Workbloom is committed to supporting organisations in meeting applicable data protection requirements, including obligations related to the General Data Protection Regulation (GDPR). Personal data processed within the platform is handled in accordance with applicable legal and contractual requirements.
Employee information imported into Workbloom is stored and processed to support reward programme administration and related platform functionality.
Employee data may include:
Only authorised users should have access to employee information.
Data may be retained for operational, reporting, compliance, and legal purposes in accordance with Workbloom policies and applicable regulations. Retention periods may vary depending on the type of information involved.
Strong passwords help protect Workbloom accounts and organisational information from unauthorised access. Passwords should meet the security requirements established during account registration.
When creating an account, passwords must include:
Employee information should be managed responsibly throughout the reward programme lifecycle. Administrators are responsible for ensuring imported information is accurate, relevant, and appropriately maintained.
Organisations using Workbloom are responsible for ensuring that employee information is collected, maintained, and processed in accordance with applicable legal and internal requirements. Administrators should ensure that appropriate controls are in place for managing employee information and platform access.