Those that have been keeping an eye on our blogs this month will know that we have published several articles to help employers with their preparations for the new General Data Protection Regulation (GDPR). With only days left until they come into force, now is the time to reflect on the steps you have taken and plug any gaps to ensure you are compliant by 25 May 2018.
To review our previous blogs please click on the links below:
- Are Your HR Policies & Procedures GDPR Compliant
- Employers Advised To Review Employee Handbooks
- GDPR FAQ’s
Is Your Business GDPR Ready?
Things to Consider
In addition, we have set out our top things to consider before the new rules come into effect:
- When processing personal data consider whether there is a way of doing so without identifying individuals. It may be possible to have additional information (a key or code) kept separately (and securely) to decode it when necessary.
- Can data be anonymised? Do you really need to be able to identify the employee to use the data?
- Use passwords and encourage employees to use more complex passwords, not to share them, and to change them regularly.
- Encrypt data where possible, particularly if you are transferring data or allowing remote working.
- Think about the devices that employees use. Will you still allow employees to use their own smartphones, etc., or will you provide company phones and laptops now instead?
- Only process personal data necessary for specific purposes.
- Put in place measures to ensure you are compliant with the principles and keep records of these.
How Nelsons Can Help
Nelsons’ Employment Law team have also been preparing for GDPR by getting ready a suite of compliant documentation for businesses to use. So, no matter what you need, from privacy notices to contracts of employment, contact us for any of those last minute GDPR fixes on 0800 024 1976 or via our online form.