猫咪社区

Ensure Your Business Keeps Employee Records Correctly

Why do SMEs need legally compliant HR software?

GDPR is a legally onerous and potentially time-consuming responsibility for Business Owners, HR Managers, and effectively all Employers.  GDPR-compliant HR Software is a major assistance to Business Owners, Managers and the HR Function, easing the impact of GDPR and giving the business the necessary peace of mind.

The General Data Protection Regulation (GDPR) came into effect on 25th May 2018.  Since then, there is one set of data protection rules for all companies operating within the EU.  GDPR is designed to give people more control over their personal data, while also meaning there is a 鈥榣evel playing field鈥� for all businesses where data control and responsibilities are concerned.

But be warned: 鈥榣evel playing field鈥� is a euphemistic way of saying every employer and small business owner had better take the protection of employee data very seriously.  That means securing and managing employee information and details.  And being accountable if you don鈥檛. Employee Data, documents 鈥� and anything that relates to their personal details and privacy 鈥� needs to be stored, secured and managed.  Staff records need to be stored in one place, with automatic deletion of records when required, as well as verification of this deletion.

What document management challenges do SMEs face?

鈥淲here鈥檚 [Employee鈥檚 name here] employment contract?鈥�

鈥淗ow many sick leave days has [Employee鈥檚 name here] had this year?鈥�

鈥淗as [Employee鈥檚 name here] completed the new Health and Safety training?鈥�
鈥淗as [Manager鈥檚 name here] been told he鈥檚 in the Labour Court next month because we didn鈥檛 have the required statutory records in relation to [Employee鈥檚 name here]?鈥�

Understanding and valuing the HR Function in the Organisation is one thing.  Demonstrating this by having a functioning HR Documentation system is another.  And if a Business doesn鈥檛 have its HR Documentation house in order, there will be problems.  Guaranteed.

猫咪社区鈥檚 service is like Software-as-a-Service.  You don鈥檛 have to buy and own the software, or incur the cost of associated hardware to operate it.  You just pay a cost-per-employee, and from there, we鈥檝e got your back where HR matters are concerned.

HR Document Compliance

Employee files contain highly sensitive information; controlling access is critical. Further, the laws and regulations governing employee documents are extensive 鈥� and GDPR places particular emphasis on personal information of the type held by HR systems. It is critical that you have systems that help you manage compliance with GDPR, supporting retention schedules, providing easy reporting on missing or expiring documents, and protecting sensitive information with secure, role-based access.

猫咪社区 keeps one step ahead of compliance, so you can enjoy a good night鈥檚 sleep.

We make sure you are 100% compliant, have access to the latest legislation and information, and when required, can receive case-specific advice and support.  It鈥檚 outsourced HR expertise and execution, supported by cutting-edge cloud technology.

As part of its service to clients, 猫咪社区 does something else we feel is very important: we allow you to focus on what you do best in terms of managing and building your business.

Being small is not an excuse.  Every SME needs a HR software system that records and provides employee reports, whether the details are salary, performance, sick leave, or holidays.   As part of this, Employee-related electronic calendars are maintained, recording contract periods and dates, completion of probation and periodic performance reviews.

猫咪社区鈥檚 clients can concentrate on what they do best because we create, populate and manage a comprehensive HR Document Management system on their behalf.

Compliance and all other aspects of HR Administration are professionalised 鈥� efficiently and cost-effectively.

Which means neither your Company nor [insert your Manager鈥檚 name here] have to look less than 100% competent and legally compliant where [insert your Employee鈥檚 name here]鈥檚 HR documentation is concerned.  Or anyone else鈥檚, for that matter.

What are the GDPR obligations on employers in relation to HR documents?

1. Ensure employees and HR teams see only documents they are allowed to see, based on document type or user role
2. Keep track of all documents and take action if some are missing/altered
3. Keep track of documents that expire (visas, certifications, Garda Vetting etc)
4. Maintain an audit trail that tracks actions performed on a document, such as sharing, downloading, and deleting
5. Securely share documents with authorised third-parties if appropriate
6. Define retention schedules for each document type, managing global compliance with GDPR
7. Actively manage the entire document lifecycle for employee files, from creation to deletion.

What are the main responsibilities under GDPR of owner/managers in relation to employee data?

• To comply with the Data Protection Regulation when dealing with personal data of any kind.
• You and your staff must only access, change, erase, copy, or make use of any information (including personal data) if authorised to do so and if it is in keeping with allocated work duties.
• You must not pass on personal data about any individual where those details are known to you because of the person鈥檚 employment with the organisation, unless you have the prior consent of the individual.
• You must give a description of any data held about an employee on request and the purposes for which it is kept, within 21 days of the date of request.

What are the specific requirements around employee data retention?

There are specific requirements to retain data for periods under different employment related legislation. GDPR compliant HR software should be capable of managing these periods and provide reports and alerts when the time frames are due to expire.

Employee data, like most data, should only be collected and held for specific and legitimate purposes and should be done in accordance with the GDPR/Data Collection and Retention Policy.

Legislation and regulations frequently inform an employer as to the required length of time that any data needs to be retained. The two tables following set out the required and the recommended data retention times.