GDPR and Human Resources: How to Achieve Ongoing Compliance - £595pp

The General Data Protection Regulation (GDPR) is here to stay. It’s a journey, not a destination that requires robust processes and continuous evaluation. The challenge of staying compliant is acute; GDPR has regulated the way payroll information, such as employee details, individual’s expenditures, medical records and other sensitive data is processed in the HR department.

HR’s role in handling this sensitive data is essential, putting human resources on the frontline in the battle to keep organisations GDPR compliant. Given the potential fines and reputational damage for non-compliance organisations cannot afford to become complacent, a breach within a single department, such as HR, will be damaging to the entire organisation.

During this workshop we shall learn how leading HR professionals have adapted and evolved within the now highly regulated environment to achieve ongoing compliance.

Topics covered will include:

  • An overview of the regulatory framework and privacy laws within the UK, EU, alongside a global perspective

  • An update on policies for collecting and processing personal data

  • The key elements of data flow management

  • How to process health-related information in the workplace

  • Understanding the rights for individuals, including subject access requests, data portability and requests for erasure

  • How to manage your contractual relationships to ensure GDPR compliance throughout the supply chain

  • Consent and transparency for automating any part of the recruitment process

  • Incident identification, reporting requirements and response lifecycle of a data breach

  • How to demonstrate compliance and satisfy GDPR regulators

  • The likely effect of Brexit on data protection and privacy


Ardi Kolah LL.M - GDPR Programme Director at Henley Business School

Our trainer will be Ardi Kolah LL.M, recognised by the FT as one of the leading data protection practitioners in Europe. He is an Executive Fellow and Director of the GDPR Transition Programme at Henley Business School, Founder of GO DPO and Founder/Editor-in-Chief of the Journal of Data Protection and Privacy. Ardi has Cabinet Office and Ministerial-level consultancy experience, in addition to a number of multi-national clients. 

Join us to debate the future landscape for human resources, discuss common challenges and review existing strategies whilst networking amongst peers.


Can't make this date? Please let us know what dates are more suitable here.


For further information on our Privacy and Cookie Policy and Data Privacy Notice click here.