Global menu

Our global pages


GDPR and HR - Game-changing powers


Who should attend

HR and compliance professionals or in-house lawyers responsible for employee data security and employment policy.


The General Data Protection Regulation (GDPR) applies in all the EU member states and the UK from 25 May 2018.

A single unifying data protection law is a welcome harmonisation for organisations that work across borders, but it also carries with it greater rights for individuals and broader, more prescriptive obligations for employers. Although many of the data protection concepts remain the same, there are dangers in the apparent similarities and the new enforcement powers and sanctions are game-changing.

This briefing covers key actions for employers regarding the collection, transfer and use of staff data. We also consider the main practical impact of GDPR on day to day HR activities and processes.


09.00 registration and coffee, 09.30 start


— aims, key changes and time-frames

— impact across the EU and reach beyond the EU

— national law: additional controls and derogations

— who is the Regulator?

— massive fines, compliance orders, bans, compensation

Privacy and the need for data minimisation

— auditing staff data: what do you keep and why?

— enhanced transparency requirements: what you need to know

— informed consent: specific and explicit

— protection from refusal to consent

— subject access requests and enhanced individual rights

— sensitive data use and storage: background checks and investigations

Lawful data processing and transfers – duties

— who processes your data and where?

— are your supplier contracts fit for purpose?

— international, intra-group and third party data use, sharing and flows

— audit trails and impact assessments

Demonstrable compliance and accountability

— data protection officers avoiding conflicts of interest and new employment protections

— data privacy impact assessments: when are they required for HR data use?

— staff policies, compliance measures and training

— data breach reporting and staff: new proactive notification requirements

13.00 close, followed by lunch

Download the full GDPR and HR programme.


Simon Rice-Birchall
Partner, Employment Law
Simon’s contentious workload includes unfair dismissal, whistleblowing and executive terminations. He is described in Chambers as “highly experienced and competent who specialises in complex tribunal litigation”.

Liz Fitzsimons
Partner, Privacy and Information Law

Liz helps clients with all aspects of data protection, GDPR, e-privacy and FOI. Her work includes strategic advice on UK and multi-national data privacy, including audits. Chambers says “Her attention to detail is excellent and she balances this with appreciation for commercial aspects of an agreement.”

Cost: £249

All prices are exclusive of VAT

Group discount:

10% discount for delegate 2 and subsequent delegates.

Online payment discount: 5%

Select a date

Forthcoming events and seminars