Data Protection and Digital Information (No.2) Bill
This Bill aims to make changes to the UK General Data Protection Regulations (UK GDPR) and to introduce several significant data protection and ePrivacy reforms. Key proposed changes: removing the traditional role of Data Protection Officer and to replace it with ‘Senior Responsible Individual’ (SRI) remove the requirement to complete a data protection impact assessment […]
Social Media Monitoring
Social media is a powerful medium. It allows people to connect anywhere in the world, share information, builds, and connects communities as well as educate and serve as a tool to promote business. However, it also has a downside as trolling, cyber bullying, and data leaks become common. The challenge and risk arising from social […]
Recruitment and modern data protection
GDPR and discrimination In this HR article, we provide some guidance to help make recruitment practices safer and to improve legal compliance. Questions around how employment law affects recruitment and selection, are common. There are a few key areas to be mindful of. The main ones are contract law, employment law, data protection and discrimination. The […]
Subject access requests and how to comply
HR often gets involved with data handling when an employee asks to see their personnel file, and in doing so makes a ‘subject access request’. It is often the case that these requests come paired with a grievance or a resignation. As it may be the more disgruntled individuals who make these requests, it […]
GDPR – Document Retention
The GDPR sets up additional requirements around retention of personal data. We are being regularly asked by clients about the data retention periods for personal data, specifically around the personal data collected and processed during employment. Therefore, we have created an easy to use guide to help quickly reference the different retention periods. Document Retention […]
GDPR and HR Toolkit offers you tools, resources and practical guidance
The General Data Protection Regulation (GDPR) is due to come into effect from May 2018 and to help you with compliance, HR Solutions have several webinars and interactive workshops planned for you. From January to May 2018 our HR events include free monthly webinars as well as half day and full day interactive workshops […]
Getting ready for GDPR – A HR Perspective
The General Data Protection Regulations (GDPR) are due to come into effect from May 2018, and whilst the Data Protection Act has been around for many years already, the GDPR does somewhat enhance the obligations and duties of both a Data Controller and Data Processor. The GDPR will apply to all organisations that are […]
Cyber hack leaves Equifax facing a $70 billion class-action lawsuit
Equifax faces a huge class action lawsuit after revelations that the credit reporting agency had suffered a huge data breach. Two women in Oregon U.S. filed the lawsuit on behalf of all affected consumers. It followed an extensive data breach that could see personal information of 143 million American’s compromised. Accused of negligence The company […]
The impact of GDPR on HR and personal data
It’s impossible to have escaped the fact that next year, new stricter rules on data protection will come into force that will introduce more stringent rules on how companies handle personal data. The General Data Protection Regulation (GDPR) will replace the current Data Protection Act. From 25 May 2018, GDPR will change how organisations store and […]
How will the GDPR affect offshoring?
Organisations who obtain services or products from another country shouldn’t expect to escape the impact of the General Data Protection Regulation (GDPR) when it comes into force next year. Some offshoring involves outsourcing or contracting out manufacturing to another company. However, it also includes relocating certain parts of a business to another country; for […]
Flybe fined £70,000 for breaking PECR rules
Flybe must pay £70,000 in fines for breaching the Privacy and Electronic Communication Regulations. The UK airline sent marketing emails to over 3.3 million people, despite choosing to opt out of receiving such correspondence. The company sent the emails last year, to update its records prior to the EU’s General Data Protection Regulation (GDPR), on 25 May 2018. However, while […]
£1.9bn fines under GDPR for bank breach
If the recent security breach of Tesco Bank accounts had happened under General Data Protection Regulations (GDPR), Tesco would be facing fines of over £1.9bn. Supermarket chain Tesco, owners of Tesco Bank, admitted to a serious security breach following complaints of discrepancies in customers’ accounts. Criminals hacked 40,000 accounts and stole money from 20,000. Tesco […]