Personal data
Updated to reflect the ICO's guidance on fees to cover the cost of responding to manifestly unfounded or excessive requests.
Updated to reflect a change to the Disclosure and Barring Service's sample policy on handling DBS certificate information.
Updated to explain that this guide remains relevant to employers, as part of their ongoing GDPR compliance efforts, now that the GDPR is in force.
Updated to explain that we are retaining this guide on the site now that the GDPR is in force, as it remains useful for employers that are still working on their GDPR compliance plans.
Updated to take account of the General Data Protection Regulation, in force from 25 May 2018.
Practical guidance on identifying the legal bases for processing employee data under the General Data Protection Regulation (GDPR), including recognising the most relevant grounds for employers: performance of the employment contract, compliance with a legal obligation and the employer's legitimate interests.
Practical guidance on developing and implementing a GDPR compliance programme, including reviewing data protection policies and documents, third-party data processor contracts and subject access procedures.
Practical step-by-step advice on how to manage workplace situations relating to personal data.
XpertHR is part of the LexisNexis® Risk Solutions Group portfolio of brands.
The materials and information included in the XpertHR service are provided for reference purposes only. They are not intended either as a substitute for professional advice or judgment or to provide legal or other advice with respect to particular circumstances. Use of the service is subject to our terms and conditions.
View our privacy policy, cookie policy and supported browsers.
Copyright © 2021 LexisNexis Risk Solutions Group
© 2021 LexisNexis Risk Solutions Group.