It is finally here, in just 9 days we will all be GDPR compliant won’t we?!
We are sure everyone is working towards the new data protection principles incorporated into the new Regulations. The main basis of the change is to move us all into the 21stCentury in relation to how we store and process data in view that most of this nowadays is on line, our marketing has increased, and more organisations have our data.
We have previously provided our Top Ten to prepare for 25th May and the below checklist can be read in conjunction with this or independently. Below is your final checklist to ensure you have the key areas in place:
- A publicly accessible Privacy notice usually in place where you collect data from employees explaining to them what you are collecting and why and then what you are doing with the data.
- You can do one privacy notice for all employees, this ensures it is separate to the contract and gives you room to explain all the details which are gathered and how they are processed.
- Check application forms, medical questionnaires, Next of Kin are they up-to-date, were they gathered for a legitimate purpose, are there any sensitive data held on there that needs to be stored correctly
- A Data Protection Policy reflecting the new General Data Protection Regulations and communicating this to your employees
- Carry out an audit of your current files and keep only the information you need about the individual for the continuing purposes of their employment.
- Request from third parties who process your employees’ data, for their privacy notices to ensure they are compliant with GDPR requirements and you are fully aware of what they are doing with this as processers of the data.
- Register with the ICO if you are processing personal data, all information for this is on the ICO website in easy to follow format.
- You have created awareness amongst those individuals who process data as to what they are doing with the data and why
- Make sure your technical security is up-to-date. Speak to your IT providers for how they have complied with the new regulations and that any data you either hold or pass on is secure.
Good luck !
If you need any further advice on the HR related impact of the GDPR please contact one of our HR Consultants on 07989 343361 or email us and we can call you back firstname.lastname@example.org .