GDPR Compliance at JobTeaser
Access to data within JobTeaser platform is governed by access rights. JobTeaser has various permission levels for users (student, recruiter, administrators, super-administrators, JobTeaser staff, etc.).
JobTeaser’s approach for defining access privileges and roles is to provide predefined roles with the appropriate permissions covering the most common use cases and best practices. As so, it keeps it simple to understand for super-administrators (either customers, partners or JobTeaser’s staff) that are responsible for giving access privileges to other users. This ensures that the appropriate roles are given to users, fitting their needs, enabling to follow the least-privilege principle. Defining too many roles or enabling too much granularity to define privileges and roles will generally lead into a lower security level because administrators tend to give broader privileges than necessary due to the complexity of the roles configuration.
Roles and permissions differ depending on the application. The main roles are described below.
Several roles exist for administrator, providing different set of privileges based on the role of the company’s collaborator:
Several roles exist for administrators, depending on their role in the school or university staff. Privileges, in particular access to student data, depend on the role.