Following the publication of ‘A Practical Guide to the GDPR‘ in September 2017, Gregg Latchams has published a supplemental guide which is aimed towards HR professionals.
From recruitment to retirement and everything in between, employers often process more personal data about prospective, current and former employees than they realise. There is an opportunity for HR professionals to play a leading role in assisting employers with their compliance obligations in the employment context. In particular risk management, policy implementation and staff training are important skills that HR professionals can leverage in creating a ‘compliance culture’ with their organisations.
Our Supplemental Guide to the GDPR for HR Professionals (PDF, 548kb) covers:
- How the GDPR’s core principles apply in an employment context
- The main lawful grounds for processing employee personal data, in particular the changes to the standard of consent under the GDPR
- The specific rules regarding the processing of ‘special category data’ and personal data relating to criminal convictions and offences
- How the GDPR applies to the recruitment and selection process
- How the GDPR applies to workplace monitoring and Bring Your Own Device (BYOD)
- Summarises the rights of employees, in particular the changes to the right of subject access
- The rules on engaging third party processors
- The requirements regarding employment records and the benefits of pseudonymisation
- The need for staff training which is tailored to specific types of roles