GDPR Compliance

The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a regulation by which the European Parliament, the Council of the European Union and the European Commission intend to strengthen and unify data protection for all individuals within the European Union (EU).

The regulation was adopted on 27 April 2016. It becomes enforceable from 25 May 2018 after a two-year transition period and, unlike a directive, it does not require national governments to pass any enabling legislation, and is thus directly binding and applicable.

GDRP is structured around six principles which are:

Requiring transparency on the handling and use of personal data.

• Limiting personal data processing to specified, legitimate purposes.
• Limiting personal data collection and storage to intended purposes.
• Enabling individuals to correct or request deletion of their personal data.
• Limiting the storage of personally identifiable data for only as long as necessary for its intended purpose.
• Ensuring personal data is protected using appropriate security practices.

For details on how GDPR is handled in Lanteria HR, see the following topics:

• Personal Data Handling
• Individual's Rights
• Controls and Notifications