Data protection

Felicity AlexanderEditor's message: Employers must comply with requirements of the Data Protection Act 1998 in relation to the handling of personal information, which will include information about employees held on a computer.

There are data protection issues around employees using their own devices for work purposes, both in relation to the storage of personal data of other employees in the organisation and the extent to which employers can monitor employees’ use of these devices.

The EU General Data Protection Regulation, which replaces the Data Protection Directive, is due to come into force on 25 May 2018, before the UK is expected to leave the EU. The aim of the Regulation is to establish a modern and harmonised data protection framework across the EU. The Government has confirmed that the UK will implement the Regulation.

Felicity Alexander, employment law editor

New and updated