About the General Data Protection Regulation & inspHire
Apr 14, 2018
GDPR only affects those businesses that hold data on individuals based in Europe.
It’s likely you have already heard about the General Data Protection Regulation (GDPR) and have either already started preparing for the change, are wondering how it might affect your business or are questioning what you need to do next… To help, we have put together lots of useful information about how, who and what the changes will impact.
GDPR At A Glance
Data protection has been around for decades and a lot has changed over the years with the new General Data Protection Regulation (GDPR) being the biggest alteration we’ve seen in a while. It’s a revolutionary change which will affect all businesses that hold data on individuals based in Europe.
So, it’s time to start ensuring your business is GDPR compliant as it will be enforced from the 25th May 2018.
inspHire will be ready for GDPR
As a company, we’re committed to achieving compliance with the General Data Protection Regulation (GDPR) and as both a Data Controller and a Data Processor we are currently conducting a full review of our software, processes and the data we hold. Check out some key terms and definitions from GDPR.
We’re mindful of our customers GDPR efforts too and understand that they will rely on us to release compliant software prior to the 25th May 2018. You can rest assured knowing that work is well underway, adding additional functionality, which will mean your hire software will be fully compliant by then. Letting you focus on reviewing your processes and preparing your business for GDPR. We’ve answered some of the important GDPR questions that you might have.
New GDPR Functionality
The team are hard at work building the following functionality which will help customers comply. Here are the updates that are coming soon to inspHire Office, Corporate and CRM.
The introduction of audit trails for the running of reports, Smart Views and the exportation of data to Excel.
The ability to search for information that could be considered personal and provide this in a format that can be reviewed and then exported (which is also audited).
Where required or requested this data can be removed, creating an audit trail of the removal (but not what has been removed) that can be reported on for proof of adherence. - The Right to Erasure (Right to be forgotten).
Dormant cash customer management.
The upgrade process will be as smooth and efficient as possible for all customers and many will be able to use our easy to use Installer Tool to upgrade to the latest version of inspHire. We are however, advising all customers not to upgrade any other systems e.g. Sage, Scan to PDF, Documation until they have upgraded inspHire.
There are already features within the inspHire system that customers can take advantage of for GDPR purposes in Office and Corporate, including:
Active Directory integration allows you to easily sync existing active directory user credentials to the inspHire user accounts. This provides a single login solution and a single source of maintenance moving forwards.
inspHire provides the functionality to apply system specific permissions linked to either user groups or individual user accounts. A review of these should be undertaken to ensure specific user groups or users have the correct permissions and access rights assigned.
All Smart Views and system reports can be restricted by the above user groups or accounts. Again, as part of the process, this should be reviewed to ensure users have the correct access rights to access this information.
Preparing for GDPR
Every business collects data for different purposes, therefore special considerations will need to be made for your individual processes. Although we cannot give specific advice on how you should be preparing for GDPR, we have found some extremely useful websites and written some summary articles that you might find helpful.