What is GDPR?

GDPR, or General Data Protection Regulation, is a new legislation addressing data protection and privacy for all individuals and businesses residing or doing business in the European Union. The law ensures high standards for controlling and processing personal data. The regulations will reshape the way residents and businesses not just in EU but around the globe approach data privacy.

Why should you have a GDPR compliant HR system?

Compliance with the GDPR is paramount for HR departments precisely because HR processes invariably collect and process a great amount of employee data. As an HRMS that gathers and processes all this information, Zoho People ensures you have full control over all sensitive information.

How does Zoho People help in your efforts to be GDPR compliant?

Right to Access

Our Self-service lets employees to access their personal information. HRs have the option to set which fields can be viewed and/or edited for different employee roles.

Click here to know more about permissions. 

Right to Rectify

Any data that is added to Zoho People can be edited. Inaccurate data and records may be rectified anytime, by admins or employees depending on the set access controls.

Right to Erasure

Zoho People is designed to ensure that admins can delete personal information whenever an employee requests. The HR or admin can select particular data fields that need to be deleted.

Right to Restrict Processing

The GDPR stipulates that individuals have the right to request their data controller to restrict processing of data. As a data processor, Zoho People allows admins to cease processing data upon receipt of an employee request.

Right to Data Portability

One of the key aspects of the GDPR is the right to transfer data from one controller to another. Zoho People makes exporting data easy, while ensuring a high level of security with options for password-protected exports. This way, organizations can port data, without compromising safety.

Click here to know more about setting password for exported form data. 

Records of Processing Activities

As personal data is key to GDPR, tracking changes will help in better data protection. Audit logs in Zoho People reveals the history of changes and keep track of modifications to all employee data.

Click here to know how to set audit history for a field. 

Data Security

Zoho People ensures high-level security for data that is collected and processed. HRs have the option to configure permissions to view and update records for various roles in the organization. Furthermore, IP and Geo restrictions will enable location-based access control. The admin will be able to give access to particular modules and locations. You can also mark a field as "personal" and ensure there is more control over the data that is processed.

Click here to know more about setting IP and Geo restrictions. 

Data Encryption

To establish the utmost security, particular data fields can be encrypted according to the admin's discretion when stored in Zoho's database. All employee files and file upload fields in Zoho People come with encryption by default.