Data privacy consent

Owned by Nina Praß
Last updated: Oct 29, 2020 by Kit Kuksenok (Unlicensed)
3 min read

You can see an example of data privacy statement here.

Since many countries (including EU countries with the introduction of GDPR) now have certain data privacy consent requirements, we recommend including a notification that the user’s data will be processed during their journey (especially if job application is enabled in the chatbot). 

In our chatbots, we differentiate between soft and hard data privacy consent. When hard data privacy consent is enabled, the user is forced to accept it before they can move on in the flow. Soft data privacy consent allows the user to continue talking with the chatbot without performing such action.

This method is applicable only to WebMessenger chatbots, because they are only accessible from the level of your website. For other platforms, we recommend including the data privacy consent in the chatbot itself.

A perfect example of a soft consent is the Cookie notification bar. The user, by accessing the chatbot via the website, agrees to the data privacy statement displayed in your Cookie notification bar. The advantage of this method is that the conversation in the chatbot starts with the welcome message and continues smoothly with the menu options. If you choose to use this option, we recommend adjusting your data privacy statement to include chatbot-specific privacy rules.

Due to the nature of text-based chatbots, data privacy statements may look slightly different than described. To learn more about those differences please follow this article

Most chatbots have data privacy statement at the beginning of the conversation (before the welcome message) but in some cases, you can also include the statement at the beginning of the application process:

  1. Data privacy statement at the start of the conversation.

    1. Hard consent.
      At the beginning of the conversation, the candidate may be required to give their data privacy consent. The button Data Privacy details is linked to the data privacy statement, which is usually hosted on your side and should be provided during the chatbot implementation stage. In case a user writes anything in the chatbot, the data privacy statement will be displayed again. Before the user clicks Accept and Continue, the chatbot will not be accessible to them.
      Message and buttons are adjustable during the implementation stage. 

       

    2. Soft consent.
      You can also set up a soft acceptance at this stage and inform your users that by talking with the chatbot, they automatically agree with the data privacy statement. This message would usually appear first and be automatically followed by a welcome message.

       

  2. Data privacy statement before application.

    1. Hard consent.
      We can also set up data privacy consent before your user has a chance to apply for the selected position. In the case that you decide to not include a data privacy statement at the beginning, it is advisable to do so at this stage.
      As with the data privacy consent at the start of the chatbot, the user can see the data privacy statement and has to agree to move on by clicking the Accept and Continue button. Once they do, they will be able to access the application summary and send their application.

    2. Soft consent.
      We can also implement a soft privacy statement at the beginning of the application process. Once the user triggers the process, we can display a message indicating what will happen with their data and include a link to a data privacy statement.