GDPR data privacy and information security at Peakon
The privacy and security framework that our team has built, combined with comprehensive annual audits from external partners, ensures that we’re fully compliant with GDPR.
You and your employees are in full control of your personal data at all times
How Peakon protects you
Years of expertise
Phil Chambers, CEO, and Anne-Sofie Nielsen, CTO, both have 15+ years of experience in building secure web applications, with strict requirements for integrity, availability, and confidentiality. They each have experience in running complex, highly available SaaS and e-commerce web applications, including Citrix and GoToMeeting.
Peakon has a mature approach to data protection and privacy. Peakon’s management demonstrates support for the data protection legislation and promotes a strong culture of data protection across the organization.
Employee awareness
In line with GDPR Article 12, we offer a variety of resources, from pre-survey communication plans, to clearly introduced survey invites, to detailed privacy policies, so employees can understand how we process data, as well as the security and anonymity that's provided.
We only work with the best
All of our subcontractors are GDPR-compliant, and you have control over certain functionalities provided by Peakon and its processors, allowing you to store employee data solely within the EEA if required.
Data processing agreement
We will state the obligations of Peakon (the Data Processor) and yourselves (the Data Controller). Along with our Terms and Conditions, this will form the contractual basis of GDPR compliance and the instructions under which we will process and protect your data.
You're in control
Peakon has designed our Platform and Data Processing Agreement to give you options and allow you to have full control. The powerful settings in Peakon empower you to control who can see and manage sensitive information. Also, we ensure that you can communicate to your employees that they are always in control of their personal data and we will support you in these efforts.
Your access-control capabilities and your anonymity and aggregation settings, as well as all the resources that we make available to ensure your employees' awareness and understanding, help to build the necessary trust that makes us your valued partner.
Powerful access control
Access Control Groups give you complete control of who can see, edit, and delete employee data. Read more about it here.
Employees in control of their own data
Employees have the right to request that their personal data is removed and deleted from the dashboard. They can also ask to reset their answers and, if enabled by your organization, update their details on attributes as per GDPR Article 16.