The impact of GDPR on HR departments
by Startacus Admin
On May 25th 2018, the much anticipated GDPR comes into effect marking a host of changes to how we collect, store, manage, protect and dispose of data.
While there’s been much panicked discussion around crippling fines (up to €20 million or 4% of annual global turnover ) there’s been less about the changes that will incur these fines.
The new regulations place equal liability on the data controller and processor meaning companies could be liable for any data breach caused by third 
parties. In addition, the definition of personal data has broadened and individuals are now given the right of action against the data controller and processor without having to show financial loss incurred – stress or anxiety are now viable reasons for financial claim.
Aimee O’Mahony, Jobbio HR & Talent Manager talks through the impact of GDPR on HR departments & how to ensure HR departments are compliant.
“HR professionals are generally data protectors by nature and all personal data is stored securely either password protected or under lock and key- so what is new for us under GDPR?
These are a few headlines to consider:
Consent
The conditions for consent have been strengthened. You need the data subject (that’s the employees for us) to give consent for the processing of data and processing is essentially doing anything with the data including storage. 
You need to have a purpose for the processing so consider this when you seek personal data to begin with. Each time you request information ask yourself why it’s necessary and how you’ll securely store it. Also with GDPR, consent can be withdrawn at any time by the employee so you’ll also require processes around safe data disposal.
Right to Access
An employee can request all personal data held to be furnished to them free of charge within 30 days of the request.
Demonstrate compliance
Under GDPR, you need to show compliance as well as complying. The onus of proof is on you. This means creating policies and processes in line with GDPR. Review your current practices and develop a data protection policy that ensures you’re adhering to the new regulations.
What do you need to do?
Start with data discovery:
What type of data do I collect?
Where do I store it?
How do I delete it?
How long do I retain it?
How do I process it?
Who do I share it with?
If it is not stored correctly already, get your data storage in order and ensure only data with a purpose is kept. Keeping the employee’s right to access in mind at all times, move to processes that make data minimisation your best friend.
Build robust policies that demonstrate you are compliant and then educate the organisation on these policies. On consent, if the contract of employment doesn’t state clearly and unambiguously the reasons for data processing, seek consent again. More information at https://www.eugdpr.org/”
Interested in the impact of GDPR- you might want to read: The impact of GDPR on Marketing, PR and Outreach for Startups or GDPR primer for startups and self-starters.
About Jobbio and Startacus...
Startacus and Jobbio have joined forces to create a destination careers marketplace for the startup community. For 30 days, startup employers (new to Jobbio) will have full access to the entire Jobbio network, including unlimited job posting, for FREE. 
Subscribe to our newsletter
If you would like to receive our startup themed newsletter, full of the latest startup opportunities, events, news, stories, tips and advice, then sign up here.
BT reveals new cohort of innovative startups aiming to help solve sustainability challenges in the manufacturing sector.
London-based startup Ribbon is on a mission to help other businesses better understand their users and build better product experiences.
London-based SaaS startup OutThink has developed an innovative approach to help companies to visualise risk, target interventions and prevent data breaches.
Participants in Catalyst’s Co-Founders programme offered opportunity to avail of a £10,000 proof of concept grant from Techstart to help validate their business idea.
Atoa announces pre-seed funding for its solution to empower and improve cash flow for independent, small and mid-sized UK retail merchants.
 Tong Gu, Reem Mobassaleh Wyndham and Monik Pham.jpg)
Pact launches its first £30M fund to back early-stage European tech startups using technology for economic inclusion, well-being and climate solutions.
Paris-based startup Immortal Game uses blockchain technology to add a new dimension to the most played board game in the world.
Co-Founders seeking people with innovative ideas and desire to create startups that could change the world for its 2023 programme.
Marketers - want to turn shoppers into customers this Black Friday? Marietta Chatzidiakou, Senior Content Consultant at Digital Ethos shares some tips on how to do just that.
Data from more than 500 companies reveals the core health of SaaS startups and assesses how European companies have performed relative to American counterparts.
Published on: 27th February 2018
If you would like to enable commenting via your Startacus account, please enable Disqus functionality in your Account Settings.
- BT pushes ahead with new sustainable digital solutions through its Green Tech Innovation Platform 1st Dec 2022 BT reveals new cohort of innovative startups aiming to help solve sustainability challenges in the manufacturing sector.
- Catalyst and Techstart offering startup co-founders the chance to win £10k proof of concept grants 30th Nov 2022 Participants in Catalyst’s Co-Founders programme offered opportunity to avail of a £10,000 proof of concept grant from Techstart to help validate their business idea.
- UK fintech Atoa secures $2.2M pre-seed round as it kills Visa and Mastercard fees for businesses 24th Nov 2022 Atoa announces pre-seed funding for its solution to empower and improve cash flow for independent, small and mid-sized UK retail merchants.
- Female-led Pact Launches £30m Seed Fund 24th Nov 2022 Pact launches its first £30M fund to back early-stage European tech startups using technology for economic inclusion, well-being and climate solutions.
