In WM Morrison Supermarkets plc v Various claimants, the Court of Appeal held that the employer is vicariously liable for the criminal actions of an employee who disclosed the personal data of his fellow employees online.
Practical guidance on auditing HR-related personal data as part of an organisation's ongoing UK GDPR compliance efforts, including establishing the scope of the audit and understanding how the information collected can be used to identify compliance gaps.
The UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 place strict duties on employers in relation to the processing of personal data.
A model form to conduct a data protection impact assessment for potentially high-risk data processing. The form, which complies with the General Data Protection Regulation (GDPR), uses the example of an impact assessment when an employer is proposing to introduce CCTV monitoring in a particular location.
A model privacy notice to give workers information about how their personal data will be used, in compliance with the General Data Protection Regulation (GDPR).
A model privacy notice to give contractors information about how their personal data will be used, in compliance with the General Data Protection Regulation (GDPR).