SlideShare a Scribd company logo

GDPR Compliance: The challenge for HR and how Cezanne HR helps

Download as PPTX, PDF
Cezanne HR
Cezanne HR

This document discusses the challenges that HR departments face in complying with the General Data Protection Regulation (GDPR) which takes effect in May 2018. It introduces some of the key requirements of GDPR regarding data security, transparency, and individual rights. It then describes how the Cezanne HR software can help organizations address these challenges by providing a centralized, secure system for storing and managing employee HR data. Key features discussed include security, employee self-service, tracking consent and requests, simplifying data deletion, and building a culture of privacy compliance.

Recruiting & HR
1 of 19
GDPR compliance: the challenge for HR and how Cezanne HR helps
GDPR: the challenge for HR The General Data Protection Regulation will apply from 25 May 2018. The new legislation introduces new requirements, backed by higher penalties. These requirements include a greater emphasis on data security, transparency and accountability, together with enhanced rights for ‘data subjects’, which includes your employees. GDPR makes gaining control over your HR data - wherever it is stored - more important than ever before.
GDPR: the challenge for HR If you are still making do with spreadsheets, paper-files or out-of- date HR systems that lack effective security or employee self-service, GDPR could also be the perfect opportunity to make the business case for a modern, secure Cloud HR software system, like Cezanne HR. HR software won’t instantly make you compliant with every aspect of GDPR, but it will take you a long way towards it. And, by centralising your HR data and automating many of the most time-consuming HR admin activities, it will free up your time to address the rest.
Keep HR data secure The GDPR requires ‘personal data’ to be processed in a manner that ensures its security. Personal data is defined as ‘any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier’, and covers paper files, spreadsheets and digital documents. The onus is on you, as the data controller, to demonstrate, for example, that you know where the information is held, why you collect it, how it is used and who has access to it, as well as have effective systems in place to secure it and report any data breaches.
Keep HR data secure With Cezanne HR, you can store all your HR information in a single, secure online HR system. You’ll benefit from advanced security at every level, from data encryption and role-based access to your HR system, to hosting within the European Economic Area by AWS, the world-leader in robust, secure, Cloud-hosting. Read more about security. Scanned or digital documents are simple to upload into your Cezanne HR system, so you don’t need to worry about how to secure or share paper-based records. Costs won’t be excessive either. Data storage, including uploaded documents, is included in your monthly subscription fees.
Improve data accuracy Under GDPR you are required to ensure that personal data is accurate and complete – and put it right when it is not. This could be almost unmanageable if employees can’t see what data you hold about them in the first place. The GDPR includes a best practice recommendation that, where possible, organisations should be able to provide remote access to a secure self-service system which would provide the individual with direct access to his or her information.
Improve data accuracy Cezanne HR combines easy-to-manage employee self-service with roles-based security and approval workflows, so you can allow employees to check and update their own information, while staying in control. You can configure Cezanne HR to fit your own processes. For example, to decide what information employees can be allowed to edit, whether changes should be approved and by whom, and where local variations make sense. It’s an effective – and secure – way of helping you with compliance, while simultaneously delivering a service that makes life easier for employees and their managers.
Manage Data Subject requests Employees (and job candidates) already have the right under current data protection legislation to request a copy of the data you hold about them. GDPR requires that you respond to these requests more comprehensively and more quickly, and removes the right to charge (at least the first time). As employee rights to data under GDPR become more widely known, some experts are predicting a surge in these kinds of requests. Time will tell.
Manage Data Subject requests By storing your HR data and documents in one place (your Cezanne HR system), you’ll always know what information you hold about each of your employees. Straightforward reporting and export to Excel for HR administrators means you are better positioned to respond to data subject requests, as well as another requirement of GDPR: the data subject’s right to take their data with them in a manageable, digital format.
Track employee consent In an employment context, consent is not the most appropriate option for processing most employee data. Read why here. However, there may be occasions when you will need to obtain consent. For example, when collecting and storing information about employees that is not obviously needed to run your organisation, like tracking movements through remote control technologies such as CCTV and GPS, or passing employee information on to a third party for marketing purposes.
Track employee consent With Cezanne HR, you can easily generate personalised communications – with e-signatures – and track when (and whether) employees have consented. Other important GDPR-related communications, such as updates to your company privacy statements, employment contracts, or data protection policies can be managed and tracked in the same way. As everything is stored centrally, it’s easier for you to see when you may need to refresh consent, and employees can check back at anytime to see what they agreed to.
Simplify data deletion Once you no longer need personal data for the purpose for which it was collected, data protection legislation says it should be deleted unless you have other grounds for retaining it. These could be for legislative reasons, or if discarding the data too soon would disadvantage your business. To make matters more complicated, the GDPR expressly authorises individual member states to implement more specific rules in respect of the processing of HR-related personal data. It will be important to follow national law developments, in addition to more generic GDPR requirements, and adjust your policies to match.
Simplify data deletion An important first step is to understand what employee data you hold, and why. For example, is it necessary for compliance with a legal obligation, or for the establishment, exercise or defence of legal claims? This will help to inform the basis and timeframe for retaining or deleting data, and provide a template against which you can review and delete the employee information you hold in Cezanne HR.
Simplify data deletion Whatever your approach, it is important that both a regular review process and methodical cleansing of HR databases (and paper-based records) is in place. A handy feature in Cezanne HR is the option to set reminders against leaver records, which can “nudge” HR administrators to revisit employee records. This means you can delete some information at the time an employee leaves, but schedule a reminder to delete other data, such as information relating to pay, working hours, performance or disciplinaries, when the relevant period relating to statutory requirements has elapsed.
Build a culture of privacy While some employees will have greater responsibility than others, data compliance is a company-wide issue. As the UK Information Commissioner, Elizabeth Denham said recently: “The new legislation creates an onus on companies to understand the risks that they create for others, and to mitigate those risks. It’s about moving away from seeing the law as a box ticking exercise, and instead to work on a framework that can be used to build a culture of privacy that pervades an entire organisation.”
Build a culture of privacy Ensuring that your employees receive appropriate training, is part of the solution. With Cezanne HR, you can easily review employee roles and responsibilities, allocate them to appropriate training activities, and set up notifications to trigger a reminder when training or certification is up for renewal or should be refreshed. And, with the integrated performance module, you can embed data security best-practice and discussions around GDPR compliance into employee appraisals, so you can ensure it becomes part of your organisation’s DNA.
Keep employees informed The GDPR regulations require you provide much more information to employees about how (and why) you use, manage and secure their data, and the rights they have over that data. Some of this is better managed through one-to-one communications, especially when tracking or consent is required. However, there is also an argument for creating an information hub that’s always on, and always available.
Keep employees informed The Workspaces feature in Cezanne HR allows you to quickly set up dedicated portals, targeted at different groups of employees if required. For example, to address country-specific requirements. The portal manager, or managers (who can be anyone you nominate) will be able to upload relevant documentation, include links to relevant third-party sites, post updates with notifications if required, and provide a question and answers forum for employees. It’s an easy way to ensure GDPR visibility and keep compliance issues top of the agenda.
Useful links Information Commissioner’s Office: A comprehensive resource covering all aspects of data protection and GDPR in the UK https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/ Bird & Bird GDPR Tracker: aims to shows how and where GDPR has been supplemented locally https://www.twobirds.com/en/hot-topics/general-data-protection-regulation/gdpr-tracker Intersoft Consulting A usefully indexed version of the General Data Protection Regulation. https://gdpr-info.eu/art-4-gdpr/ Cezanne HR Information about Cezanne HR’s security, pricing and HR solution. https://cezannehr.com/ To book an online demo or get in touch click here or call 020 7202 2720

Recommended

General Data Protection Regulation (GDPR) Compliance
General Data Protection Regulation (GDPR) ComplianceGeneral Data Protection Regulation (GDPR) Compliance
General Data Protection Regulation (GDPR) Compliance
accenture
 
General Data Protection Regulation (GDPR) Implications for Canadian Firms
General Data Protection Regulation (GDPR) Implications for Canadian FirmsGeneral Data Protection Regulation (GDPR) Implications for Canadian Firms
General Data Protection Regulation (GDPR) Implications for Canadian Firms
accenture
 
Using GDPR to Transform Customer Experience
Using GDPR to Transform Customer ExperienceUsing GDPR to Transform Customer Experience
Using GDPR to Transform Customer Experience
MongoDB
 
Designing Enhanced Supervision for the Evolving Wealth Management Ecosystem
Designing Enhanced Supervision for the Evolving Wealth Management EcosystemDesigning Enhanced Supervision for the Evolving Wealth Management Ecosystem
Designing Enhanced Supervision for the Evolving Wealth Management Ecosystem
accenture
 
Pensions on the Blockchain
Pensions on the BlockchainPensions on the Blockchain
Pensions on the Blockchain
accenture
 
Limit your vulnerabilities: Assess. Develop. Protect.
Limit your vulnerabilities: Assess. Develop. Protect.Limit your vulnerabilities: Assess. Develop. Protect.
Limit your vulnerabilities: Assess. Develop. Protect.
accenture
 
Data privacy and security in uae
Data privacy and security in uaeData privacy and security in uae
Data privacy and security in uae
RishalHalid1
 
The Connected Refinery – Accenture 2017 Digital Refining Survey
The Connected Refinery – Accenture 2017 Digital Refining SurveyThe Connected Refinery – Accenture 2017 Digital Refining Survey
The Connected Refinery – Accenture 2017 Digital Refining Survey
accenture
 

Recommended

General Data Protection Regulation (GDPR) Compliance
General Data Protection Regulation (GDPR) ComplianceGeneral Data Protection Regulation (GDPR) Compliance
General Data Protection Regulation (GDPR) Compliance
accenture
 
General Data Protection Regulation (GDPR) Implications for Canadian Firms
General Data Protection Regulation (GDPR) Implications for Canadian FirmsGeneral Data Protection Regulation (GDPR) Implications for Canadian Firms
General Data Protection Regulation (GDPR) Implications for Canadian Firms
accenture
 
Using GDPR to Transform Customer Experience
Using GDPR to Transform Customer ExperienceUsing GDPR to Transform Customer Experience
Using GDPR to Transform Customer Experience
MongoDB
 
Designing Enhanced Supervision for the Evolving Wealth Management Ecosystem
Designing Enhanced Supervision for the Evolving Wealth Management EcosystemDesigning Enhanced Supervision for the Evolving Wealth Management Ecosystem
Designing Enhanced Supervision for the Evolving Wealth Management Ecosystem
accenture
 
Pensions on the Blockchain
Pensions on the BlockchainPensions on the Blockchain
Pensions on the Blockchain
accenture
 
Limit your vulnerabilities: Assess. Develop. Protect.
Limit your vulnerabilities: Assess. Develop. Protect.Limit your vulnerabilities: Assess. Develop. Protect.
Limit your vulnerabilities: Assess. Develop. Protect.
accenture
 
Data privacy and security in uae
Data privacy and security in uaeData privacy and security in uae
Data privacy and security in uae
RishalHalid1
 
The Connected Refinery – Accenture 2017 Digital Refining Survey
The Connected Refinery – Accenture 2017 Digital Refining SurveyThe Connected Refinery – Accenture 2017 Digital Refining Survey
The Connected Refinery – Accenture 2017 Digital Refining Survey
accenture
 
California Consumer Privacy Act (CCPA)
California Consumer Privacy Act (CCPA)California Consumer Privacy Act (CCPA)
California Consumer Privacy Act (CCPA)
Happiest Minds Technologies
 
How is GDPR relevant for US companies
How is GDPR relevant for US companies How is GDPR relevant for US companies
How is GDPR relevant for US companies
Patric Dahse
 
The State of the Federal IT Market 2018
The State of the Federal IT Market 2018The State of the Federal IT Market 2018
The State of the Federal IT Market 2018
accenture
 
DAMA Webinar: The Data Governance of Personal (PII) Data
DAMA Webinar: The Data Governance of Personal (PII) DataDAMA Webinar: The Data Governance of Personal (PII) Data
DAMA Webinar: The Data Governance of Personal (PII) Data
DATAVERSITY
 
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powell
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powellCWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powell
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powell
Capgemini
 
Securing the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the InternetSecuring the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the Internet
accenture
 
Industry X.0: Unlocking the Power of Digital in Plant Operations
Industry X.0: Unlocking the Power of Digital in Plant Operations Industry X.0: Unlocking the Power of Digital in Plant Operations
Industry X.0: Unlocking the Power of Digital in Plant Operations
accenture
 
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...
accenture
 
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...
Capgemini
 
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable Future
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable FutureMature Field Redevelopments: How to Stay Relevant for the Foreseeable Future
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable Future
accenture
 
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...
accenture
 
The realist’s guide to quantum technology and national security
The realist’s guide to quantum technology and national securityThe realist’s guide to quantum technology and national security
The realist’s guide to quantum technology and national security
Deloitte United States
 
Guardians of Trust: Building Trust in Data & Analytics
Guardians of Trust: Building Trust in Data & AnalyticsGuardians of Trust: Building Trust in Data & Analytics
Guardians of Trust: Building Trust in Data & Analytics
Eryk Budi Pratama
 
Securing the Industrial Enterprise
Securing the Industrial EnterpriseSecuring the Industrial Enterprise
Securing the Industrial Enterprise
accenture
 
Decoding Organizational DNA
Decoding Organizational DNADecoding Organizational DNA
Decoding Organizational DNA
accenture
 
Digital Fragmentation: Adapt To Succeed In A Fragmented World
Digital Fragmentation: Adapt To Succeed In A Fragmented WorldDigital Fragmentation: Adapt To Succeed In A Fragmented World
Digital Fragmentation: Adapt To Succeed In A Fragmented World
Accenture Insurance
 
Security Implications of Accenture Technology Vision 2015 - Executive Report
Security Implications of Accenture Technology Vision 2015 - Executive ReportSecurity Implications of Accenture Technology Vision 2015 - Executive Report
Security Implications of Accenture Technology Vision 2015 - Executive Report
Accenture Technology
 
Security: Enabling the Journey to the Cloud
Security: Enabling the Journey to the CloudSecurity: Enabling the Journey to the Cloud
Security: Enabling the Journey to the Cloud
Capgemini
 
Accenture Security CG&S Cyber Resilience
Accenture Security CG&S Cyber ResilienceAccenture Security CG&S Cyber Resilience
Accenture Security CG&S Cyber Resilience
accenture
 
Capgemini Consulting Information Security Benchmarking 2017
Capgemini Consulting Information Security Benchmarking 2017Capgemini Consulting Information Security Benchmarking 2017
Capgemini Consulting Information Security Benchmarking 2017
Capgemini
 
Eu data protection regulations (point-of-view)
Eu data protection regulations (point-of-view)Eu data protection regulations (point-of-view)
Eu data protection regulations (point-of-view)
Gerson Trigueiros
 
What is GDPR Data Flow Mapping
What is GDPR Data Flow MappingWhat is GDPR Data Flow Mapping
What is GDPR Data Flow Mapping
VISTA InfoSec
 

More Related Content

What's hot

California Consumer Privacy Act (CCPA)
California Consumer Privacy Act (CCPA)California Consumer Privacy Act (CCPA)
California Consumer Privacy Act (CCPA)
Happiest Minds Technologies
 
How is GDPR relevant for US companies
How is GDPR relevant for US companies How is GDPR relevant for US companies
How is GDPR relevant for US companies
Patric Dahse
 
The State of the Federal IT Market 2018
The State of the Federal IT Market 2018The State of the Federal IT Market 2018
The State of the Federal IT Market 2018
accenture
 
DAMA Webinar: The Data Governance of Personal (PII) Data
DAMA Webinar: The Data Governance of Personal (PII) DataDAMA Webinar: The Data Governance of Personal (PII) Data
DAMA Webinar: The Data Governance of Personal (PII) Data
DATAVERSITY
 
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powell
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powellCWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powell
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powell
Capgemini
 
Securing the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the InternetSecuring the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the Internet
accenture
 
Industry X.0: Unlocking the Power of Digital in Plant Operations
Industry X.0: Unlocking the Power of Digital in Plant Operations Industry X.0: Unlocking the Power of Digital in Plant Operations
Industry X.0: Unlocking the Power of Digital in Plant Operations
accenture
 
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...
accenture
 
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...
Capgemini
 
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable Future
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable FutureMature Field Redevelopments: How to Stay Relevant for the Foreseeable Future
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable Future
accenture
 
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...
accenture
 
The realist’s guide to quantum technology and national security
The realist’s guide to quantum technology and national securityThe realist’s guide to quantum technology and national security
The realist’s guide to quantum technology and national security
Deloitte United States
 
Guardians of Trust: Building Trust in Data & Analytics
Guardians of Trust: Building Trust in Data & AnalyticsGuardians of Trust: Building Trust in Data & Analytics
Guardians of Trust: Building Trust in Data & Analytics
Eryk Budi Pratama
 
Securing the Industrial Enterprise
Securing the Industrial EnterpriseSecuring the Industrial Enterprise
Securing the Industrial Enterprise
accenture
 
Decoding Organizational DNA
Decoding Organizational DNADecoding Organizational DNA
Decoding Organizational DNA
accenture
 
Digital Fragmentation: Adapt To Succeed In A Fragmented World
Digital Fragmentation: Adapt To Succeed In A Fragmented WorldDigital Fragmentation: Adapt To Succeed In A Fragmented World
Digital Fragmentation: Adapt To Succeed In A Fragmented World
Accenture Insurance
 
Security Implications of Accenture Technology Vision 2015 - Executive Report
Security Implications of Accenture Technology Vision 2015 - Executive ReportSecurity Implications of Accenture Technology Vision 2015 - Executive Report
Security Implications of Accenture Technology Vision 2015 - Executive Report
Accenture Technology
 
Security: Enabling the Journey to the Cloud
Security: Enabling the Journey to the CloudSecurity: Enabling the Journey to the Cloud
Security: Enabling the Journey to the Cloud
Capgemini
 
Accenture Security CG&S Cyber Resilience
Accenture Security CG&S Cyber ResilienceAccenture Security CG&S Cyber Resilience
Accenture Security CG&S Cyber Resilience
accenture
 
Capgemini Consulting Information Security Benchmarking 2017
Capgemini Consulting Information Security Benchmarking 2017Capgemini Consulting Information Security Benchmarking 2017
Capgemini Consulting Information Security Benchmarking 2017
Capgemini
 

What's hot (20)

California Consumer Privacy Act (CCPA)
California Consumer Privacy Act (CCPA)California Consumer Privacy Act (CCPA)
California Consumer Privacy Act (CCPA)
 
How is GDPR relevant for US companies
How is GDPR relevant for US companies How is GDPR relevant for US companies
How is GDPR relevant for US companies
 
The State of the Federal IT Market 2018
The State of the Federal IT Market 2018The State of the Federal IT Market 2018
The State of the Federal IT Market 2018
 
DAMA Webinar: The Data Governance of Personal (PII) Data
DAMA Webinar: The Data Governance of Personal (PII) DataDAMA Webinar: The Data Governance of Personal (PII) Data
DAMA Webinar: The Data Governance of Personal (PII) Data
 
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powell
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powellCWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powell
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powell
 
Securing the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the InternetSecuring the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the Internet
 
Industry X.0: Unlocking the Power of Digital in Plant Operations
Industry X.0: Unlocking the Power of Digital in Plant Operations Industry X.0: Unlocking the Power of Digital in Plant Operations
Industry X.0: Unlocking the Power of Digital in Plant Operations
 
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...
 
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...
 
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable Future
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable FutureMature Field Redevelopments: How to Stay Relevant for the Foreseeable Future
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable Future
 
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...
 
The realist’s guide to quantum technology and national security
The realist’s guide to quantum technology and national securityThe realist’s guide to quantum technology and national security
The realist’s guide to quantum technology and national security
 
Guardians of Trust: Building Trust in Data & Analytics
Guardians of Trust: Building Trust in Data & AnalyticsGuardians of Trust: Building Trust in Data & Analytics
Guardians of Trust: Building Trust in Data & Analytics
 
Securing the Industrial Enterprise
Securing the Industrial EnterpriseSecuring the Industrial Enterprise
Securing the Industrial Enterprise
 
Decoding Organizational DNA
Decoding Organizational DNADecoding Organizational DNA
Decoding Organizational DNA
 
Digital Fragmentation: Adapt To Succeed In A Fragmented World
Digital Fragmentation: Adapt To Succeed In A Fragmented WorldDigital Fragmentation: Adapt To Succeed In A Fragmented World
Digital Fragmentation: Adapt To Succeed In A Fragmented World
 
Security Implications of Accenture Technology Vision 2015 - Executive Report
Security Implications of Accenture Technology Vision 2015 - Executive ReportSecurity Implications of Accenture Technology Vision 2015 - Executive Report
Security Implications of Accenture Technology Vision 2015 - Executive Report
 
Security: Enabling the Journey to the Cloud
Security: Enabling the Journey to the CloudSecurity: Enabling the Journey to the Cloud
Security: Enabling the Journey to the Cloud
 
Accenture Security CG&S Cyber Resilience
Accenture Security CG&S Cyber ResilienceAccenture Security CG&S Cyber Resilience
Accenture Security CG&S Cyber Resilience
 
Capgemini Consulting Information Security Benchmarking 2017
Capgemini Consulting Information Security Benchmarking 2017Capgemini Consulting Information Security Benchmarking 2017
Capgemini Consulting Information Security Benchmarking 2017
 

Similar to GDPR Compliance: The challenge for HR and how Cezanne HR helps

Eu data protection regulations (point-of-view)
Eu data protection regulations (point-of-view)Eu data protection regulations (point-of-view)
Eu data protection regulations (point-of-view)
Gerson Trigueiros
 
What is GDPR Data Flow Mapping
What is GDPR Data Flow MappingWhat is GDPR Data Flow Mapping
What is GDPR Data Flow Mapping
VISTA InfoSec
 
GDPR Compliance with Microsoft 365
GDPR Compliance with Microsoft 365 GDPR Compliance with Microsoft 365
GDPR Compliance with Microsoft 365
ayeshaurooj104
 
DevOps vs GDPR: How to Comply and Stay Agile
DevOps vs GDPR: How to Comply and Stay AgileDevOps vs GDPR: How to Comply and Stay Agile
DevOps vs GDPR: How to Comply and Stay Agile
Ben Saunders
 
GDPR: Time to Act
GDPR: Time to ActGDPR: Time to Act
GDPR: Time to Act
Cathy Gilmartin
 
GDPR Guide: The ICO's 12 Recommended Steps To Take Now
GDPR Guide: The ICO's 12 Recommended Steps To Take NowGDPR Guide: The ICO's 12 Recommended Steps To Take Now
GDPR Guide: The ICO's 12 Recommended Steps To Take Now
HackerOne
 
10 Tips for CIOS Data Security in the Cloud
10 Tips for CIOS Data Security in the Cloud10 Tips for CIOS Data Security in the Cloud
10 Tips for CIOS Data Security in the Cloud
Iron Mountain
 
Data protection in HR
Data protection in HRData protection in HR
Data protection in HR
Strategic Business & IT Services
 
3 cliches about the Data Protection Act you should not avoid
3 cliches about the Data Protection Act you should not avoid3 cliches about the Data Protection Act you should not avoid
3 cliches about the Data Protection Act you should not avoid
HRMantra Software Pvt. Ltd
 
How will GDPR affect small businesses?
How will GDPR affect small businesses?How will GDPR affect small businesses?
How will GDPR affect small businesses?
AllBusinessTemplates
 
The Top Five Benefits of HR Software_.pptx
The Top Five Benefits of HR Software_.pptxThe Top Five Benefits of HR Software_.pptx
The Top Five Benefits of HR Software_.pptx
Time Labs
 
Convince your board - Ten steps to GDPR compliance
Convince your board - Ten steps to GDPR complianceConvince your board - Ten steps to GDPR compliance
Convince your board - Ten steps to GDPR compliance
Dave James
 
12 Must-Use Digital Tools for HR Departments | DrySign USA Blog
12 Must-Use Digital Tools for HR Departments | DrySign USA Blog12 Must-Use Digital Tools for HR Departments | DrySign USA Blog
12 Must-Use Digital Tools for HR Departments | DrySign USA Blog
Drysign By Exela
 
Data privacy how do you protect and delete data in the cloud
Data privacy how do you protect and delete data in the cloudData privacy how do you protect and delete data in the cloud
Data privacy how do you protect and delete data in the cloud
SalesBabuCRM
 
Benefits of CRM Software.
Benefits of CRM Software.Benefits of CRM Software.
Benefits of CRM Software.
Shane Emerson
 
Establishing CCPA Compliance in Legacy PeopleSoft Systems
Establishing CCPA Compliance in Legacy PeopleSoft SystemsEstablishing CCPA Compliance in Legacy PeopleSoft Systems
Establishing CCPA Compliance in Legacy PeopleSoft Systems
Appsian
 
Will you be ready to comply with new EU Data Protection Regulation in time?
Will you be ready to comply with new EU Data Protection Regulation in time?Will you be ready to comply with new EU Data Protection Regulation in time?
Will you be ready to comply with new EU Data Protection Regulation in time?
Per Norhammar
 
The HR Technology Selection Guide
The HR Technology Selection GuideThe HR Technology Selection Guide
The HR Technology Selection Guide
Jessica Miller-Merrell
 
Streamlining paper processes in a digital world - Canon CEE
Streamlining paper processes in a digital world - Canon CEEStreamlining paper processes in a digital world - Canon CEE
Streamlining paper processes in a digital world - Canon CEE
Canon Business CEE
 
Come cambia la cybersecurity con il regolamento privacy europeo
Come cambia la cybersecurity con il regolamento privacy europeoCome cambia la cybersecurity con il regolamento privacy europeo
Come cambia la cybersecurity con il regolamento privacy europeo
Giulio Coraggio
 

Similar to GDPR Compliance: The challenge for HR and how Cezanne HR helps (20)

Eu data protection regulations (point-of-view)
Eu data protection regulations (point-of-view)Eu data protection regulations (point-of-view)
Eu data protection regulations (point-of-view)
 
What is GDPR Data Flow Mapping
What is GDPR Data Flow MappingWhat is GDPR Data Flow Mapping
What is GDPR Data Flow Mapping
 
GDPR Compliance with Microsoft 365
GDPR Compliance with Microsoft 365 GDPR Compliance with Microsoft 365
GDPR Compliance with Microsoft 365
 
DevOps vs GDPR: How to Comply and Stay Agile
DevOps vs GDPR: How to Comply and Stay AgileDevOps vs GDPR: How to Comply and Stay Agile
DevOps vs GDPR: How to Comply and Stay Agile
 
GDPR: Time to Act
GDPR: Time to ActGDPR: Time to Act
GDPR: Time to Act
 
GDPR Guide: The ICO's 12 Recommended Steps To Take Now
GDPR Guide: The ICO's 12 Recommended Steps To Take NowGDPR Guide: The ICO's 12 Recommended Steps To Take Now
GDPR Guide: The ICO's 12 Recommended Steps To Take Now
 
10 Tips for CIOS Data Security in the Cloud
10 Tips for CIOS Data Security in the Cloud10 Tips for CIOS Data Security in the Cloud
10 Tips for CIOS Data Security in the Cloud
 
Data protection in HR
Data protection in HRData protection in HR
Data protection in HR
 
3 cliches about the Data Protection Act you should not avoid
3 cliches about the Data Protection Act you should not avoid3 cliches about the Data Protection Act you should not avoid
3 cliches about the Data Protection Act you should not avoid
 
How will GDPR affect small businesses?
How will GDPR affect small businesses?How will GDPR affect small businesses?
How will GDPR affect small businesses?
 
The Top Five Benefits of HR Software_.pptx
The Top Five Benefits of HR Software_.pptxThe Top Five Benefits of HR Software_.pptx
The Top Five Benefits of HR Software_.pptx
 
Convince your board - Ten steps to GDPR compliance
Convince your board - Ten steps to GDPR complianceConvince your board - Ten steps to GDPR compliance
Convince your board - Ten steps to GDPR compliance
 
12 Must-Use Digital Tools for HR Departments | DrySign USA Blog
12 Must-Use Digital Tools for HR Departments | DrySign USA Blog12 Must-Use Digital Tools for HR Departments | DrySign USA Blog
12 Must-Use Digital Tools for HR Departments | DrySign USA Blog
 
Data privacy how do you protect and delete data in the cloud
Data privacy how do you protect and delete data in the cloudData privacy how do you protect and delete data in the cloud
Data privacy how do you protect and delete data in the cloud
 
Benefits of CRM Software.
Benefits of CRM Software.Benefits of CRM Software.
Benefits of CRM Software.
 
Establishing CCPA Compliance in Legacy PeopleSoft Systems
Establishing CCPA Compliance in Legacy PeopleSoft SystemsEstablishing CCPA Compliance in Legacy PeopleSoft Systems
Establishing CCPA Compliance in Legacy PeopleSoft Systems
 
Will you be ready to comply with new EU Data Protection Regulation in time?
Will you be ready to comply with new EU Data Protection Regulation in time?Will you be ready to comply with new EU Data Protection Regulation in time?
Will you be ready to comply with new EU Data Protection Regulation in time?
 
The HR Technology Selection Guide
The HR Technology Selection GuideThe HR Technology Selection Guide
The HR Technology Selection Guide
 
Streamlining paper processes in a digital world - Canon CEE
Streamlining paper processes in a digital world - Canon CEEStreamlining paper processes in a digital world - Canon CEE
Streamlining paper processes in a digital world - Canon CEE
 
Come cambia la cybersecurity con il regolamento privacy europeo
Come cambia la cybersecurity con il regolamento privacy europeoCome cambia la cybersecurity con il regolamento privacy europeo
Come cambia la cybersecurity con il regolamento privacy europeo
 

Recently uploaded

The Rules Do Apply: Navigating HR Compliance
The Rules Do Apply: Navigating HR ComplianceThe Rules Do Apply: Navigating HR Compliance
The Rules Do Apply: Navigating HR Compliance
Aggregage
 
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
SocialHRCamp
 
1比1仿制(csun毕业证书)加州州立大学北岭分校毕业证硕士文凭原版一模一样
1比1仿制(csun毕业证书)加州州立大学北岭分校毕业证硕士文凭原版一模一样1比1仿制(csun毕业证书)加州州立大学北岭分校毕业证硕士文凭原版一模一样
1比1仿制(csun毕业证书)加州州立大学北岭分校毕业证硕士文凭原版一模一样
4y5yl5qy
 
哪里购买伯明翰大学毕业证(uob毕业证)学位证书原版一模一样
哪里购买伯明翰大学毕业证(uob毕业证)学位证书原版一模一样哪里购买伯明翰大学毕业证(uob毕业证)学位证书原版一模一样
哪里购买伯明翰大学毕业证(uob毕业证)学位证书原版一模一样
mesfe
 
Building Meaningful Talent Communities with AI - Heather Pysklywec - SocialHR...
Building Meaningful Talent Communities with AI - Heather Pysklywec - SocialHR...Building Meaningful Talent Communities with AI - Heather Pysklywec - SocialHR...
Building Meaningful Talent Communities with AI - Heather Pysklywec - SocialHR...
SocialHRCamp
 
Rally Webinar Recruitment Marketing for High Volume Hiring.pdf
Rally Webinar Recruitment Marketing for High Volume Hiring.pdfRally Webinar Recruitment Marketing for High Volume Hiring.pdf
Rally Webinar Recruitment Marketing for High Volume Hiring.pdf
Rally Recruitment Marketing
 
一模一样(unh毕业证书)美国新罕布什尔大学毕业证学位证书案例原版一模一样
一模一样(unh毕业证书)美国新罕布什尔大学毕业证学位证书案例原版一模一样一模一样(unh毕业证书)美国新罕布什尔大学毕业证学位证书案例原版一模一样
一模一样(unh毕业证书)美国新罕布什尔大学毕业证学位证书案例原版一模一样
6budtn3l
 
Your Guide To Finding The Perfect Part-Time Job
Your Guide To Finding The Perfect Part-Time JobYour Guide To Finding The Perfect Part-Time Job
Your Guide To Finding The Perfect Part-Time Job
SnapJob
 
原版定制(ucdavis毕业证书)加州大学戴维斯分校毕业证学位证书电子版原版一模一样
原版定制(ucdavis毕业证书)加州大学戴维斯分校毕业证学位证书电子版原版一模一样原版定制(ucdavis毕业证书)加州大学戴维斯分校毕业证学位证书电子版原版一模一样
原版定制(ucdavis毕业证书)加州大学戴维斯分校毕业证学位证书电子版原版一模一样
4y5yl5qy
 
Accelerating AI Integration with Collaborative Learning - Kinga Petrovai - So...
Accelerating AI Integration with Collaborative Learning - Kinga Petrovai - So...Accelerating AI Integration with Collaborative Learning - Kinga Petrovai - So...
Accelerating AI Integration with Collaborative Learning - Kinga Petrovai - So...
SocialHRCamp
 
Becoming Relentlessly Human-Centred in an AI World - Erin Patchell - SocialHR...
Becoming Relentlessly Human-Centred in an AI World - Erin Patchell - SocialHR...Becoming Relentlessly Human-Centred in an AI World - Erin Patchell - SocialHR...
Becoming Relentlessly Human-Centred in an AI World - Erin Patchell - SocialHR...
SocialHRCamp
 
AI Considerations in HR Governance - Shahzad Khan - SocialHRCamp Ottawa 2024
AI Considerations in HR Governance - Shahzad Khan - SocialHRCamp Ottawa 2024AI Considerations in HR Governance - Shahzad Khan - SocialHRCamp Ottawa 2024
AI Considerations in HR Governance - Shahzad Khan - SocialHRCamp Ottawa 2024
SocialHRCamp
 
Start Smart: Learning the Ropes of AI for HR - Celine Maasland - SocialHRCamp...
Start Smart: Learning the Ropes of AI for HR - Celine Maasland - SocialHRCamp...Start Smart: Learning the Ropes of AI for HR - Celine Maasland - SocialHRCamp...
Start Smart: Learning the Ropes of AI for HR - Celine Maasland - SocialHRCamp...
SocialHRCamp
 

Recently uploaded (13)

The Rules Do Apply: Navigating HR Compliance
The Rules Do Apply: Navigating HR ComplianceThe Rules Do Apply: Navigating HR Compliance
The Rules Do Apply: Navigating HR Compliance
 
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
 
1比1仿制(csun毕业证书)加州州立大学北岭分校毕业证硕士文凭原版一模一样
1比1仿制(csun毕业证书)加州州立大学北岭分校毕业证硕士文凭原版一模一样1比1仿制(csun毕业证书)加州州立大学北岭分校毕业证硕士文凭原版一模一样
1比1仿制(csun毕业证书)加州州立大学北岭分校毕业证硕士文凭原版一模一样
 
哪里购买伯明翰大学毕业证(uob毕业证)学位证书原版一模一样
哪里购买伯明翰大学毕业证(uob毕业证)学位证书原版一模一样哪里购买伯明翰大学毕业证(uob毕业证)学位证书原版一模一样
哪里购买伯明翰大学毕业证(uob毕业证)学位证书原版一模一样
 
Building Meaningful Talent Communities with AI - Heather Pysklywec - SocialHR...
Building Meaningful Talent Communities with AI - Heather Pysklywec - SocialHR...Building Meaningful Talent Communities with AI - Heather Pysklywec - SocialHR...
Building Meaningful Talent Communities with AI - Heather Pysklywec - SocialHR...
 
Rally Webinar Recruitment Marketing for High Volume Hiring.pdf
Rally Webinar Recruitment Marketing for High Volume Hiring.pdfRally Webinar Recruitment Marketing for High Volume Hiring.pdf
Rally Webinar Recruitment Marketing for High Volume Hiring.pdf
 
一模一样(unh毕业证书)美国新罕布什尔大学毕业证学位证书案例原版一模一样
一模一样(unh毕业证书)美国新罕布什尔大学毕业证学位证书案例原版一模一样一模一样(unh毕业证书)美国新罕布什尔大学毕业证学位证书案例原版一模一样
一模一样(unh毕业证书)美国新罕布什尔大学毕业证学位证书案例原版一模一样
 
Your Guide To Finding The Perfect Part-Time Job
Your Guide To Finding The Perfect Part-Time JobYour Guide To Finding The Perfect Part-Time Job
Your Guide To Finding The Perfect Part-Time Job
 
原版定制(ucdavis毕业证书)加州大学戴维斯分校毕业证学位证书电子版原版一模一样
原版定制(ucdavis毕业证书)加州大学戴维斯分校毕业证学位证书电子版原版一模一样原版定制(ucdavis毕业证书)加州大学戴维斯分校毕业证学位证书电子版原版一模一样
原版定制(ucdavis毕业证书)加州大学戴维斯分校毕业证学位证书电子版原版一模一样
 
Accelerating AI Integration with Collaborative Learning - Kinga Petrovai - So...
Accelerating AI Integration with Collaborative Learning - Kinga Petrovai - So...Accelerating AI Integration with Collaborative Learning - Kinga Petrovai - So...
Accelerating AI Integration with Collaborative Learning - Kinga Petrovai - So...
 
Becoming Relentlessly Human-Centred in an AI World - Erin Patchell - SocialHR...
Becoming Relentlessly Human-Centred in an AI World - Erin Patchell - SocialHR...Becoming Relentlessly Human-Centred in an AI World - Erin Patchell - SocialHR...
Becoming Relentlessly Human-Centred in an AI World - Erin Patchell - SocialHR...
 
AI Considerations in HR Governance - Shahzad Khan - SocialHRCamp Ottawa 2024
AI Considerations in HR Governance - Shahzad Khan - SocialHRCamp Ottawa 2024AI Considerations in HR Governance - Shahzad Khan - SocialHRCamp Ottawa 2024
AI Considerations in HR Governance - Shahzad Khan - SocialHRCamp Ottawa 2024
 
Start Smart: Learning the Ropes of AI for HR - Celine Maasland - SocialHRCamp...
Start Smart: Learning the Ropes of AI for HR - Celine Maasland - SocialHRCamp...Start Smart: Learning the Ropes of AI for HR - Celine Maasland - SocialHRCamp...
Start Smart: Learning the Ropes of AI for HR - Celine Maasland - SocialHRCamp...
 

GDPR Compliance: The challenge for HR and how Cezanne HR helps

  • 1. GDPR compliance: the challenge for HR and how Cezanne HR helps
  • 2. GDPR: the challenge for HR The General Data Protection Regulation will apply from 25 May 2018. The new legislation introduces new requirements, backed by higher penalties. These requirements include a greater emphasis on data security, transparency and accountability, together with enhanced rights for ‘data subjects’, which includes your employees. GDPR makes gaining control over your HR data - wherever it is stored - more important than ever before.
  • 3. GDPR: the challenge for HR If you are still making do with spreadsheets, paper-files or out-of- date HR systems that lack effective security or employee self-service, GDPR could also be the perfect opportunity to make the business case for a modern, secure Cloud HR software system, like Cezanne HR. HR software won’t instantly make you compliant with every aspect of GDPR, but it will take you a long way towards it. And, by centralising your HR data and automating many of the most time-consuming HR admin activities, it will free up your time to address the rest.
  • 4. Keep HR data secure The GDPR requires ‘personal data’ to be processed in a manner that ensures its security. Personal data is defined as ‘any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier’, and covers paper files, spreadsheets and digital documents. The onus is on you, as the data controller, to demonstrate, for example, that you know where the information is held, why you collect it, how it is used and who has access to it, as well as have effective systems in place to secure it and report any data breaches.
  • 5. Keep HR data secure With Cezanne HR, you can store all your HR information in a single, secure online HR system. You’ll benefit from advanced security at every level, from data encryption and role-based access to your HR system, to hosting within the European Economic Area by AWS, the world-leader in robust, secure, Cloud-hosting. Read more about security. Scanned or digital documents are simple to upload into your Cezanne HR system, so you don’t need to worry about how to secure or share paper-based records. Costs won’t be excessive either. Data storage, including uploaded documents, is included in your monthly subscription fees.
  • 6. Improve data accuracy Under GDPR you are required to ensure that personal data is accurate and complete – and put it right when it is not. This could be almost unmanageable if employees can’t see what data you hold about them in the first place. The GDPR includes a best practice recommendation that, where possible, organisations should be able to provide remote access to a secure self-service system which would provide the individual with direct access to his or her information.
  • 7. Improve data accuracy Cezanne HR combines easy-to-manage employee self-service with roles-based security and approval workflows, so you can allow employees to check and update their own information, while staying in control. You can configure Cezanne HR to fit your own processes. For example, to decide what information employees can be allowed to edit, whether changes should be approved and by whom, and where local variations make sense. It’s an effective – and secure – way of helping you with compliance, while simultaneously delivering a service that makes life easier for employees and their managers.
  • 8. Manage Data Subject requests Employees (and job candidates) already have the right under current data protection legislation to request a copy of the data you hold about them. GDPR requires that you respond to these requests more comprehensively and more quickly, and removes the right to charge (at least the first time). As employee rights to data under GDPR become more widely known, some experts are predicting a surge in these kinds of requests. Time will tell.
  • 9. Manage Data Subject requests By storing your HR data and documents in one place (your Cezanne HR system), you’ll always know what information you hold about each of your employees. Straightforward reporting and export to Excel for HR administrators means you are better positioned to respond to data subject requests, as well as another requirement of GDPR: the data subject’s right to take their data with them in a manageable, digital format.
  • 10. Track employee consent In an employment context, consent is not the most appropriate option for processing most employee data. Read why here. However, there may be occasions when you will need to obtain consent. For example, when collecting and storing information about employees that is not obviously needed to run your organisation, like tracking movements through remote control technologies such as CCTV and GPS, or passing employee information on to a third party for marketing purposes.
  • 11. Track employee consent With Cezanne HR, you can easily generate personalised communications – with e-signatures – and track when (and whether) employees have consented. Other important GDPR-related communications, such as updates to your company privacy statements, employment contracts, or data protection policies can be managed and tracked in the same way. As everything is stored centrally, it’s easier for you to see when you may need to refresh consent, and employees can check back at anytime to see what they agreed to.
  • 12. Simplify data deletion Once you no longer need personal data for the purpose for which it was collected, data protection legislation says it should be deleted unless you have other grounds for retaining it. These could be for legislative reasons, or if discarding the data too soon would disadvantage your business. To make matters more complicated, the GDPR expressly authorises individual member states to implement more specific rules in respect of the processing of HR-related personal data. It will be important to follow national law developments, in addition to more generic GDPR requirements, and adjust your policies to match.
  • 13. Simplify data deletion An important first step is to understand what employee data you hold, and why. For example, is it necessary for compliance with a legal obligation, or for the establishment, exercise or defence of legal claims? This will help to inform the basis and timeframe for retaining or deleting data, and provide a template against which you can review and delete the employee information you hold in Cezanne HR.
  • 14. Simplify data deletion Whatever your approach, it is important that both a regular review process and methodical cleansing of HR databases (and paper-based records) is in place. A handy feature in Cezanne HR is the option to set reminders against leaver records, which can “nudge” HR administrators to revisit employee records. This means you can delete some information at the time an employee leaves, but schedule a reminder to delete other data, such as information relating to pay, working hours, performance or disciplinaries, when the relevant period relating to statutory requirements has elapsed.
  • 15. Build a culture of privacy While some employees will have greater responsibility than others, data compliance is a company-wide issue. As the UK Information Commissioner, Elizabeth Denham said recently: “The new legislation creates an onus on companies to understand the risks that they create for others, and to mitigate those risks. It’s about moving away from seeing the law as a box ticking exercise, and instead to work on a framework that can be used to build a culture of privacy that pervades an entire organisation.”
  • 16. Build a culture of privacy Ensuring that your employees receive appropriate training, is part of the solution. With Cezanne HR, you can easily review employee roles and responsibilities, allocate them to appropriate training activities, and set up notifications to trigger a reminder when training or certification is up for renewal or should be refreshed. And, with the integrated performance module, you can embed data security best-practice and discussions around GDPR compliance into employee appraisals, so you can ensure it becomes part of your organisation’s DNA.
  • 17. Keep employees informed The GDPR regulations require you provide much more information to employees about how (and why) you use, manage and secure their data, and the rights they have over that data. Some of this is better managed through one-to-one communications, especially when tracking or consent is required. However, there is also an argument for creating an information hub that’s always on, and always available.
  • 18. Keep employees informed The Workspaces feature in Cezanne HR allows you to quickly set up dedicated portals, targeted at different groups of employees if required. For example, to address country-specific requirements. The portal manager, or managers (who can be anyone you nominate) will be able to upload relevant documentation, include links to relevant third-party sites, post updates with notifications if required, and provide a question and answers forum for employees. It’s an easy way to ensure GDPR visibility and keep compliance issues top of the agenda.
  • 19. Useful links Information Commissioner’s Office: A comprehensive resource covering all aspects of data protection and GDPR in the UK https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/ Bird & Bird GDPR Tracker: aims to shows how and where GDPR has been supplemented locally https://www.twobirds.com/en/hot-topics/general-data-protection-regulation/gdpr-tracker Intersoft Consulting A usefully indexed version of the General Data Protection Regulation. https://gdpr-info.eu/art-4-gdpr/ Cezanne HR Information about Cezanne HR’s security, pricing and HR solution. https://cezannehr.com/ To book an online demo or get in touch click here or call 020 7202 2720