Updated to include reference to our latest GDPR-compliant model document, a policy on processing special category personal data and criminal records data.
A model data protection impact assessment for potentially high-risk data processing. The form uses the example of an impact assessment when an employer is proposing to introduce CCTV monitoring in a particular location.
HR can play an important part in ensuring compliance with the GDPR, helping to avoid thousands of pounds in fines for data breaches. Agata Nowakowska reminds employers of the day-to-day changes that need to be made, if they have not already done so.
A model privacy notice for contractors to comply with information requirements under the General Data Protection Regulation (GDPR).
A model privacy notice for workers to comply with information requirements under the General Data Protection Regulation (GDPR).
Organisations are still getting to grips with their obligations under the new General Data Protection Regulation. But if you operate outside the EU, that does not mean you're exempt from the new legislation, as Alice O'Donovan from McGuireWoods explains.
Some of the major names in the development of the gig economy - such as Deliveroo, Pimlico Plumbers and Uber - may be about to find that the General Data Protection Regulation (GDPR) interferes with core operations within their businesses, writes Seddons solicitor Harry Abrams.
A model form to seek consent from an individual to process their personal data for a specific purpose, where no other legal basis for the processing applies.
A model form to allow an individual to request the rectification of incorrect or incomplete data that the organisation holds about him or her.
A model letter for your organisation to inform an individual that incorrect or incomplete data about him or her has been rectified.
HR and legal information and guidance relating to data protection.
We provide a list of model policies and documents in which the sample wording has been updated to comply with the General Data Protection Regulation (GDPR), which is in force from 25 May 2018.