The General Data Protection Regulation (GDPR) is the new legal framework that will come into effect on the 25th of May 2018 in the European Union. EU regulations have direct effect in all EU member states, meaning the GDPR replaces the current Data Protection Directive and applies to all EU member states.
The GDPR’s focus is the protection of personal data. In fact, GDPR is one of the biggest shakeups ever seen affecting how data relating to an individual should be handled—and it affects not just companies but any individual, corporation, public authority, agency or other body that processes the personal data of individuals based in the EU.
As gatekeepers and processors of personal data, HR and People teams have a crucial role to play in preparing for this step change. The rules on how data is kept and used will become much more stringent, and it’s vital that HR and People teams become more transparent, communicating to employees exactly how their data is processed.
In a world where 2,500,000,000,000,000,000 bytes of data are created every day, and people’s data are captured and used in ways they may not even realise, GDPR enables HR and People leaders to empower people to own their data in the workplace.
Yes, it needs preparation: but companies can either embrace the new rules, or run and hide. If it’s the latter, then you better also prepare to be caught up by significant penalties.
Sage encourages every employer to obtain their own guidance, including legal advice, to ensure that all of your operations are ready for GDPR. In the meantime, this guide walks you through six steps to help HR and People teams prepare for GDPR.