Anyone who has worked in or around the Search industry will have heard rumours of people leaving Search firms and taking data with them. More often than not, this doesn’t make the headlines, but a case in the US has the potential to. From press articles it would appear that Spencer Stuart is suing Korn Ferry and one of its former recruiters for – amongst other things - allegedly taking proprietary data from Spencer Stuart.
Security of data has always been a hot topic in Search and one we are often asked about. It’s about to become even hotter – when GDPR kicks in next year it will become a legal necessity for any Search firm which stores data on European candidates to report a potential breach to the authorities (and, potentially, to affected candidates) within 72 hours of the breach happening.
It’s vital, therefore, that Search firms think about data security. In our FileFinder Anywhere platform, Search firms are able to manage user permissions to ensure that access to candidate data is limited to those that should have it; to stop users exporting data, and to track exports that are undertaken.
Of course, settings can only go so far. Key to GDPR is where your data is stored. With typical FileFinder Anywhere configurations, data is stored in the cloud and never cached on local machines. Right now, there will be hundreds of search consultants wandering around the World with data on laptops, cached in Outlook or saved in Excel. It’s very difficult to police everything a user does with your data in configurations like this.
We’ve put together a white paper on GDPR, and there is also an on demand webinar on our website at www.dillistone.com. Well worth a read!
This recruiter mailed information to his personal email address and copied files to a USB drive in the days before his December resignation, the lawsuit alleges. The data included reports on two searches for vice president positions at Nissan.