Skip to content

Safety and compliance

It is very important to know who you are hiring, but not at any cost. The privacy of the candidates and employees who are being screened is very important. Also, the process and all personal data should be well secured. In short, being GDPR compliant and ISO 27001 certified play a big role in the screening process.

Why is security so important during employment screening?

It is very important, because a screening software needs to process and verify confidential information (personal data). Security and privacy are central to Validata, which is why our software, Valluga, complies with all regulations regarding privacy and data protection.

If the company fails to comply with these, it can have unpleasant consequences:

  • Discouraging candidates from being screened: If an organisation is unable to ensure a secure and transparent screening process, this may even discourage candidates from applying there.
  • Large fines: If an organisation fails to comply with the GDPR, this could result in fines in the worst case scenario. These fines can be significantly high and can hit organisations really hard financially.
  • Reputational damage: Failure to comply with the GDPR can lead to major reputational damage. Companies are less willing to engage with you, because your organisation has shown that they are not careful with personal data.
Integrity statement Validata on a phone

How do we ensure the security of our screening software?

  1. Privacy by design: We ensure that the requirements of the GDPR are already accounted for in the development of new processes and systems. By using privacy by design at an early stage, optimal security of personal data can be guaranteed from the start and organisations can be sure that they rely on an organisation that complies with the GDPR.
  2. Security by design: To guarantee our screening software’s security, Validata uses secure frameworks and continuously monitors and scans the application daily for vulnerabilities. As a result, the safe and precise in-house development team delivers a secure screening application hosted within the EU at a top-tier data centre. Additionally, it is periodically tested through penetration tests and ethical hackers by independent parties.
  3. ISO certified: Validata is also ISO certified (27001 & 9001). This guarantees high quality management and information security.

How do we comply with the GDPR legislation?

GDPR proof refers to compliance with the General Data Protection Regulation (GDPR). This means that Valluga complies with the requirements of the GDPR. Validata processes certain personal data based on the instructions of the client, who is the data controller.

Nevertheless, as a data processor, Validata also has obligations under the GDPR. For example:

  • Data processing agreements (DPA): these must be signed with each client. These include the basis of the data controller.
  • Transparency: A company must clearly disclose what personal data is collected, why they collect it and how they handle it.
  • Data minimisation: Only the data necessary to achieve a certain purpose should be collected.
  • Data breaches: Data breaches should be reported to the data controller as soon as possible.

Validata has its own Privacy Counsel, a separate Data Protection Officer (DPO) and also a processing register.

Valluga, the screening software of Validata

We believe that processes should be made as efficient and easy as possible. From this vision, our software, Valluga, was born. Valluga is our software that ensures that your employment screening process is handled professionally, securely and digitally.

Learn more about our screening software

Challenges in employment screening

  • Time-consuming task to gather correct information
  • Complicated to actually check documents and information
  • Increasing laws and regulations around employment screening
  • Higher risk of human errors
  • Process often unclear and not secure enough
  • Poor candidate experience

Benefits of the screening platform Valluga

  • Validata takes all work of your hands
  • Different screening profiles possible
  • Process is digitised and automated
  • Transparant process for client and candidate
  • Both local and international checks via data partners
  • Sub-reports and a completed screening report
  • Valluga complies with all laws and regulations

What is the ISO 27001?

Developed by the International Organisation for Standardisation (ISO), ISO 27001 defines the requirements for establishing, implementing, maintaining and continuously improving an Information Security Management System (ISMS) within a company. Its purpose is to help organisations adopt a systematic and proactive approach to information security.

By meeting the high requirements of our ISMS, which is ISO 27001 certified, information security risks are better understood and identified.

How does a company meet the requirements of ISO 27001?

Risk assessment

Information security risks are identified and these determine what measures are needed to control them.

Policy creation

Policies should be set up so that the organisation’s information security objectives can be achieved in a proper and secure way.

Implementation of security measures

By implementing the established measures, all information is protected against identified risks.

Awareness and training

Creating awareness and training staff on information security is important to reduce risks.

Internal audits

By having systematic and independent assessments audits check your organisation, it becomes immediately clear where there is room for improvement and what is already going well within the ISMS.

Continuous improvement

The ISMS must be monitored and evaluated to constantly improve information security and security risk management.

The most complete screening software

Validata’s screening software is not only very secure, but has numerous other functionalities that set us apart from our competitors. Curious?

Book a free demo

This site is registered on as a development site.
Select the region you are in: