RECRUITMENT MANAGED SOLUTION CONSULTATION
Our consultations use advanced analytics to design a tailored solution to fit your unique business
How your business can start preparing for data legislation changes
With the new General Data Protection Regulation (GDPR) becoming effective in May 2018, it's important that businesses start to prepare for this change now. We've put together some handy tips on how companies can start the process today to help you be compliant when the change comes into force.*
What is GDPR and why is it a big deal?
Simply put, GDPR is the European Union (EU) way of “harmonising” data privacy laws across Europe to give individuals a greater sense of control over who uses their data and where their data is stored.
Note the UK will need to comply with the legislation whatever the situation regarding our EU membership.
Since Europe’s data protection laws came into play in the 1990’s, the volume of data businesses keep on record has increased significantly. Therefore the EU felt the rules needed to be updated and these include numerous new requirements for companies.
For example, the new legislation gives individuals the following rights:
- Right to be informed
- Right of access
- Right to rectification
- Right to erasure
- Right to restrict processing
- Right to data portability
- Right to object
- Right not to be subject to automated decision making and profiling.
Tip 1: Delegate a specific team
Our first tip is to put together a specific GDPR team. Your chosen team should be made up of key players in your organisation who understand the processes and procedures of the business and have the authority to make change if needed. This could consist of your HR Manager, the CEO or a Director, and it could also be worth outsourcing an independent Data Protection Officer to be responsible for data protection compliance. These people will be responsible for mapping out data and processing across the business. They will need to work with your operations front-of-house teams, marketing, legal, payroll & accounts and importantly, your IT departments.
Tip 2: Research the new law inside and out
Do your research on the legislation and take some time to really get your head around it in relation to your sector. It is likely that there are sector-specific governing bodies and associations holding seminars on the subject, so get booked on-to them and work with them to make sure you’re compliant. If your business isn’t compliant, you could pay out a hefty fine of 4% of your global turnover (or €20 million). A good place to start with your digging is on ico.org.uk where there is a step by step guide to data protection.
Tip 3: Organise the data you already have
Document every bit of data throughout your organisation. From the source of the information (where you get it from), how and where you store it, and who you share it with.
Tip 4: Review your systems security
Make sure your data is secure; check what security measure are in place, for example, system security, people access, physical access or foreign threat. Create and improve security features to minimise the risks.
Tip 5: Make your employees aware
Ensure everyone in your business stays in the loop and knows about the ongoing changes that are happening with GDPR within your business. Many people will not know about the changes and why it is vital to do things by the book, so it may be worth setting up and organising some training for your employees/colleagues. By ensuring everyone is “in the know”, there’s less chance that something could go wrong and data protection could be breached.
Tip 6: Update policies and procedures
Last but not least, ensure all your company policies and procedures are reviewed and updated where necessary so that your compliance is at an all-time high. This could be where you use your Data Protection Officer or independent consultant. Any updates should be circulated around your business and everyone should take the time to read through so that they are clear on all things GDPR.
*Please note that this blog does in no way constitute legal advice. This is simply guidance on where to find information and how to start thinking about your GDPR plan.
I have worked with Simon as a supplier for nearly 20 years. During this time, I have always found that the solutions are very effective for suppliers. He instils the right balance for both the client and supplier, where the services are fair, open and responsive. There is no doubt that the client and the supply relationships are their focus. These are services we are happy to support wherever we can.
MD Recruitment Company
I have worked with Simon Woodhouse for over 10 years and during this time I have received first class service as a recruiter. The flow of information has always kept us in touch with requirements.
The solution (both the technology & the team assembled) were intuitive and responsive to our needs. The job descriptions have been detailed and meaningful. It is apparent that Simon has an excellent knowledge of market trends and client/candidate expectations. So as a recruiter I have found that this information has been invaluable in sourcing the right people for the end client. It has been evident that Simon forms first class relationships with both the supplying recruitment agencies and the end client.
I would recommend Simon to any potential client or recruitment company.
When presented with a challenge to support our Permanent Recruitment challenge, Simon responded with a very cost effective, and comprehensive solution, that we relied heavily upon during a major restructuring exercise. So much so, that once the initial phase came to an end we retained the service. The support provided to the HR teams and the hiring managers was second to none, and it became an integral part of our operations.
We had an opportunity to restructure our approach in regards to how we utilised contract labour and recruitment. The burden to the company had become significant, and major change was required. The experience Simon bought to the Change Management project was a key component behind its success. The level of buy-in to the program from within our organisation, and down into the supply chain was a credit to Simon and his team.
I have known Simon for 20 years and in that time Simon has been my colleague, my manager and my mentor. Simon is a very kind and thoughtful person, but will ensure the job is done to the best of his and his team’s ability. His management style is one of a consultative approach and leadership, allowing the team to be part of the bigger picture and ownership of the project in hand, but being there for support and guidance when required. He has a very comprehensive understanding of Procurement and the Managed Service Process, which has allowed him to manage some very successful implementations and on-going business. A great asset to any organisation.
Managed Services – Operations & Project Manager