The EU’s General Data Protection Regulation (GDPR) comes into force on the 25th May 2018 and will be applied in the U. It replaces the Data Protection Act 1998 and marks significant changes in the data protection landscape, including penalties for not following the new guidelines.
To help business with their preparation in the year leading up to it’s introduction, XpertHR is launching their practical guide to help HR professionals with their preparations.
While employers currently typically rely on employee consent to process their data, under the GDPR this will be much harder and they will generally have to find an alternative basis. In addition, employers will be required to keep extensive records, including the type of employee data that they process and the reasons for the processing. Employees’ right to receive a copy of all data held on them by their employer will also be strengthened, with fees for such data subject access requests removed and a shortened time frame for employers to provide the information.
The maximum penalty for breach of the data protection principles will be increased to 20 million euros or 4% of worldwide turnover if this higher – up from the current ceiling of £500,000.
The guide will provide an overview of changes for HR and considerations that organisation will have to take into account regarding them. It intends to help businesses make sure they are following the new set of guidelines in regard to employee data. Even though the changes are a year away they will require companies to make significant investment in terms of resources and preparation to comply with the GDPR.
The XpertHR guide can be accessed here.
For advice and guidance on related issues to this, please contacted HPC. We are a UK leading specialist in Employment law, HR and Health and Safety Services. You can email us at support@HighPerformance.com or call us on 0844 800 5932.