Some of the content presented on our website has been generated with the assistance of Artificial Intelligence (AI). We ensure that all AI-generated content meets our high standards for accuracy and relevance.
With just a few weeks to go before the GDPR (General Data Protection Regulation) comes in to force, employers are getting to grips with privacy notices for job applicants and data protection policies or privacy standards for their employees.
The next step is to undertake a wider review of your handbooks to make sure that all your policies are compliant and reinforce your position on data protection.
GDPR Compliant Employee Handbooks
Areas To Consider:
- Disciplinary policy – you may wish to update your disciplinary policy to include breaches of the data protection policy (including unauthorised destruction or disclosure of personal data) as offences.
- IT policy – you may wish to update your IT policy to prevent staff from sending personal data to their personal email accounts or their own devices.
- Breach notification -you have 72 hours from becoming aware of a notifiable data breach to make a report to the Information Commissioner. You may wish to set up a protocol for employees to make reports and consider allowing them to report anonymously. You may wish to train your employees on this too.
- Homeworking policy -if you allow employees to work from home, you may wish to amend your policy on this to cover transporting personal data to and from the office, logs for files and reports which are taken away, security expectations for confidential paperwork and IT equipment at home.
How Nelsons Can Help
Laura Kearsley is a specialist Employment Law Partner at Nelsons.
Our team can provide expertise and guidance on any queries around the changes you need to implement in order to comply. For further information, please contact our employment law specialists on 0800 024 1976 or contact us via the online form.
We are also offering template privacy notices and data protection policies for a fixed fee along with optional support in tailoring this documentation and rolling it out across your workforce as well as bespoke training packages for HR teams or groups of employees, so that you can embed data protection in to your culture and evidence your efforts to comply with the new regime.