GDPR 2 Years On: How Compliant Are You?

It’s been nearly two years since the changes to data protection came into effect with GDPR. As an HR consultancy, we are continuously supporting our clients with data protection and ensuring that they are as compliant as they can be.


GDPR in Practice

Our clients vary in shapes and sizes and operate across a myriad of sectors. As such, we are mindful that GDPR affects them all in different ways.

Indeed, as HR professionals, we deal with confidential and sensitive information on a daily basis and must always be on top of GDPR and never become complacent.

From an internal point of view, it is important to have all the relevant policies and procedures in place. However, once you have these, it is even more important to ensure that you are following them and that this can be evidenced. The importance of this was highlighted by a recent case investigated by the ICO, whereby an Organisation had all the policies in place but in practice, were not following them.


The Practicalities of Complying with the GDPR

It is so important to know how compliant you are and understand the legal basis for processing, data auditing and privacy notices / policies, and who is ultimately responsible for this.

To help with compliance, we have listed some essential steps below:

  1. Ensure all your staff attend and carry out mandatory training. We appreciate this is not always practical and we have therefore developed an interactive and engaging E-Learning module which can be accessed remotely. Please see link to the demo below.

https://gravitatehr.co.uk/gravitate-hr-gdpr-toolkit-for-small-businesses/

  1. Ensure your policies and procedures and privacy notices are kept up-to-date and reiterated to staff on a regular basis
  2. Ensure staff contact details are up-to-date and checked on any personal correspondence
  3. Carry out data audits on an annual basis to ensure that you are fully aware of your processing activities and the legal basis for doing so.

How We Can Help

If you would like to find out more about our E-Learning module or how we can support you with your GDPR compliance, please feel free to contact us.


 

Leave your comment

Please enter your name.
Please enter comment.
Archives