<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=127469634355496&amp;ev=PageView&amp;noscript=1">

Let's Talk

What is the CCPA and what does HR need to know?

The California Consumer Privacy Act (CCPA), intended to protect the privacy of California residents, is having a ripple effect across the United States. Originally designed to give California consumers new rights, the definition of “consumer” in the Act is so broad that your workforce data may also be affected. If you're an employer who may be impacted by the CCPA, here are 5 actions you can consider before the new privacy law goes into effect on January 1, 2020.

What impact could a no-deal Brexit have on employee data?

Last week, Theresa May’s Brexit plan was defeated, leaving United Kingdom employers (along with the rest of the world) with a number of questions. One primary concern: maintaining compliance with the General Data Protection Regulation (GDPR) if the UK leaves the European Union before a deal is in place. While a lot remains unclear, here are three things to be aware of when preparing employee data for a no-deal Brexit.  

Improving your HR data collection practices

It seems like every week there is a news blast on how data has been misunderstood, misused or abused. From Cambridge Analytica’s purposeful abuse of personal data to Strava’s unintentional reveal of military bases, 2018 has brought the consequences of personal data collection to the forefront. That said, it’s important not to forget that with proper use, personal data can have a huge, positive impact on your HR practices. Employers have used personal data to make better hiring decisions, help employees get healthy and address biases in the workplace.

GDPR for HR: When (and when not) to use consent as a lawful basis

Of all the lawful bases a company can have for processing employee data under GDPR, consent can be a tricky one. Just look to Facebook and the Cambridge Analytica incident. Facebook faces controversy for failing to protect personal data and not being fully transparent around how data could be shared with third parties. As a result, governments around the world are investigating the company and users are dropping the service.  

"Nobody has all the answers" and more real talk about GDPR

With the upcoming General Data Protection Regulation (GDPR) going into effect in late May, I was curious to learn from the experts at the International Privacy + Security Forum in Washington D.C. As expected, there was a lot of talk about the GDPR and three themes were common throughout the conference:  

4 common misconceptions about the GDPR

Have you been hearing conflicting information about the General Data Protection Regulation (GDPR) and what HR must do to be compliant? It’s understandable as the GDPR isn’t so black-and-white. To help make it more clear, we set set the record straight for some of the most common misconceptions about the GDPR.

A step-by-step action plan for GDPR compliance

The beginning of February brings us to just over 3 months until the GDPR takes effect on May 25, 2018. At this point, it’s important to have a handle on what HR must do to come into compliance along with an action plan for getting there. To help you get that plan in order, we’ve outlined eight steps to take as you prepare for GDPR compliance (for more detailed guidance, don’t forget to download our GDPR for HR checklist when you’re done.)