In the second of our Surrey Breakfast Employment Updates in 2017, we’re teaming up again with Andrew Knorpel and Sophie Banks from Mundays Solicitors to ensure that you’re on track with your HR preparations for implementing the new requirements of the General Data Protection Regulation (“GDPR”).
With less than a year left before the GDPR comes into force on 25 May 2018, all organisations should be well down the line of considering how they may need to change their practices, procedures and documentation in order to comply with it. This will involve conducting a detailed audit of all data processed, much of which will occur in their capacity as employer. With potential fines of up to €20 million or 4% of global annual turnover (whichever is higher) in the event of default (not to mention damage to your corporate reputation), we’ll look at what employers should be doing now to prepare for the GDPR.
We’ll be looking at the legal basis for all processing, together with the new requirement to demonstrate compliance with the GDPR. We’ll also give an update on how to deal with subject access requests, as a result of both recent case law and the GDPR.