GDPR and the Workplace
IN THIS CHAPTER
Reviewing lawful grounds of processing for employee data
Handling subject access requests from workers
Exploring appropriate (and inappropriate) ways to monitor the workplace
If you have people working for you in your organization — whether they’re full-time or part-time employees, agency workers, volunteers, apprentices, interns, or hired on contract, such as freelancers or associates — you'll hold lots of personal data about them, for various purposes. These purposes include — but aren’t limited to — paying salaries, paying taxes, providing benefits, offering training, monitoring performance, and storing sickness and disability records.
A lot of the personal data you’ll process for employees is special-category data, previously known as sensitive data, which requires additional protection because it relates to matters where people have been negatively targeted, for example, or discriminated against (as discussed in Chapter 3).
In addition to the GDPR, you should consider local laws in ...