAC
As GM for Bullhorn’s APAC business, Aaron McIntosh oversees all business functions in the region. He also leads the solutions consulting team locally, ensuring our customers have an incredible experience when transitioning to Bullhorn. He has over 20 years working various roles within the technology industry and joined Bullhorn in 2013 in the London office before relocating back to Australia in 2015. During his tenure, he has helped numerous customers make the move to Bullhorn including Kelly Persol, Ambition, Hudson, and many others. He is passionate about technology and in particular how technology can be used to solve business issues and problems that are inhibiting growth within recruitment businesses.
He has a Bachelor of Engineering (Electrical and Computing) with Honours from Monash University in Melbourne.
Senior Vice President, Customer Success
As the Senior Vice President of Customer Success, Tamsyn leads Bullhorn’s Services and Customer Success teams. She is responsible for successful delivery of all products and services globally and is committed to creating and maintaining incredible long term customer experiences in the candidate to cash process. Tamsyn has been delivering implementations for over 25 years with companies such as SAP, Ariba, Zuora: specialising in HR, Payroll, Procurement and Quote To Cash capability. She trained as a software engineer after studying Maths, Statistics, and Computing in England.
Interested in speaking with Sales? Give us a call at +61 (0) 2 9200 3500
Thank you. We will be in touch shortly!