What is GDPR?
GDPR, or General Data Protection Regulation, is new legislation addressing data protection and privacy for all individuals and businesses residing or doing business in the European Union. The law ensures high standards for controlling and processing personal data. The regulations will reshape the way residents and businesses not just in EU but around the globe approach data privacy.
Why should you have a GDPR compliant HR system?
Compliance with the GDPR is paramount for HR departments precisely because HR processes invariably collect and process a great amount of employee data. As an HRMS that gathers and processes all this information, Zoho People ensures you have full control over all sensitive information.
How does Zoho People help in your efforts to be GDPR compliant?
Right to Access
Our Self-service lets employees to access their personal information. HRs have the option to set which fields can be viewed and/or edited for different employee roles.
Right to Rectify
Any data that is added to Zoho People can be edited. Inaccurate data and records may be rectified anytime, by admins or employees depending on the set access controls.
Right to Erasure
Zoho People is designed to ensure that admins can delete personal information whenever an employee requests. The HR or admin can select particular data fields that need to be deleted.
Right to Restrict Processing
The GDPR stipulates that individuals have the right to request their data controller to restrict processing of data. As a data processor, Zoho People allows admins to cease processing data upon receipt of an employee request.
Right to Data Portability
One of the key aspects of the GDPR is the right to transfer data from one controller to another. Zoho People makes exporting data easy, while ensuring a high level of security with options for password-protected exports. This way, organizations can port data, without compromising safety.
Records of Processing Activities
As personal data is key to GDPR, tracking changes will help in better data protection. Audit logs in Zoho People reveals the history of changes and keep track of modifications to all employee data.
Zoho People ensures high-level security for data that is collected and processed. HRs have the option to configure permissions to view and update records for various roles in the organization. Furthermore, IP and Geo restrictions will enable location-based access control. The admin will be able to give access to particular modules and locations. You can also mark a field as "personal" and ensure there is more control over the data that is processed.
To establish the utmost security, particular data fields can be encrypted according to the admin's discretion when stored in Zoho's database. All employee files and file upload fields in Zoho People come with encryption by default.
GDPR takes effect on 25 May 2018 in the EU. Organizations that are found non-compliant may face significant monetary penalties, of up to 20 million euros or 4% of the organization's annual turnover of the preceding financial year.
Zoho People is ready to be your partner in GDPR compliance. With our latest features and enhancements, you'll be able to run your HR operations smoothly and securely.
Disclaimer: The information presented herein should not be taken as legal advice. We recommend that you seek legal advise on what you need to do to comply with the requirements of GDPR.