Get access to the exclusive HR Resources you need to succeed in 2018!
Training, policies and tools to help HR prevent and respond to harassment claims.
Is your employee handbook keeping up with the changing world of work? With SHRM's Employee Handbook Builder get peace of mind that your handbook is up-to-date.
Build competencies, establish credibility and advance your career—while earning PDCs—at SHRM Seminars in 12 cities across the U.S. this spring.
#SHRM18 will expand your perspective – on your organization, on your career, and on the way you approach HR. Join us in Chicago June 17-20, 2018
Data protection in Europe is about to become far more stringent.
To protect employee and consumer data, organizations that do business in or with European countries must—by May 25, 2018—comply with the General Data Protection Regulation (GDPR) or face harsh fines and penalties.
As hacking increases worldwide, the GDPR mandates how groups gather, store and use sensitive employee data.
Passed in April 2016 by the EU Parliament, the law replaces the Data Protection Directive, which was enacted in 1995. The new regulation's key objectives are to give people control of their personal data and to streamline current laws surrounding the legal use of this information.
Under the GDPR:
The Information Commissioner's Office in the United Kingdom, which reports directly to Parliament, has prepared a 12-step checklist to ready organizations for GDPR compliance. It includes making sure that HR departments are prepared to detect, report and investigate data breaches and that they know what types of data leave employees vulnerable.Experts are urging companies to get compliant now."With the EU's General Data Protection Regulation less than one year away, organizations around the world are deeply concerned about the impact that information non-compliance can have on their brand and loyalty of their customers," Jason Tooley, vice president, Northern Europe, at Veritas Technologies LLC, said in a company statement.He said organizations need to begin educating themselves now on "the tools, processes and policies to support information governance strategies that are required to comply with the GDPR requirements." Veritas, a software company, is based in Reading in the U.K.[SHRM members-only toolkit: Introduction to the Global Human Resources Discipline]The best way to do that, he said, is to create "an automated, classification-based, policy-driven approach to GDPR," that will "enable organizations to accelerate their ability to meet the regulatory demands within the short time frames available." David Godden, vice president of sales and marketing for Thymometrics, an employee engagement software firm based in Cambridge in the United Kingdom, said in a press release that "even if a company is using a cloud server in a relatively safe region of the world, this doesn't mean the company is complying with GDPR and that data is secure." Jerry Pett, CEO and co-founder of Thymometrics suggested in a blog post on the company's website that employers can prepare for compliance with the new regulation by doing the following:
You have successfully saved this page as a bookmark.
Please confirm that you want to proceed with deleting bookmark.
You have successfully removed bookmark.
Please log in as a SHRM member before saving bookmarks.
Your session has expired. Please log in again before saving bookmarks.
Please purchase a SHRM membership before saving bookmarks.
An error has occurred
Recommended for you
Become a SHRM Member
SHRM’s HR Vendor Directory contains over 3,200 companies