DataGrail helps Greenhouse Recruiting customers comply with Europe’s (GDPR), California’s (CCPA), Nevada’s (SB 220), and similar privacy regulations. The regulations require on-demand access and deletion of a requester's personal data -- particularly anything that may be associated with an email address -- across all first and third-party/external business systems.

Greenhouse Recruiting’s integration with DataGrail allows Greenhouse customers the ability to request and delete personal data. DataGrail also allows for the unification of communication preferences via a Preference Card that integrates with all the leading communication systems.

Create a Harvest API Key for the DataGrail integration

To configure the Greenhouse Recruiting / DataGrail integration, you'll need to create a Harvest API key.

Follow the steps in this article to create the key, and verify that the credentials and permissions below are selected when configuring the DataGrail integration.


In the Create New Credential box, make the following selections:

  • API type: Harvest
  • Partner: DataGrail
  • Description: DataGrail Harvest API Key


Verify that the following permissions are selected for the DataGrail integration:


  • GET: List Users


  • DELETE: Delete Application
  • GET: Retrieve Application
  • GET: List Applications


  • DELETE: Delete Candidate
  • GET: Retrieve Candidate
  • GET: List Candidates
  • PUT: Anonymize Candidate

Use the DataGrail integration with Greenhouse Recruiting

After the integration is configured, your team that handles Privacy Requests can request a candidate's record from Greenhouse Recruiting to process a candidate's privacy request. Because this action is handled through the API, the team won't need to log into Greenhouse Recruiting to get information about the candidate's record.

If any additional action is needed from a Greenhouse user, the privacy team should consult with the Greenhouse Admin.

Additional support

Contact for troubleshooting assistance for this integration.