May 24, 2018
Employers, Candidates

It is important to note that GDPR, which comes into effect on the 25th of May 2018, will have an impact on every organisation and department. Companies need to take an overarching response to GDPR ensuring that every department is aware of the implications and of the responsibilities it will hold relating to GDPR. Of course, some departments will be more affected than others and it is vital that recruitment departments, and the recruitment sector, manage GDPR in the most appropriate manner.

If you thought that GDPR was mainly for sales and marketing teams, you are wrong. These teams will deal with email lists and mail-shots, which means that they will be affected by GDPR, but there are many ways that GDPR will impact on organisations. HR departments and recruitment teams hold a significant amount of personal data.

Now is the ideal time to focus on GDPR

There are several areas that organisations need to focus on when it comes to dealing with GDPR in the correct manner, which are:

  • Obtaining consent to hold the data
  • Process personal data in an appropriate manner
  • How data is shared with third parties, if it is shared at all
  • Dealing with the individual rights of people whose data you hold
  • Security measures you have in place relating to the holding of data

It is likely you will have noticed many emails of late from organisations updating information and making sure that they have the right to hold your information. Companies need to inform the user why they want their data and what they are likely to do with it. This is where the aspect of consent is all important because users need to make an informed decision as to whether they want to provide their consent or not.

Opt-out boxes are not a suitable way to collect information and consent

This means that opt-out boxes should be removed from websites. If you are looking to obtain the personal data of a person, there is a need to ensure they provide express permission for you to hold this information.

If your organisation deals with contractors, you may share data with several third parties. If you do, you need to review your relationships and agreements with these third-party suppliers to ensure they are GDPR compliant. It is imperative that third party companies understand that you own the data and they are not allowed to use it outside of the agreed terms of your arrangement.

At Technical Resources, we know that GDPR is a headache for many firms and there will be companies who are worried about what the measures will have on their business. It is important to act now and take guidance from professionals who understand the implications of GDPR and how to progress your business with respect to it. If you are looking for guidance and support when it comes to managing GDPR in the recruitment sector, get in touch and we will be happy to help.