General Data Protection Regulation (GDPR)

We do a full review of our GDPR measures in January and July each year, and keep this page updated as Skillhood becomes more complex and security requirements develop. These measures follow EU guidelines in relation The General Data Protection Regulation (EU) 2016/679 (GDPR) and align with South Africa’s Protection of Personal Information Act No. 4 2013 (POPI).

How we store

We maintain an encrypted record of your Skillhood password in association with your email address to allow you to access your account. Within Skillhood, we retain a record of your verified employment history as well as information that you choose to include in add and keep within your Settings. When you choose to delete aspects of your account, they are removed forever and can not be redeemed.

We encrypt your data at rest and in transit. Your personal details are stored in Amazon Web Servers (AWS) alongside records of your behaviour within the app. At any given point, you can request to view, amend, export or delete information that we hold in relation to your Tendo account.  Within the Tendo team, user data is only accessible to full-time employees who have been trained on how to protect their devices.

Who can access what we store

Since Skillhood does not sell your profile to advertisers, the only people who have access to your personal data are those you proactively give access to. The default setting is for your profile to be private, functioning like a Google Doc. You might share your account with a prospective or current employer.

Skillhood’s designated Data Protection Officer (DPO) is Will Ross who can be emailed at

Crisis resolution

In the case of a data breach when user data is either compromised or deleted, affected accounts are emailed within 72 hours of it being noticed.

Learn more

If you are UK-based and want to become more familiar with your rights, view a resource from the Information Commissioner’s Office,

Page last updated: July 2023