GDPR Compliance

What is GDPR, and how does HR Partner comply?

GDPR Compliance

GDPR will impact all businesses in the EU (or any business handling data of individuals in the EU). Based on extensive self-assessment and outside expertise, our business practices are compliant with GDPR.

HR & GDPR: What you need to know

GDPR (General Data Protection Regulation) went into effect on May 25, 2018. It impacts any and all businesses in the European Union or businesses that handle data of individuals within the European Union.

This means that, for example, if you collect data from employees located in the EU, you (as an employer or data controller) are required to be in compliance with GDPR.

Taking into consideration GDPR's definitions, HR Partner is a data processor. When you use the software as a data controller or employer, HR Partner allows you to stay in compliance with GDPR requirements.


How long do you store data?

You, as the data controller, collect the data that is stored in your HR Partner account. You can delete your data at any time.

Can I delete data upon request?

Yes, we allow you to delete data in the system. If you would like assistance, we can help. Please contact us at support@hrpartner.io.

How secure is my data?

All data is encrypted securely behind a firewall. Our servers are hosted by a leading, award-winning provider. To read more about our high security standards, please visit our security page.

Does my data need to be in the UK or EU?

No, it is not a requirement that your data be stored on UK or EU servers under GDPR. The section in the GDPR regulation that addresses data location is called “International Data Transfer” and international data transfers outside of the EEA (European Economic Area) are allowed under the provisions of adequacy decisions, appropriate safeguards like standard contractual clauses, or specific derogations outlined in the UK / EU GDPR regulations. For more details on these provisions in the UK, please refer to the UK GDPR (CHAPTER V), or the UK ICO's guide to international transfers.

What can I do to be GDPR compliant?

Under GDPR, it is vital that employers get explicit employee consent before storing their data anywhere (this includes employee data stored in file cabinets, HR software, or spreadsheets). Consent must be tracked and employers cannot assume consent by default. As such, it is important to have employees sign consent contracts before collecting their data through any medium.

Contact Us

If you have any questions about GDPR, we would be happy to assist. Please contact our team here.