Data protection and privacy
Under the Personal Information Protection Act (“PIPA”) any company which handles personal data will be deemed a ‘data handler’ and must comply with strict requirements. This includes employee personal data.
In many industries, it is a requirement that certain individuals performing regulated activities are, and remain, fit and proper. For example, these requirements will apply to certain individuals who are subject to the oversight of financial services regulators such as … Continue reading
We continue our review of the different obligations employers have around the region in relation to collecting, using and storing employee data by looking at some further common issues.
An organisation’s obligations in respect of managing personal information vary greatly from country to country. We consider the different obligations employers have around the region in relation to collecting, using and storing employee data.
Described by some as the “new oil” for the digital economy, there is no doubt that data are now seen as critical for organisations to succeed. Data are a powerful and lucrative fuel for productivity. If not adequately protected, data … Continue reading
Two recent decisions – along with the imminent implementation of the GDPR – highlight the importance for employers of reviewing monitoring practices and policies. In Antović and Mirković v Montenegro, the European Court of Human Rights (ECHR) ruled that it … Continue reading
Employers often seek to carry out criminal and other background checks on new employees as part of their pre-hire processes. The discovery of a prior criminal conviction may in some cases result in an offer being withdrawn, or at least … Continue reading
A recent High court decision (subject to appeal) has ruled that an employer can be vicariously liable for an employee’s misuse of data even where it has done as much as reasonably possible to prevent the misuse and where the … Continue reading
The Government published the draft Data Protection Bill (the “Bill”) on 14 September. The Bill will be debated at its second reading in the House of Lords on 10 October 2017. The Bill will replace the Data Protection Act 1998 … Continue reading