Creating Data Privacy Consent Statement (DPCS)

Objective

After completing this lesson, you will be able to configure data privacy statements.

Personal Data Handling - Data Privacy Consent Statement

The Data Privacy Consent Statement allows customers to present a candidate with a notification detailing how the customer handles the candidate's personal data. Candidates must accept this statement before entering their data.

The Data Privacy Consent Statement has the following versions, 1.0 and 2.0.

DPCS 1.0 allows customer to provide a data privacy prompt for internal and external candidates in the candidate's preferred language. This version should be replaced with DPCS 2.0.
DPCS 2.0 allows customer to provide a country/specific data privacy prompt for internal and external candidates, in the candidate's preferred language.

Customers can track and report on candidates' DPCS acceptance to ensure that candidates have willingly submitted their data to the database. The tracking and reporting of the acceptance also helps all parties realize how candidate data is used and handled.

Functionality can support multiple languages, depending on what language packs have been enabled in the instance.

Data Privacy Consent Statement - Permissions and Management

Appropriate permissions have to be granted to the user for managing Data Privacy Statements:

If role-based permissions are used: Manage Permission Roles→Manage Recruiting→Manage Internal and/or External Data Privacy Consent.
If customer uses legacy permissions: Manage Recruiting Administration→Manage Internal and/or External Data Privacy Consent.

To create or update the Data Privacy Statement, proceed as follows:

Open the Admin Center.
Select Company Settings.
Select the Data Privacy Statement.
Select an existing template or create a new template.

Internal Data Privacy Consent Statement

The Internal Data Privacy Consent Statement is triggered the first time an employee creates a candidate profile or applies to a job posting. If the statement is accepted by the candidates, the candidates can proceed with the expected action. If the policies are declined, the candidate profile is removed, applications are anonymized, and candidates are sent to a new candidate status.

If further edits are made to the data privacy consent, all applicants need to agree to the new policies.

External Data Privacy Consent Statement

The External Data Privacy Consent Statement is viewed by external candidates upon candidate account creation.

If this feature is enabled, all external candidates must agree to the statement to create their candidate accounts. If the statement is accepted by the candidates, the candidates are allowed to proceed with the expected action. If policies are declined, the account is removed, applications are anonymized, and candidates are sent to a new candidate status.

If further edits are made, all external applicants need to agree to the new policies.

Login Data Privacy Consent Statement

The Login Data Privacy Consent Statement is triggered by logging in to the SAP SuccessFactors instance.

If employees decline the statement, they cannot log in.

If edits are made, employees need to re-accept the new statement in order to log in.

Next lesson