Data security during video interview, security with Cryfe
User and interlocutor
As a User, you agree that part of your personal data can be read on the recorded video, in a real situation of interview, of interpersonal communication.
Your interlocutor (for example the candidate) must sign a document certifying that he has understood this statement and that he agrees with it so that his data can be analyzed (according to the Swiss and European privacy laws (FADP / GDPR). He can give his consent either for the sole purpose of analyzing his data for the interview, or also to help Cryfe™ improve the performance of its algorithms.
As a Cryfe user, you will find in your account the legal documents necessary for the interlocutor’s acceptance of the terms to the Swiss and European privacy laws (FADP / GDPR). You will be able to send these documents to your interlocutors before your interviews, to allow them to read them in advance and give their informed signed consent.
As an interlocutor, you can ask your interviewer to send you your video and have the possibility to send it to Cryfe for analysis, on a personal user account.
The algorithms behind Cryfe™ are organized into microservices. Only the microservices of sentimental sentence analysis, to establish whether a sentence is positive or negative (which is a part of the audio signals), does not go through Cryfe™ but through a Google algorithm. Only the voice is sent there, without any other data.
The candidate’s data are pseudonymized and it is therefore impossible for Google to link the voice to a person.
All other data coming from audio signals (such as diarization, energy or tone) and visual signals (facial expressions, gestures of comfort, pacifier and discomfort) emitted by the interlocutor are analyzed exclusively by Cryfe™.
Hosting and processing provider
The Cryfe platform operates on the Google Cloud service.
The data exchange is encrypted from end to end and the security of the data is ensured by several layers of encryption to protect the customer data stored in the Google Cloud products.
Data storage is provided by the Google Storage service, where data is automatically encrypted.
All data stored in the Google Cloud Platform is encrypted at the storage level.
CM Profiling SARL, in its capacity as data controller, has taken all technical and organisational measures to ensure the proper processing of personal data and in particular data security. A processing regulation has been drawn up, which sets out the processing and the measures taken to ensure full legal compliance.
For more information, please refer to the CM Profiling GTC.
Note that Cryfe™ has integrated a DPO (Data Protection Officer) to its team. This person is responsible, among other things, for ensuring the internal application of the requirements for the personal data processing. The DPO carries out this activity in complete independence. If you would like to know more about the data processing process or have any other questions, you can contact her at any time by clicking here.