Slashdot Mirror

← Back to Stories (view on slashdot.org)

How Safe is Your Employment Application Data?

Posted by Cliff on from the is-it-really-safe-enough dept.

Carlos asks: "I recently returned to the U.S. after working overseas for the past 16 years. As I visit job sites and corporate sites, I'm finding two issues with applying online I hope Slashdot readers could comment on. I understand security and background checks are important to most employers. However, it seems to me that far too many online applications are asking for sensitive data, such as my social security number and driver's license number. How long is my data stored in their database? Who has access to such data? It seems that every month we hear about a company that has customer/client data stolen or mishandled. I feel that such data shouldn't be required during 'step one' (ie filling out the initial online account in the career section). I'll provide such data when I've been contacted by a staff for an interview. Do Slashdot readers simply bypass such employers, or do they just hand over their identity?" Another point relates to the pages upon pages we have to endure with an online application. Some companies make the process smooth, for example using a form of OCR with an uploaded resume. There's nothing worse than getting to step 9 (out of 20 steps) and getting a timeout error in your browser. I hope HR people who are reading this, will take a closer look at their employment process. I'm sure some readers might say, 'They make the process hard on purpose — weeding out the lazy applicants.' I fully understand this point and I'm not looking for an easy way into a company, but filling out 20 step applications at 30 companies a day, everyday, can eat a lot of time when hunting for a position."

7 of 74 comments (clear)

  1. 3P's by Anonymous Coward · · Score: 3, Insightful

    " However, it seems to me that far too many online applications are asking for sensitive data, such as my social security number and driver's license number."

    They get the SSN when you get a job. Your license number isn't really sensetive.

    1. Re:3P's by GMontag · · Score: 4, Insightful

      They get the SSN when you get a job. Your license number isn't really sensetive.

      Yes, this is true, but they don't need that info until they draw up the offer letter.

      --
      Eve Fairbanks says I drive a hybrid!LOL
    2. Re:3P's by meme+lies · · Score: 5, Insightful

      They get the SSN when you get a job. Your license number isn't really sensetive.

      Yes, this is true, but they don't need that info until they draw up the offer letter.


      Nice thought, but if you are filling out job applications on-line you are most likely not in the position to set any conditions (as opposed to using a headhunter or contacts within the company, in which case you aren't seen as riff-raff off the street.)

      I'd also add that with most companies, withholding any information they ask for will raise a red flag. If you don't provide a SSN or license number or whatever else when asked they will immediately assume you have something to hide-- such as a criminal history, a DUI, heavy outstanding debts or a lien against your wages, or the lack of legal work status. Asserting that they do not have the right to ask can just mark you as "trouble"... Companies don't tend to like employees who know their rights and take a stand to protect them.

      I'm not saying it's right, but that's the way it is. They're looking for any reason they can NOT to hire you and refusing to play along will seriously hurt your chances. Telling them they can't have your SSN until you get a contract or serious offer will, in most cases, mean you won't get it at all.

  2. technically illegal by TRRosen · · Score: 3, Informative

    most of these are technically illegal as this information would be keys to information that is not supposed to be used in the evaluation of applications sex age race etc. Seems to me if you can't ask for someones age you really shouldn't be able to require a copy of a drivers liscence to apply!! (actually that would include age race and sex on the card)

    1. Re:technically illegal by Anonymous Coward · · Score: 3, Insightful

      technically illegal? oops looks like we have somebody without herd mentaltity applying for the position.. umm. oops.. I mean... "the position has been taken by a candidate with more on-job experience"

  3. Don't worry... by technos · · Score: 3, Interesting

    In the last ten or fifteen years at up to a dozen different places I've only ever seen one storage system for applicants that didn't get the job: Box in the back of a storage closet.

    No one knows it's there except the HR drone that hid them, and the closet is locked because it also contains said HR drones stash of candy and Garfield posters.

    In fact, it's probably better protected than information people want. In those same places, sales records, customer billing info and record on current employees were treated with less security.

    --
    .sig: Now legally binding!
  4. my experience as a criminal background researcher by Anonymous Coward · · Score: 5, Interesting

    I've been working as a criminal background researcher for a company that gets hired to do pre-employment background checks. I'd describe the security protocols as being more than lax:

    a.) I receive the lists of people to check over a non-encrypted HTTP connection. These lists include name, DOB and SSN. (I'll admit to making it worse by accessing this non-encrypted website over my neighbors open wi-fi connection.)
    b.) The background checking company gives no instructions about how to treat the data, how to destroy the data after it's been used, etc...all of which seem de rigeur in today's world.
    c.) The issues applying to a.) also apply to the government court websites used to check the data.

    Background checking companies are often just run by ex HR people, and, as you can expect, many of them are not trained in security issues like this.