It is in a company's legitimate security interest to check information provided by potential employees. A PES is carried out for risk-sensitive positions in order to minimize the associated risks. The focus is on protecting employees and assets, and there are legal requirements to check applicants for certain positions.
A signed validation authorization is always required. Depending on the scope of the check, a CV, copies of certificates or ID cards and other documents relevant to the checks may be required.
The signature is voluntary and can be revoked at any time. PES only verifies application data and publicly available information that is relevant for a risk assessment of the position you have applied for.
The signed validation authorization is shared only when requesting information from educational institutions or previous employers. All other documents are solely used for internal processing and are never forwarded. For applicants living abroad, it may be necessary to submit copies of certificates and identity documents to institutions providing information.
The information you provide in your CV. This includes your registered address, academic degrees and employment relationships with their respective time periods. If it is relevant for the future position, publicly accessible sources of information (e.g., professional social networks) may also be used.
The PES team initially contacts the organization or institution by phone in order to identify the appropriate contact person. A formal request is then usually made in writing, at which point the validation authorization is transmitted.
Naturally, your wishes will be taken into account and respected. Please inform us of this in good time, e.g., on the validation authorization document or via your future employer.
No, everything that will be checked is detailed in the validation authorization document.
Personal data is only processed for verification purposes. All data relating to the processing is treated confidentially and is never passed on to third parties.
In accordance with the contractual agreement, your data will be completely erased three months after the release of the final report. In addition, in accordance with Art. 15 of the GDPR, the applicant is entitled to have access to their personal data at any time and, if necessary, to initiate early deletion in relation to the potential employer & data controller (Art. 17 GDPR).
After a period of exactly three months, all personal applicant data is deleted from the DISA systems. If an applicant withdraws their validation authorization during the PES process, the commissioning company (which has sovereignty over the applicant data) must initiate the termination of the Pre-Employment Screening. All verification processes are terminated with immediate effect, and this is documented in the final report.
To inquire about the status and content of the screening, applicants must contact the client, i.e., the potential employer. As a data processor and service provider, DISA is not authorized to provide applicants with information about the screening.