Data use: Protecting a critical resource

Described by some as the “new oil” for the digital economy, there is no doubt that data are now seen as critical for organisations to succeed. Data are a powerful and lucrative fuel for productivity. If not adequately protected, data are vulnerable to leaks that can cause widespread damage, and their true value is only realised once they have been processed and refined. They are, however, an almost infinite resource when compared with the finite supply of oil.

Data affect all businesses and industries, and dealing with data is an issue for the whole business as it affects every team within an organisation. In this article we examine:

  • Market trends in the ballooning use of data worldwide.
  • Some of the legal implications of dealing with data, particularly in light of the General Data Protection Regulation (679/2016/EU) (GDPR) which will apply from 25 May 2018, including in particular, GDPR compliance, cyber security and employee monitoring.

Click here for the full briefing.

A version of this article was first published as the lead feature in the January/February 2018 issue of PLC Magazine.

Continue reading

The rise of the intelligent business: Spotlight on employers

This briefing is the second in our multi-disciplinary GDPR series which aims to help you successfully navigate the GDPR as 25 May 2018 approaches. Here we place the spotlight on key compliance considerations in the employment sphere.

Data is ubiquitous in the employment context: it is processed from the point at which a job application or CV is received if not before (such as profiling of potential candidates through LinkedIn, for example), right through to beyond the termination of employment (for example when references are given). The employer will handle “core” categories of employee data on an employee’s personnel file (for example, their address, national insurance number, performance appraisals, grievance and disciplinary records), but also data generated and processed in the context of pension schemes and share plans, as well as in liaising with third party providers such as insurers, payroll providers and occupational health professionals. It is worth noting that whilst we refer to “employees” in this briefing, the contents apply equally to employees, workers and self-employed contractors.

In particular, we consider some of the key requirements of the GDPR in the employment context, together with practical tips on how to implement the required changes.

Please read our full briefing for more on the following issues:

  • Identifying a legal basis for processing employee data;
  • Employee rights under the GDPR;
  • How to transition to the new regime;
  • Sensitive personal data;
  • Monitoring and profiling; and
  • Training and awareness.

Click here for the full briefing.


Continue reading