GDPR-compliant sourcing platform

Sourcing withoutthe data-protection headache.

Sourcing in DACH means using publicly visible profiles in a targeted way without violating GDPR. Talentwunder is built for exactly that as a Berlin-based GmbH, and treats data protection as a default, not an add-on.

Berlin GmbH · External DPO · Model DPA · Data protection by default

What is a GDPR-compliant sourcing platform?

A GDPR-compliant sourcing platform searches only publicly accessible sources, processes personal data on a clear legal basis, documents retention periods and a deletion concept, and provides a data processing agreement (DPA). Talentwunder meets these requirements as a German GmbH with an external data protection officer and treats GDPR as the precondition, not a marketing label.

Sourcing without compliance isn't sourcing. It's an open risk position.

How we cover this technically and contractually

The four building blocks our customers cite in their own compliance reviews.

  1. 01

    Public sources only

    We index publicly visible profiles only. No scraping of password-protected areas, no circumvention of platform policies.

  2. 02

    Clear legal basis

    Processing on the basis of legitimate interest (Art. 6 (1)(f) GDPR), documented in the record of processing and the DPA.

  3. 03

    Actionable data subject rights

    Access, rectification, deletion, objection. Defined processes instead of ad-hoc promises. Escalation path via our DPO.

  4. 04

    DPA before contract

    A model DPA is ready. It's signed with every customer as standard, before any data is processed.

Hosting region, SOC 2 and ISO 27001 status are currently being brought up to date. Until the new reports are out we answer hosting and certification questions verbatim on request.

Common questions for this page

The most relevant answers at a glance. The full catalogue lives in the FAQ.

  1. Yes. Talentwunder GmbH is based in Berlin, works with an external data protection officer (SECUWING GmbH & Co. KG) and is built to enable GDPR-compliant sourcing. ⟨Extended once SOC 2 / ISO 27001 / EU hosting are confirmed.⟩
  2. Talentwunder GmbH is based in Berlin and bound by GDPR. We share details on the current hosting stack on request and under NDA.
  3. Yes. We provide a template DPA before contract close and sign one by default with every customer.
  4. We share the SOC 2 / ISO 27001 status on request.

See all 18 questions

Two ways in. Both free.

Talk to a product expert or read yourself in first. Both work.

Live demo, 20 minutes

No sales deck. We walk you through the product against your use-cases.

Facts first

18 answers on category, product, pricing, and compliance. Structured catalogue.