Superset Recruitment Management and Campus Recruitment Process - GDPR


Superset and GDPR

India currently does not have a data protection law enforced. However, to maintain the highest standards of data security and privacy for its users, Superset complies with all GDPR principles, for its users in India, EU and other countries.

 

What is Superset's take on GDPR?

At the onset, GDPR may look intimidating making it harder for software companies to access user information. However, it also provides provider with an opportunity to reconnect with their audience and strengthen the brand-consumer relationship. We take this opportunity to inform users of the data we collect and how we use them, and make them aware of their rights which can be reassuring and builds trust.

How does GDPR apply to Superset?

When it comes to using of our platform by Superset clients, universities, employers and students, Superset is both, the Data Controller and Data Processor — and this means that Superset.

Superset's commitment to data security and privacy?

At Superset, we believe in “security by design,” meaning that we have built security into the core of our product and have made it a key focus area since day one. Superset’s security by design committee meets on a regular basis to review, discuss and implement privacy principles in the design and development of the features, functionalities, and operations of the Superset. Superset’s security by design committee includes manager level employees from product, engineering and operations organizations together with Superset's privacy and security teams.

Rights of Users

Under GDPR citizens of EU have right to consent, reject, erase, and control personal information companies collect for business purposes. In general, it provides users with more freedom and control over what information they share with companies and how companies can make use of it.

  • Right to be informed

    What does this mean?

    The GDPR throws emphasis on how data controllers handle user personal data. Under GDPR, data subjects need to be made well aware of how brands collect, store, and process critical customer data.

    Superset recommendation Under GDPR, Superset informs all its customers, while signing up on Superset platform, about Privacy Policy, what Personal Data will be collected by Superset, and how it will be used, in simple language.

  • Right to Access

    What does this mean?

    The data subject under GDPR has the right to:
    Confirmation that their data is being processed; Access to their personal data; and Other supplementary information – this largely corresponds to the information that should be provided in a privacy notice (see GDPR Article 15).

    How is Superset compliant with this right?

    Superset users can ask for information on how their personal data is being used, at any time, to which a copy of the usecases are provided. Also, users can download and export a copy of all their personal information in PDF, Excel files, or other user consumable formats, for free.

  • Right to Rectification

    What does this mean?

    Data subjects, under GDPR, are entitled to have personal data rectified if it is inaccurate or incomplete.

    How is Superset compliant with this right?

    Superset customers can update all of their information at any point of time, by logging in to their account, without need of any manual support from Superset staff.

  • Right to Erasure

    What does this mean?

    The Right to Erasure, also known as the ‘right to be forgotten’ allows users to have their data removed from specific systems used for processing or holding their data.

    How is Superset compliant with this right?

    To help Superset users delete their data from Superset database, a Permanently Delete option is provided on all user profiles. Clicking on this, will permanently delete all personal informatio of the user. Please note that deleting the data does not automatically stop processing additional data that Superset receives for the user.

  • Right to Restriction of Processing

    What does this mean?

    Data Subjects have the right to ‘block’ or suppress processing of specific subsets of their personal data in the event of inaccurate or improperly obtained data. When processing is restricted, you are permitted to store the personal data, but not further process it. You can retain just enough information about the individual to ensure that the restriction is respected in future.

    How is Superset compliant with this right?

    Superset provides an option to every user under their profile, where they can opt-out of specific kinds of data processing by Superset.

  • Right to Data Portability

    What does this mean?

    The right to data portability allows individuals to obtain and reuse their personal data for their purposes across different services.

    How is Superset compliant with this right?

    Similar to Right to Access, Superset users can download their information in Excel Files, or SQl files, and choose to port them to any other platform of their choice.