SlideShare une entreprise Scribd logo

GDPR Compliance: The challenge for HR and how Cezanne HR helps

Télécharger en tant que PPTX, PDF
Cezanne HR
Cezanne HR

7 practical tips on how to nail GDPR compliance using HR software.

Recrutement & RH
1  sur  19
GDPR compliance: the challenge for HR and how Cezanne HR helps
GDPR: the challenge for HR The General Data Protection Regulation will apply from 25 May 2018. The new legislation introduces new requirements, backed by higher penalties. These requirements include a greater emphasis on data security, transparency and accountability, together with enhanced rights for ‘data subjects’, which includes your employees. GDPR makes gaining control over your HR data - wherever it is stored - more important than ever before.
GDPR: the challenge for HR If you are still making do with spreadsheets, paper-files or out-of- date HR systems that lack effective security or employee self-service, GDPR could also be the perfect opportunity to make the business case for a modern, secure Cloud HR software system, like Cezanne HR. HR software won’t instantly make you compliant with every aspect of GDPR, but it will take you a long way towards it. And, by centralising your HR data and automating many of the most time-consuming HR admin activities, it will free up your time to address the rest.
Keep HR data secure The GDPR requires ‘personal data’ to be processed in a manner that ensures its security. Personal data is defined as ‘any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier’, and covers paper files, spreadsheets and digital documents. The onus is on you, as the data controller, to demonstrate, for example, that you know where the information is held, why you collect it, how it is used and who has access to it, as well as have effective systems in place to secure it and report any data breaches.
Keep HR data secure With Cezanne HR, you can store all your HR information in a single, secure online HR system. You’ll benefit from advanced security at every level, from data encryption and role-based access to your HR system, to hosting within the European Economic Area by AWS, the world-leader in robust, secure, Cloud-hosting. Read more about security. Scanned or digital documents are simple to upload into your Cezanne HR system, so you don’t need to worry about how to secure or share paper-based records. Costs won’t be excessive either. Data storage, including uploaded documents, is included in your monthly subscription fees.
Improve data accuracy Under GDPR you are required to ensure that personal data is accurate and complete – and put it right when it is not. This could be almost unmanageable if employees can’t see what data you hold about them in the first place. The GDPR includes a best practice recommendation that, where possible, organisations should be able to provide remote access to a secure self-service system which would provide the individual with direct access to his or her information.
Improve data accuracy Cezanne HR combines easy-to-manage employee self-service with roles-based security and approval workflows, so you can allow employees to check and update their own information, while staying in control. You can configure Cezanne HR to fit your own processes. For example, to decide what information employees can be allowed to edit, whether changes should be approved and by whom, and where local variations make sense. It’s an effective – and secure – way of helping you with compliance, while simultaneously delivering a service that makes life easier for employees and their managers.
Manage Data Subject requests Employees (and job candidates) already have the right under current data protection legislation to request a copy of the data you hold about them. GDPR requires that you respond to these requests more comprehensively and more quickly, and removes the right to charge (at least the first time). As employee rights to data under GDPR become more widely known, some experts are predicting a surge in these kinds of requests. Time will tell.
Manage Data Subject requests By storing your HR data and documents in one place (your Cezanne HR system), you’ll always know what information you hold about each of your employees. Straightforward reporting and export to Excel for HR administrators means you are better positioned to respond to data subject requests, as well as another requirement of GDPR: the data subject’s right to take their data with them in a manageable, digital format.
Track employee consent In an employment context, consent is not the most appropriate option for processing most employee data. Read why here. However, there may be occasions when you will need to obtain consent. For example, when collecting and storing information about employees that is not obviously needed to run your organisation, like tracking movements through remote control technologies such as CCTV and GPS, or passing employee information on to a third party for marketing purposes.
Track employee consent With Cezanne HR, you can easily generate personalised communications – with e-signatures – and track when (and whether) employees have consented. Other important GDPR-related communications, such as updates to your company privacy statements, employment contracts, or data protection policies can be managed and tracked in the same way. As everything is stored centrally, it’s easier for you to see when you may need to refresh consent, and employees can check back at anytime to see what they agreed to.
Simplify data deletion Once you no longer need personal data for the purpose for which it was collected, data protection legislation says it should be deleted unless you have other grounds for retaining it. These could be for legislative reasons, or if discarding the data too soon would disadvantage your business. To make matters more complicated, the GDPR expressly authorises individual member states to implement more specific rules in respect of the processing of HR-related personal data. It will be important to follow national law developments, in addition to more generic GDPR requirements, and adjust your policies to match.
Simplify data deletion An important first step is to understand what employee data you hold, and why. For example, is it necessary for compliance with a legal obligation, or for the establishment, exercise or defence of legal claims? This will help to inform the basis and timeframe for retaining or deleting data, and provide a template against which you can review and delete the employee information you hold in Cezanne HR.
Simplify data deletion Whatever your approach, it is important that both a regular review process and methodical cleansing of HR databases (and paper-based records) is in place. A handy feature in Cezanne HR is the option to set reminders against leaver records, which can “nudge” HR administrators to revisit employee records. This means you can delete some information at the time an employee leaves, but schedule a reminder to delete other data, such as information relating to pay, working hours, performance or disciplinaries, when the relevant period relating to statutory requirements has elapsed.
Build a culture of privacy While some employees will have greater responsibility than others, data compliance is a company-wide issue. As the UK Information Commissioner, Elizabeth Denham said recently: “The new legislation creates an onus on companies to understand the risks that they create for others, and to mitigate those risks. It’s about moving away from seeing the law as a box ticking exercise, and instead to work on a framework that can be used to build a culture of privacy that pervades an entire organisation.”
Build a culture of privacy Ensuring that your employees receive appropriate training, is part of the solution. With Cezanne HR, you can easily review employee roles and responsibilities, allocate them to appropriate training activities, and set up notifications to trigger a reminder when training or certification is up for renewal or should be refreshed. And, with the integrated performance module, you can embed data security best-practice and discussions around GDPR compliance into employee appraisals, so you can ensure it becomes part of your organisation’s DNA.
Keep employees informed The GDPR regulations require you provide much more information to employees about how (and why) you use, manage and secure their data, and the rights they have over that data. Some of this is better managed through one-to-one communications, especially when tracking or consent is required. However, there is also an argument for creating an information hub that’s always on, and always available.
Keep employees informed The Workspaces feature in Cezanne HR allows you to quickly set up dedicated portals, targeted at different groups of employees if required. For example, to address country-specific requirements. The portal manager, or managers (who can be anyone you nominate) will be able to upload relevant documentation, include links to relevant third-party sites, post updates with notifications if required, and provide a question and answers forum for employees. It’s an easy way to ensure GDPR visibility and keep compliance issues top of the agenda.
Useful links Information Commissioner’s Office: A comprehensive resource covering all aspects of data protection and GDPR in the UK https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/ Bird & Bird GDPR Tracker: aims to shows how and where GDPR has been supplemented locally https://www.twobirds.com/en/hot-topics/general-data-protection-regulation/gdpr-tracker Intersoft Consulting A usefully indexed version of the General Data Protection Regulation. https://gdpr-info.eu/art-4-gdpr/ Cezanne HR Information about Cezanne HR’s security, pricing and HR solution. https://cezannehr.com/ To book an online demo or get in touch click here or call 020 7202 2720

Recommandé

General Data Protection Regulation (GDPR) Compliance
General Data Protection Regulation (GDPR) ComplianceGeneral Data Protection Regulation (GDPR) Compliance
General Data Protection Regulation (GDPR) Complianceaccenture
 
General Data Protection Regulation (GDPR) Implications for Canadian Firms
General Data Protection Regulation (GDPR) Implications for Canadian FirmsGeneral Data Protection Regulation (GDPR) Implications for Canadian Firms
General Data Protection Regulation (GDPR) Implications for Canadian Firmsaccenture
 
Using GDPR to Transform Customer Experience
Using GDPR to Transform Customer ExperienceUsing GDPR to Transform Customer Experience
Using GDPR to Transform Customer ExperienceMongoDB
 
Designing Enhanced Supervision for the Evolving Wealth Management Ecosystem
Designing Enhanced Supervision for the Evolving Wealth Management EcosystemDesigning Enhanced Supervision for the Evolving Wealth Management Ecosystem
Designing Enhanced Supervision for the Evolving Wealth Management Ecosystemaccenture
 
Pensions on the Blockchain
Pensions on the BlockchainPensions on the Blockchain
Pensions on the Blockchainaccenture
 
Limit your vulnerabilities: Assess. Develop. Protect.
Limit your vulnerabilities: Assess. Develop. Protect.Limit your vulnerabilities: Assess. Develop. Protect.
Limit your vulnerabilities: Assess. Develop. Protect.accenture
 
Data privacy and security in uae
Data privacy and security in uaeData privacy and security in uae
Data privacy and security in uaeRishalHalid1
 
The Connected Refinery – Accenture 2017 Digital Refining Survey
The Connected Refinery – Accenture 2017 Digital Refining SurveyThe Connected Refinery – Accenture 2017 Digital Refining Survey
The Connected Refinery – Accenture 2017 Digital Refining Surveyaccenture
 

Recommandé

General Data Protection Regulation (GDPR) Compliance
General Data Protection Regulation (GDPR) ComplianceGeneral Data Protection Regulation (GDPR) Compliance
General Data Protection Regulation (GDPR) Complianceaccenture
 
General Data Protection Regulation (GDPR) Implications for Canadian Firms
General Data Protection Regulation (GDPR) Implications for Canadian FirmsGeneral Data Protection Regulation (GDPR) Implications for Canadian Firms
General Data Protection Regulation (GDPR) Implications for Canadian Firmsaccenture
 
Using GDPR to Transform Customer Experience
Using GDPR to Transform Customer ExperienceUsing GDPR to Transform Customer Experience
Using GDPR to Transform Customer ExperienceMongoDB
 
Designing Enhanced Supervision for the Evolving Wealth Management Ecosystem
Designing Enhanced Supervision for the Evolving Wealth Management EcosystemDesigning Enhanced Supervision for the Evolving Wealth Management Ecosystem
Designing Enhanced Supervision for the Evolving Wealth Management Ecosystemaccenture
 
Pensions on the Blockchain
Pensions on the BlockchainPensions on the Blockchain
Pensions on the Blockchainaccenture
 
Limit your vulnerabilities: Assess. Develop. Protect.
Limit your vulnerabilities: Assess. Develop. Protect.Limit your vulnerabilities: Assess. Develop. Protect.
Limit your vulnerabilities: Assess. Develop. Protect.accenture
 
Data privacy and security in uae
Data privacy and security in uaeData privacy and security in uae
Data privacy and security in uaeRishalHalid1
 
The Connected Refinery – Accenture 2017 Digital Refining Survey
The Connected Refinery – Accenture 2017 Digital Refining SurveyThe Connected Refinery – Accenture 2017 Digital Refining Survey
The Connected Refinery – Accenture 2017 Digital Refining Surveyaccenture
 
California Consumer Privacy Act (CCPA)
California Consumer Privacy Act (CCPA)California Consumer Privacy Act (CCPA)
California Consumer Privacy Act (CCPA)Happiest Minds Technologies
 
How is GDPR relevant for US companies
How is GDPR relevant for US companies How is GDPR relevant for US companies
How is GDPR relevant for US companies Patric Dahse
 
The State of the Federal IT Market 2018
The State of the Federal IT Market 2018The State of the Federal IT Market 2018
The State of the Federal IT Market 2018accenture
 
DAMA Webinar: The Data Governance of Personal (PII) Data
DAMA Webinar: The Data Governance of Personal (PII) DataDAMA Webinar: The Data Governance of Personal (PII) Data
DAMA Webinar: The Data Governance of Personal (PII) DataDATAVERSITY
 
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powell
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powellCWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powell
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powellCapgemini
 
Securing the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the InternetSecuring the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the Internetaccenture
 
Industry X.0: Unlocking the Power of Digital in Plant Operations
Industry X.0: Unlocking the Power of Digital in Plant Operations Industry X.0: Unlocking the Power of Digital in Plant Operations
Industry X.0: Unlocking the Power of Digital in Plant Operations accenture
 
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...accenture
 
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...Capgemini
 
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable Future
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable FutureMature Field Redevelopments: How to Stay Relevant for the Foreseeable Future
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable Futureaccenture
 
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...accenture
 
The realist’s guide to quantum technology and national security
The realist’s guide to quantum technology and national securityThe realist’s guide to quantum technology and national security
The realist’s guide to quantum technology and national securityDeloitte United States
 
Guardians of Trust: Building Trust in Data & Analytics
Guardians of Trust: Building Trust in Data & AnalyticsGuardians of Trust: Building Trust in Data & Analytics
Guardians of Trust: Building Trust in Data & AnalyticsEryk Budi Pratama
 
Securing the Industrial Enterprise
Securing the Industrial EnterpriseSecuring the Industrial Enterprise
Securing the Industrial Enterpriseaccenture
 
Decoding Organizational DNA
Decoding Organizational DNADecoding Organizational DNA
Decoding Organizational DNAaccenture
 
Digital Fragmentation: Adapt To Succeed In A Fragmented World
Digital Fragmentation: Adapt To Succeed In A Fragmented WorldDigital Fragmentation: Adapt To Succeed In A Fragmented World
Digital Fragmentation: Adapt To Succeed In A Fragmented WorldAccenture Insurance
 
Security Implications of Accenture Technology Vision 2015 - Executive Report
Security Implications of Accenture Technology Vision 2015 - Executive ReportSecurity Implications of Accenture Technology Vision 2015 - Executive Report
Security Implications of Accenture Technology Vision 2015 - Executive ReportAccenture Technology
 
Security: Enabling the Journey to the Cloud
Security: Enabling the Journey to the CloudSecurity: Enabling the Journey to the Cloud
Security: Enabling the Journey to the CloudCapgemini
 
Accenture Security CG&S Cyber Resilience
Accenture Security CG&S Cyber ResilienceAccenture Security CG&S Cyber Resilience
Accenture Security CG&S Cyber Resilienceaccenture
 
Capgemini Consulting Information Security Benchmarking 2017
Capgemini Consulting Information Security Benchmarking 2017Capgemini Consulting Information Security Benchmarking 2017
Capgemini Consulting Information Security Benchmarking 2017Capgemini
 
Eu data protection regulations (point-of-view)
Eu data protection regulations (point-of-view)Eu data protection regulations (point-of-view)
Eu data protection regulations (point-of-view)Gerson Trigueiros
 
What is GDPR Data Flow Mapping
What is GDPR Data Flow MappingWhat is GDPR Data Flow Mapping
What is GDPR Data Flow MappingVISTA InfoSec
 

Contenu connexe

Tendances

How is GDPR relevant for US companies
How is GDPR relevant for US companies How is GDPR relevant for US companies
How is GDPR relevant for US companies Patric Dahse
 
The State of the Federal IT Market 2018
The State of the Federal IT Market 2018The State of the Federal IT Market 2018
The State of the Federal IT Market 2018accenture
 
DAMA Webinar: The Data Governance of Personal (PII) Data
DAMA Webinar: The Data Governance of Personal (PII) DataDAMA Webinar: The Data Governance of Personal (PII) Data
DAMA Webinar: The Data Governance of Personal (PII) DataDATAVERSITY
 
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powell
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powellCWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powell
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powellCapgemini
 
Securing the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the InternetSecuring the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the Internetaccenture
 
Industry X.0: Unlocking the Power of Digital in Plant Operations
Industry X.0: Unlocking the Power of Digital in Plant Operations Industry X.0: Unlocking the Power of Digital in Plant Operations
Industry X.0: Unlocking the Power of Digital in Plant Operations accenture
 
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...accenture
 
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...Capgemini
 
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable Future
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable FutureMature Field Redevelopments: How to Stay Relevant for the Foreseeable Future
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable Futureaccenture
 
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...accenture
 
The realist’s guide to quantum technology and national security
The realist’s guide to quantum technology and national securityThe realist’s guide to quantum technology and national security
The realist’s guide to quantum technology and national securityDeloitte United States
 
Guardians of Trust: Building Trust in Data & Analytics
Guardians of Trust: Building Trust in Data & AnalyticsGuardians of Trust: Building Trust in Data & Analytics
Guardians of Trust: Building Trust in Data & AnalyticsEryk Budi Pratama
 
Securing the Industrial Enterprise
Securing the Industrial EnterpriseSecuring the Industrial Enterprise
Securing the Industrial Enterpriseaccenture
 
Decoding Organizational DNA
Decoding Organizational DNADecoding Organizational DNA
Decoding Organizational DNAaccenture
 
Digital Fragmentation: Adapt To Succeed In A Fragmented World
Digital Fragmentation: Adapt To Succeed In A Fragmented WorldDigital Fragmentation: Adapt To Succeed In A Fragmented World
Digital Fragmentation: Adapt To Succeed In A Fragmented WorldAccenture Insurance
 
Security Implications of Accenture Technology Vision 2015 - Executive Report
Security Implications of Accenture Technology Vision 2015 - Executive ReportSecurity Implications of Accenture Technology Vision 2015 - Executive Report
Security Implications of Accenture Technology Vision 2015 - Executive ReportAccenture Technology
 
Security: Enabling the Journey to the Cloud
Security: Enabling the Journey to the CloudSecurity: Enabling the Journey to the Cloud
Security: Enabling the Journey to the CloudCapgemini
 
Accenture Security CG&S Cyber Resilience
Accenture Security CG&S Cyber ResilienceAccenture Security CG&S Cyber Resilience
Accenture Security CG&S Cyber Resilienceaccenture
 
Capgemini Consulting Information Security Benchmarking 2017
Capgemini Consulting Information Security Benchmarking 2017Capgemini Consulting Information Security Benchmarking 2017
Capgemini Consulting Information Security Benchmarking 2017Capgemini
 

Tendances (20)

California Consumer Privacy Act (CCPA)
California Consumer Privacy Act (CCPA)California Consumer Privacy Act (CCPA)
California Consumer Privacy Act (CCPA)
 
How is GDPR relevant for US companies
How is GDPR relevant for US companies How is GDPR relevant for US companies
How is GDPR relevant for US companies
 
The State of the Federal IT Market 2018
The State of the Federal IT Market 2018The State of the Federal IT Market 2018
The State of the Federal IT Market 2018
 
DAMA Webinar: The Data Governance of Personal (PII) Data
DAMA Webinar: The Data Governance of Personal (PII) DataDAMA Webinar: The Data Governance of Personal (PII) Data
DAMA Webinar: The Data Governance of Personal (PII) Data
 
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powell
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powellCWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powell
CWIN17 telford gdpr or how to eat the elephant a bit at a time - andy powell
 
Securing the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the InternetSecuring the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the Internet
 
Industry X.0: Unlocking the Power of Digital in Plant Operations
Industry X.0: Unlocking the Power of Digital in Plant Operations Industry X.0: Unlocking the Power of Digital in Plant Operations
Industry X.0: Unlocking the Power of Digital in Plant Operations
 
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...
The Pulse of Pensions: What Members Really Think of Their Pension Plans and R...
 
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...
The Currency of Trust: Why Banks and Insurers Must Make Customer Data Safer a...
 
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable Future
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable FutureMature Field Redevelopments: How to Stay Relevant for the Foreseeable Future
Mature Field Redevelopments: How to Stay Relevant for the Foreseeable Future
 
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...
Cutting Taxpayer Errors With Stronger Service Design: How More Citizen-centri...
 
The realist’s guide to quantum technology and national security
The realist’s guide to quantum technology and national securityThe realist’s guide to quantum technology and national security
The realist’s guide to quantum technology and national security
 
Guardians of Trust: Building Trust in Data & Analytics
Guardians of Trust: Building Trust in Data & AnalyticsGuardians of Trust: Building Trust in Data & Analytics
Guardians of Trust: Building Trust in Data & Analytics
 
Securing the Industrial Enterprise
Securing the Industrial EnterpriseSecuring the Industrial Enterprise
Securing the Industrial Enterprise
 
Decoding Organizational DNA
Decoding Organizational DNADecoding Organizational DNA
Decoding Organizational DNA
 
Digital Fragmentation: Adapt To Succeed In A Fragmented World
Digital Fragmentation: Adapt To Succeed In A Fragmented WorldDigital Fragmentation: Adapt To Succeed In A Fragmented World
Digital Fragmentation: Adapt To Succeed In A Fragmented World
 
Security Implications of Accenture Technology Vision 2015 - Executive Report
Security Implications of Accenture Technology Vision 2015 - Executive ReportSecurity Implications of Accenture Technology Vision 2015 - Executive Report
Security Implications of Accenture Technology Vision 2015 - Executive Report
 
Security: Enabling the Journey to the Cloud
Security: Enabling the Journey to the CloudSecurity: Enabling the Journey to the Cloud
Security: Enabling the Journey to the Cloud
 
Accenture Security CG&S Cyber Resilience
Accenture Security CG&S Cyber ResilienceAccenture Security CG&S Cyber Resilience
Accenture Security CG&S Cyber Resilience
 
Capgemini Consulting Information Security Benchmarking 2017
Capgemini Consulting Information Security Benchmarking 2017Capgemini Consulting Information Security Benchmarking 2017
Capgemini Consulting Information Security Benchmarking 2017
 

Similaire à GDPR Compliance: The challenge for HR and how Cezanne HR helps

Eu data protection regulations (point-of-view)
Eu data protection regulations (point-of-view)Eu data protection regulations (point-of-view)
Eu data protection regulations (point-of-view)Gerson Trigueiros
 
What is GDPR Data Flow Mapping
What is GDPR Data Flow MappingWhat is GDPR Data Flow Mapping
What is GDPR Data Flow MappingVISTA InfoSec
 
GDPR Compliance with Microsoft 365
GDPR Compliance with Microsoft 365 GDPR Compliance with Microsoft 365
GDPR Compliance with Microsoft 365 ayeshaurooj104
 
DevOps vs GDPR: How to Comply and Stay Agile
DevOps vs GDPR: How to Comply and Stay AgileDevOps vs GDPR: How to Comply and Stay Agile
DevOps vs GDPR: How to Comply and Stay AgileBen Saunders
 
GDPR Guide: The ICO's 12 Recommended Steps To Take Now
GDPR Guide: The ICO's 12 Recommended Steps To Take NowGDPR Guide: The ICO's 12 Recommended Steps To Take Now
GDPR Guide: The ICO's 12 Recommended Steps To Take NowHackerOne
 
10 Tips for CIOS Data Security in the Cloud
10 Tips for CIOS Data Security in the Cloud10 Tips for CIOS Data Security in the Cloud
10 Tips for CIOS Data Security in the CloudIron Mountain
 
3 cliches about the Data Protection Act you should not avoid
3 cliches about the Data Protection Act you should not avoid3 cliches about the Data Protection Act you should not avoid
3 cliches about the Data Protection Act you should not avoidHRMantra Software Pvt. Ltd
 
How will GDPR affect small businesses?
How will GDPR affect small businesses?How will GDPR affect small businesses?
How will GDPR affect small businesses?AllBusinessTemplates
 
Convince your board - Ten steps to GDPR compliance
Convince your board - Ten steps to GDPR complianceConvince your board - Ten steps to GDPR compliance
Convince your board - Ten steps to GDPR complianceDave James
 
12 Must-Use Digital Tools for HR Departments | DrySign USA Blog
12 Must-Use Digital Tools for HR Departments | DrySign USA Blog12 Must-Use Digital Tools for HR Departments | DrySign USA Blog
12 Must-Use Digital Tools for HR Departments | DrySign USA BlogDrysign By Exela
 
Data privacy how do you protect and delete data in the cloud
Data privacy how do you protect and delete data in the cloudData privacy how do you protect and delete data in the cloud
Data privacy how do you protect and delete data in the cloudSalesBabuCRM
 
Benefits of CRM Software.
Benefits of CRM Software.Benefits of CRM Software.
Benefits of CRM Software.Shane Emerson
 
Establishing CCPA Compliance in Legacy PeopleSoft Systems
Establishing CCPA Compliance in Legacy PeopleSoft SystemsEstablishing CCPA Compliance in Legacy PeopleSoft Systems
Establishing CCPA Compliance in Legacy PeopleSoft SystemsAppsian
 
Will you be ready to comply with new EU Data Protection Regulation in time?
Will you be ready to comply with new EU Data Protection Regulation in time?Will you be ready to comply with new EU Data Protection Regulation in time?
Will you be ready to comply with new EU Data Protection Regulation in time?Per Norhammar
 
Streamlining paper processes in a digital world - Canon CEE
Streamlining paper processes in a digital world - Canon CEEStreamlining paper processes in a digital world - Canon CEE
Streamlining paper processes in a digital world - Canon CEECanon Business CEE
 
Come cambia la cybersecurity con il regolamento privacy europeo
Come cambia la cybersecurity con il regolamento privacy europeoCome cambia la cybersecurity con il regolamento privacy europeo
Come cambia la cybersecurity con il regolamento privacy europeoGiulio Coraggio
 
4_Ways_Digital_Onboarding_Strengthens_Retention_and_Compliance.pdf
4_Ways_Digital_Onboarding_Strengthens_Retention_and_Compliance.pdf4_Ways_Digital_Onboarding_Strengthens_Retention_and_Compliance.pdf
4_Ways_Digital_Onboarding_Strengthens_Retention_and_Compliance.pdfHarshada Mulay
 

Similaire à GDPR Compliance: The challenge for HR and how Cezanne HR helps (20)

Eu data protection regulations (point-of-view)
Eu data protection regulations (point-of-view)Eu data protection regulations (point-of-view)
Eu data protection regulations (point-of-view)
 
What is GDPR Data Flow Mapping
What is GDPR Data Flow MappingWhat is GDPR Data Flow Mapping
What is GDPR Data Flow Mapping
 
GDPR Compliance with Microsoft 365
GDPR Compliance with Microsoft 365 GDPR Compliance with Microsoft 365
GDPR Compliance with Microsoft 365
 
DevOps vs GDPR: How to Comply and Stay Agile
DevOps vs GDPR: How to Comply and Stay AgileDevOps vs GDPR: How to Comply and Stay Agile
DevOps vs GDPR: How to Comply and Stay Agile
 
GDPR: Time to Act
GDPR: Time to ActGDPR: Time to Act
GDPR: Time to Act
 
GDPR Guide: The ICO's 12 Recommended Steps To Take Now
GDPR Guide: The ICO's 12 Recommended Steps To Take NowGDPR Guide: The ICO's 12 Recommended Steps To Take Now
GDPR Guide: The ICO's 12 Recommended Steps To Take Now
 
10 Tips for CIOS Data Security in the Cloud
10 Tips for CIOS Data Security in the Cloud10 Tips for CIOS Data Security in the Cloud
10 Tips for CIOS Data Security in the Cloud
 
Data protection in HR
Data protection in HRData protection in HR
Data protection in HR
 
3 cliches about the Data Protection Act you should not avoid
3 cliches about the Data Protection Act you should not avoid3 cliches about the Data Protection Act you should not avoid
3 cliches about the Data Protection Act you should not avoid
 
How will GDPR affect small businesses?
How will GDPR affect small businesses?How will GDPR affect small businesses?
How will GDPR affect small businesses?
 
Convince your board - Ten steps to GDPR compliance
Convince your board - Ten steps to GDPR complianceConvince your board - Ten steps to GDPR compliance
Convince your board - Ten steps to GDPR compliance
 
12 Must-Use Digital Tools for HR Departments | DrySign USA Blog
12 Must-Use Digital Tools for HR Departments | DrySign USA Blog12 Must-Use Digital Tools for HR Departments | DrySign USA Blog
12 Must-Use Digital Tools for HR Departments | DrySign USA Blog
 
Data privacy how do you protect and delete data in the cloud
Data privacy how do you protect and delete data in the cloudData privacy how do you protect and delete data in the cloud
Data privacy how do you protect and delete data in the cloud
 
Benefits of CRM Software.
Benefits of CRM Software.Benefits of CRM Software.
Benefits of CRM Software.
 
Establishing CCPA Compliance in Legacy PeopleSoft Systems
Establishing CCPA Compliance in Legacy PeopleSoft SystemsEstablishing CCPA Compliance in Legacy PeopleSoft Systems
Establishing CCPA Compliance in Legacy PeopleSoft Systems
 
Will you be ready to comply with new EU Data Protection Regulation in time?
Will you be ready to comply with new EU Data Protection Regulation in time?Will you be ready to comply with new EU Data Protection Regulation in time?
Will you be ready to comply with new EU Data Protection Regulation in time?
 
The HR Technology Selection Guide
The HR Technology Selection GuideThe HR Technology Selection Guide
The HR Technology Selection Guide
 
Streamlining paper processes in a digital world - Canon CEE
Streamlining paper processes in a digital world - Canon CEEStreamlining paper processes in a digital world - Canon CEE
Streamlining paper processes in a digital world - Canon CEE
 
Come cambia la cybersecurity con il regolamento privacy europeo
Come cambia la cybersecurity con il regolamento privacy europeoCome cambia la cybersecurity con il regolamento privacy europeo
Come cambia la cybersecurity con il regolamento privacy europeo
 
4_Ways_Digital_Onboarding_Strengthens_Retention_and_Compliance.pdf
4_Ways_Digital_Onboarding_Strengthens_Retention_and_Compliance.pdf4_Ways_Digital_Onboarding_Strengthens_Retention_and_Compliance.pdf
4_Ways_Digital_Onboarding_Strengthens_Retention_and_Compliance.pdf
 

Dernier

Top HR Intern Interview Questions to Ask and Their Ideal Answers
Top HR Intern Interview Questions to Ask and Their Ideal AnswersTop HR Intern Interview Questions to Ask and Their Ideal Answers
Top HR Intern Interview Questions to Ask and Their Ideal AnswersHireQuotient
 
7 non-negotiable roles of Human Resource Management
7 non-negotiable roles of Human Resource Management7 non-negotiable roles of Human Resource Management
7 non-negotiable roles of Human Resource ManagementHireQuotient
 
(圣安德鲁斯大学毕业证学位证成绩单-留学生补办)
(圣安德鲁斯大学毕业证学位证成绩单-留学生补办)(圣安德鲁斯大学毕业证学位证成绩单-留学生补办)
(圣安德鲁斯大学毕业证学位证成绩单-留学生补办)twfkn8xj
 
A Proven #1 Prospecting Hack You're Missing Out On
A Proven #1 Prospecting Hack You're Missing Out OnA Proven #1 Prospecting Hack You're Missing Out On
A Proven #1 Prospecting Hack You're Missing Out Onfross37
 
Recruitment & Selection Theory Models that Work for the Modern Workplace
Recruitment & Selection Theory Models that Work for the Modern WorkplaceRecruitment & Selection Theory Models that Work for the Modern Workplace
Recruitment & Selection Theory Models that Work for the Modern WorkplaceHireQuotient
 
The Great American Payday Prepare for a (Relatively) Bumpy Ride.pdf
The Great American Payday Prepare for a (Relatively) Bumpy Ride.pdfThe Great American Payday Prepare for a (Relatively) Bumpy Ride.pdf
The Great American Payday Prepare for a (Relatively) Bumpy Ride.pdfJasper Colin
 
Webinar - How to Choose and Use Salary Data
Webinar - How to Choose and Use Salary DataWebinar - How to Choose and Use Salary Data
Webinar - How to Choose and Use Salary DataPayScale, Inc.
 
Employee Engagement Trend Analysis.pptx.
Employee Engagement Trend Analysis.pptx.Employee Engagement Trend Analysis.pptx.
Employee Engagement Trend Analysis.pptx.ShrayasiRoy
 
Authentic No 1 Amil Baba In Pakistan Amil Baba In Faisalabad Amil Baba In Kar...
Authentic No 1 Amil Baba In Pakistan Amil Baba In Faisalabad Amil Baba In Kar...Authentic No 1 Amil Baba In Pakistan Amil Baba In Faisalabad Amil Baba In Kar...
Authentic No 1 Amil Baba In Pakistan Amil Baba In Faisalabad Amil Baba In Kar...Authentic No 1 Amil Baba In Pakistan
 
Unlocking Organizational Potential: The Essence of Human Resource Management ...
Unlocking Organizational Potential: The Essence of Human Resource Management ...Unlocking Organizational Potential: The Essence of Human Resource Management ...
Unlocking Organizational Potential: The Essence of Human Resource Management ...Sabuj Ahmed
 
如何办RRC学位证,红河学院毕业证成绩单文凭怎么辨别?
如何办RRC学位证,红河学院毕业证成绩单文凭怎么辨别?如何办RRC学位证,红河学院毕业证成绩单文凭怎么辨别?
如何办RRC学位证,红河学院毕业证成绩单文凭怎么辨别?hxwwranl
 
Public Relations jobs in New York City with Phifer & Company
Public Relations jobs in New York City with Phifer & CompanyPublic Relations jobs in New York City with Phifer & Company
Public Relations jobs in New York City with Phifer & CompanyPhiferCompany
 
Top 10 scenario-based questions for hiring a Team Leader
Top 10 scenario-based questions for hiring a Team LeaderTop 10 scenario-based questions for hiring a Team Leader
Top 10 scenario-based questions for hiring a Team LeaderHireQuotient
 
The Engagement Engine: Strategies for Building a High-Performance Culture
The Engagement Engine: Strategies for Building a High-Performance CultureThe Engagement Engine: Strategies for Building a High-Performance Culture
The Engagement Engine: Strategies for Building a High-Performance CultureAggregage
 
Creative Director vs. Design Director: Key Differences for Recruiters
Creative Director vs. Design Director: Key Differences for RecruitersCreative Director vs. Design Director: Key Differences for Recruiters
Creative Director vs. Design Director: Key Differences for RecruitersHireQuotient
 
Intern Welcome LinkedIn Periodical (1).pdf
Intern Welcome LinkedIn Periodical (1).pdfIntern Welcome LinkedIn Periodical (1).pdf
Intern Welcome LinkedIn Periodical (1).pdfmarketing659039
 
15 Best Employee Retention Strategies.pdf
15 Best Employee Retention Strategies.pdf15 Best Employee Retention Strategies.pdf
15 Best Employee Retention Strategies.pdfAlex Vate
 

Dernier (20)

Top HR Intern Interview Questions to Ask and Their Ideal Answers
Top HR Intern Interview Questions to Ask and Their Ideal AnswersTop HR Intern Interview Questions to Ask and Their Ideal Answers
Top HR Intern Interview Questions to Ask and Their Ideal Answers
 
7 non-negotiable roles of Human Resource Management
7 non-negotiable roles of Human Resource Management7 non-negotiable roles of Human Resource Management
7 non-negotiable roles of Human Resource Management
 
(圣安德鲁斯大学毕业证学位证成绩单-留学生补办)
(圣安德鲁斯大学毕业证学位证成绩单-留学生补办)(圣安德鲁斯大学毕业证学位证成绩单-留学生补办)
(圣安德鲁斯大学毕业证学位证成绩单-留学生补办)
 
A Proven #1 Prospecting Hack You're Missing Out On
A Proven #1 Prospecting Hack You're Missing Out OnA Proven #1 Prospecting Hack You're Missing Out On
A Proven #1 Prospecting Hack You're Missing Out On
 
Recruitment & Selection Theory Models that Work for the Modern Workplace
Recruitment & Selection Theory Models that Work for the Modern WorkplaceRecruitment & Selection Theory Models that Work for the Modern Workplace
Recruitment & Selection Theory Models that Work for the Modern Workplace
 
Hot Sexy call girls in Preet Vihar🔝 9953056974 🔝 Delhi escort Service
Hot Sexy call girls in Preet Vihar🔝 9953056974 🔝 Delhi escort ServiceHot Sexy call girls in Preet Vihar🔝 9953056974 🔝 Delhi escort Service
Hot Sexy call girls in Preet Vihar🔝 9953056974 🔝 Delhi escort Service
 
Call Girls in Subhash Nagar ⎝⎝9953056974⎝⎝ Escort Delhi NCR
Call Girls in Subhash Nagar ⎝⎝9953056974⎝⎝ Escort Delhi NCRCall Girls in Subhash Nagar ⎝⎝9953056974⎝⎝ Escort Delhi NCR
Call Girls in Subhash Nagar ⎝⎝9953056974⎝⎝ Escort Delhi NCR
 
The Great American Payday Prepare for a (Relatively) Bumpy Ride.pdf
The Great American Payday Prepare for a (Relatively) Bumpy Ride.pdfThe Great American Payday Prepare for a (Relatively) Bumpy Ride.pdf
The Great American Payday Prepare for a (Relatively) Bumpy Ride.pdf
 
Webinar - How to Choose and Use Salary Data
Webinar - How to Choose and Use Salary DataWebinar - How to Choose and Use Salary Data
Webinar - How to Choose and Use Salary Data
 
Employee Engagement Trend Analysis.pptx.
Employee Engagement Trend Analysis.pptx.Employee Engagement Trend Analysis.pptx.
Employee Engagement Trend Analysis.pptx.
 
9953330565 Low Rate Call Girls In Vijay Nagar Delhi NCR
9953330565 Low Rate Call Girls In Vijay Nagar Delhi NCR9953330565 Low Rate Call Girls In Vijay Nagar Delhi NCR
9953330565 Low Rate Call Girls In Vijay Nagar Delhi NCR
 
Authentic No 1 Amil Baba In Pakistan Amil Baba In Faisalabad Amil Baba In Kar...
Authentic No 1 Amil Baba In Pakistan Amil Baba In Faisalabad Amil Baba In Kar...Authentic No 1 Amil Baba In Pakistan Amil Baba In Faisalabad Amil Baba In Kar...
Authentic No 1 Amil Baba In Pakistan Amil Baba In Faisalabad Amil Baba In Kar...
 
Unlocking Organizational Potential: The Essence of Human Resource Management ...
Unlocking Organizational Potential: The Essence of Human Resource Management ...Unlocking Organizational Potential: The Essence of Human Resource Management ...
Unlocking Organizational Potential: The Essence of Human Resource Management ...
 
如何办RRC学位证,红河学院毕业证成绩单文凭怎么辨别?
如何办RRC学位证,红河学院毕业证成绩单文凭怎么辨别?如何办RRC学位证,红河学院毕业证成绩单文凭怎么辨别?
如何办RRC学位证,红河学院毕业证成绩单文凭怎么辨别?
 
Public Relations jobs in New York City with Phifer & Company
Public Relations jobs in New York City with Phifer & CompanyPublic Relations jobs in New York City with Phifer & Company
Public Relations jobs in New York City with Phifer & Company
 
Top 10 scenario-based questions for hiring a Team Leader
Top 10 scenario-based questions for hiring a Team LeaderTop 10 scenario-based questions for hiring a Team Leader
Top 10 scenario-based questions for hiring a Team Leader
 
The Engagement Engine: Strategies for Building a High-Performance Culture
The Engagement Engine: Strategies for Building a High-Performance CultureThe Engagement Engine: Strategies for Building a High-Performance Culture
The Engagement Engine: Strategies for Building a High-Performance Culture
 
Creative Director vs. Design Director: Key Differences for Recruiters
Creative Director vs. Design Director: Key Differences for RecruitersCreative Director vs. Design Director: Key Differences for Recruiters
Creative Director vs. Design Director: Key Differences for Recruiters
 
Intern Welcome LinkedIn Periodical (1).pdf
Intern Welcome LinkedIn Periodical (1).pdfIntern Welcome LinkedIn Periodical (1).pdf
Intern Welcome LinkedIn Periodical (1).pdf
 
15 Best Employee Retention Strategies.pdf
15 Best Employee Retention Strategies.pdf15 Best Employee Retention Strategies.pdf
15 Best Employee Retention Strategies.pdf
 

GDPR Compliance: The challenge for HR and how Cezanne HR helps

  • 1. GDPR compliance: the challenge for HR and how Cezanne HR helps
  • 2. GDPR: the challenge for HR The General Data Protection Regulation will apply from 25 May 2018. The new legislation introduces new requirements, backed by higher penalties. These requirements include a greater emphasis on data security, transparency and accountability, together with enhanced rights for ‘data subjects’, which includes your employees. GDPR makes gaining control over your HR data - wherever it is stored - more important than ever before.
  • 3. GDPR: the challenge for HR If you are still making do with spreadsheets, paper-files or out-of- date HR systems that lack effective security or employee self-service, GDPR could also be the perfect opportunity to make the business case for a modern, secure Cloud HR software system, like Cezanne HR. HR software won’t instantly make you compliant with every aspect of GDPR, but it will take you a long way towards it. And, by centralising your HR data and automating many of the most time-consuming HR admin activities, it will free up your time to address the rest.
  • 4. Keep HR data secure The GDPR requires ‘personal data’ to be processed in a manner that ensures its security. Personal data is defined as ‘any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier’, and covers paper files, spreadsheets and digital documents. The onus is on you, as the data controller, to demonstrate, for example, that you know where the information is held, why you collect it, how it is used and who has access to it, as well as have effective systems in place to secure it and report any data breaches.
  • 5. Keep HR data secure With Cezanne HR, you can store all your HR information in a single, secure online HR system. You’ll benefit from advanced security at every level, from data encryption and role-based access to your HR system, to hosting within the European Economic Area by AWS, the world-leader in robust, secure, Cloud-hosting. Read more about security. Scanned or digital documents are simple to upload into your Cezanne HR system, so you don’t need to worry about how to secure or share paper-based records. Costs won’t be excessive either. Data storage, including uploaded documents, is included in your monthly subscription fees.
  • 6. Improve data accuracy Under GDPR you are required to ensure that personal data is accurate and complete – and put it right when it is not. This could be almost unmanageable if employees can’t see what data you hold about them in the first place. The GDPR includes a best practice recommendation that, where possible, organisations should be able to provide remote access to a secure self-service system which would provide the individual with direct access to his or her information.
  • 7. Improve data accuracy Cezanne HR combines easy-to-manage employee self-service with roles-based security and approval workflows, so you can allow employees to check and update their own information, while staying in control. You can configure Cezanne HR to fit your own processes. For example, to decide what information employees can be allowed to edit, whether changes should be approved and by whom, and where local variations make sense. It’s an effective – and secure – way of helping you with compliance, while simultaneously delivering a service that makes life easier for employees and their managers.
  • 8. Manage Data Subject requests Employees (and job candidates) already have the right under current data protection legislation to request a copy of the data you hold about them. GDPR requires that you respond to these requests more comprehensively and more quickly, and removes the right to charge (at least the first time). As employee rights to data under GDPR become more widely known, some experts are predicting a surge in these kinds of requests. Time will tell.
  • 9. Manage Data Subject requests By storing your HR data and documents in one place (your Cezanne HR system), you’ll always know what information you hold about each of your employees. Straightforward reporting and export to Excel for HR administrators means you are better positioned to respond to data subject requests, as well as another requirement of GDPR: the data subject’s right to take their data with them in a manageable, digital format.
  • 10. Track employee consent In an employment context, consent is not the most appropriate option for processing most employee data. Read why here. However, there may be occasions when you will need to obtain consent. For example, when collecting and storing information about employees that is not obviously needed to run your organisation, like tracking movements through remote control technologies such as CCTV and GPS, or passing employee information on to a third party for marketing purposes.
  • 11. Track employee consent With Cezanne HR, you can easily generate personalised communications – with e-signatures – and track when (and whether) employees have consented. Other important GDPR-related communications, such as updates to your company privacy statements, employment contracts, or data protection policies can be managed and tracked in the same way. As everything is stored centrally, it’s easier for you to see when you may need to refresh consent, and employees can check back at anytime to see what they agreed to.
  • 12. Simplify data deletion Once you no longer need personal data for the purpose for which it was collected, data protection legislation says it should be deleted unless you have other grounds for retaining it. These could be for legislative reasons, or if discarding the data too soon would disadvantage your business. To make matters more complicated, the GDPR expressly authorises individual member states to implement more specific rules in respect of the processing of HR-related personal data. It will be important to follow national law developments, in addition to more generic GDPR requirements, and adjust your policies to match.
  • 13. Simplify data deletion An important first step is to understand what employee data you hold, and why. For example, is it necessary for compliance with a legal obligation, or for the establishment, exercise or defence of legal claims? This will help to inform the basis and timeframe for retaining or deleting data, and provide a template against which you can review and delete the employee information you hold in Cezanne HR.
  • 14. Simplify data deletion Whatever your approach, it is important that both a regular review process and methodical cleansing of HR databases (and paper-based records) is in place. A handy feature in Cezanne HR is the option to set reminders against leaver records, which can “nudge” HR administrators to revisit employee records. This means you can delete some information at the time an employee leaves, but schedule a reminder to delete other data, such as information relating to pay, working hours, performance or disciplinaries, when the relevant period relating to statutory requirements has elapsed.
  • 15. Build a culture of privacy While some employees will have greater responsibility than others, data compliance is a company-wide issue. As the UK Information Commissioner, Elizabeth Denham said recently: “The new legislation creates an onus on companies to understand the risks that they create for others, and to mitigate those risks. It’s about moving away from seeing the law as a box ticking exercise, and instead to work on a framework that can be used to build a culture of privacy that pervades an entire organisation.”
  • 16. Build a culture of privacy Ensuring that your employees receive appropriate training, is part of the solution. With Cezanne HR, you can easily review employee roles and responsibilities, allocate them to appropriate training activities, and set up notifications to trigger a reminder when training or certification is up for renewal or should be refreshed. And, with the integrated performance module, you can embed data security best-practice and discussions around GDPR compliance into employee appraisals, so you can ensure it becomes part of your organisation’s DNA.
  • 17. Keep employees informed The GDPR regulations require you provide much more information to employees about how (and why) you use, manage and secure their data, and the rights they have over that data. Some of this is better managed through one-to-one communications, especially when tracking or consent is required. However, there is also an argument for creating an information hub that’s always on, and always available.
  • 18. Keep employees informed The Workspaces feature in Cezanne HR allows you to quickly set up dedicated portals, targeted at different groups of employees if required. For example, to address country-specific requirements. The portal manager, or managers (who can be anyone you nominate) will be able to upload relevant documentation, include links to relevant third-party sites, post updates with notifications if required, and provide a question and answers forum for employees. It’s an easy way to ensure GDPR visibility and keep compliance issues top of the agenda.
  • 19. Useful links Information Commissioner’s Office: A comprehensive resource covering all aspects of data protection and GDPR in the UK https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/ Bird & Bird GDPR Tracker: aims to shows how and where GDPR has been supplemented locally https://www.twobirds.com/en/hot-topics/general-data-protection-regulation/gdpr-tracker Intersoft Consulting A usefully indexed version of the General Data Protection Regulation. https://gdpr-info.eu/art-4-gdpr/ Cezanne HR Information about Cezanne HR’s security, pricing and HR solution. https://cezannehr.com/ To book an online demo or get in touch click here or call 020 7202 2720