GDPR and psychometric assessments, by Thomas International

WEBINAR REPLAY: Minimising bias in decision-m...Q&A with Ian MacRae: The Centennials are comi...

Thomas International is committed to supporting data protection, and want to reassure you that taking Thomas assessments has no negative data implications and that we are a trusted advisor for anyone using assessments, regardless of the provider.

What is GDPR?
On 25th May 2018, the General Data Protection Regulation (GDPR) comes into effect. The GDPR is a new European-wide law that places greater obligations on how organisations handle ‘personal data’ in the EU. Personal data includes an individual’s contact details, identity, posts on social media and health information. Employers now need the consent of EU citizens to process their data and individuals have greater control over what companies can do with their information.

What are your rights?
Under GDPR, our customers have the following rights;

  • The right to be informed how their data is being used
  • The right to access their data
  • The right to rectification where their data is inaccurate or has changed
  • The right to erasure of their data
  • The right to restrict processing of their data at their discretion
  • The right to data portability should they wish to store a copy or transfer it
  • The right to object to the use of their data
  • Rights in relation to automated decision-making and profiling

What are subject access requests (SAR)?
You have the right to get a copy of the information that is held about you. This is known as a subject access request. This right of subject access means that you can make a request under GDPR to any organisation processing your personal data, including Thomas International. Under GDPR, our employees can make data requests via our Subject Access Request process by contacting [email protected].


Download the Thomas SAR Factsheet here

Privacy information
The data that we provide to our customers is:

  • Concise, transparent, intelligible and easily accessible
  • Written in clear and plain language
  • Free of charge

Lawfulness of data processing
Our practices ensure that data is processed lawfully, fairly and in a transparent manner in relation to each individual.

Our consent obligations are specific and granular, ensuring that each individual is offered genuine choice and control.

In the case of children using our psychometric assessments, we always capture parental consent in accordance with government guidelines.

In our 37-year history we are proud of the fact that we have not had a data breach.

Where does Thomas International store data?
Thomas International stores data solely within the European Economic Area here.

Privacy by design
We take our obligation under the GDPR to protect personal data very seriously. We have a history of implementing the most stringent security measures when it comes to personal data, and we are focused on continuing data compliance at the highest technical level.

Does Thomas International employ someone who monitors internal compliance?
Thomas International UK has an appointed Data Protection Officer.

Want further reading about GDPR?
Check out, a resource designed to educate the public about the main elements of GDPR.

If you require more information about Thomas International and our GDPR commitment, please feel free to email [email protected].