What GDPR products do you need?

Icon

Reports: Provides control over the amount of personal data collected

Icon

Delete programs: Allows you to easily delete the data you no longer may nor should keep

Icon

Digital personnel archive: Gives you peace of mind that data are stored safely

See

Authorization Program: Gives you peace of mind that only those who will see the data can see the data

What do you think when we say GDPR and HR?

Are you in complete control, or do you find it challenging? It's been a few years since the GDPR rules were implemented, and while we reckon you have good control, it doesn't have to mean that you find it easy to handle. Fortunately, there is good system support for handling this, system support that allows you to rest assured that the regulations are both followed and handled, at all times.

How does GDPR affect HR?

Comprehensive rules on what is allowed – and about what is not allowed

  • Requirements relating to the basis for processing/ legal basis
  • Data minimization principle – what is needed to store?
  • Access restriction – who should be able to see what?
  • Deletion requirements – do you need to keep everything?
  • Obligation to inform/provide access

Documentation requirements:

  • You must be able to show that you are complying with the law
  • You need to describe what is being done and why it is done
  • You must develop principles and policies
  • You must ensure that you have data processing agreements and agreements on the transfer of information abroad

Safety measures based on risk assessment

  • Requirements for confidentiality, integrity and accuracy

Known challenges related to GDPR and HR

"General" use of personal data permitted:

  • However, remember to inform your employees
  • Remember to restrict access
  • Have security measures in place
  • Be careful with information about health, trade union membership and criminal offences
  • Be careful with control measures/monitoring. In particular, take care of employees' e-mail:
    - Restricted access
    – Obligation to delete account upon termination
Man and woman peeking at a tablet

In short, the Privacy Act is about you being obliged to have control over the amount of personal data collected and to which extent. You must also have control over how long the documents have been stored and how long you are allowed to save them. Finally, you must also have control over who are to have access to the various documents at all times.

How to get all this straightened out?

  • You need to map out what is being done
  • Is there a need for changes?
  • You must both adopt and introduce procedures and rules
  • You must prepare documentation
  • Merge all the processes, such as in a privacy manual

Everything within HR – from Sariba

We at Sariba want to offer you the full range of HR, and in order to meet your data control needs, we have both developed our own solutions and connected with several good partners. Together, we offer you everything you need to meet your GDPR needs, regardless of whether you work in a large or a slightly smaller company.

Full control of your HR data: 

To get full control of your HR data, we offer you the following: 

  • Reports – provides control over the amount of personal data collected
  • Delete programs - Allows you to easily delete the data you no longer may nor should keep
  • A digital personnel archive – gives you peace of mind that data are stored safely
  • Authorizations Program - gives you peace of mind that only those who should see the data can see the data
  • Logging of processed data – gives you an overview of the scope of the processed data

Let us help you map your GDPR needs, and together we find out which solution is the very best for you and your company.