Improving the Process of Online Inductions in the World of GDPR
With the introduction of the new GDPR in May 2018, the world of data processing and storage changed forever. If you are in an industry where it is essential that new employees, contractors and site visitors are fully inducted to the site, project and all dangerous hazards, it is vital that you understand GDPR and implement a clean, effective process that ensures all data is secure, at all times.
A site management system allows you to have all of the important information in one place relating to large projects with many different contractors and moving pieces. Induction processes can be extremely difficult to maintain control over, especially if there are large numbers of individuals to track at any given time, and a single point of access, with secure data is the perfect way to keep an operation running safely and smoothly whilst adhering to GDPR.
The EU General Data Protection Regulation (GDPR) came into effect at the end of May 2018, and changed the way in which previous data regulations worked in terms of privacy law. It was devised with the intention of bringing together all data laws throughout the European Union, providing greater clarity and strength to private individuals and the data relating to them that is stored by countless companies and organisations.
GDPR applies to all companies that offer goods and services to EU citizens, whether they are based and registered inside or outside the EU. Any company that processes personal data within the EU, or those that store personal data, must adhere to GDPR. This data could be collected, stored and processed in relation to staff members, suppliers, or customers, but it all has to be clearly defined within GDPR rules.
Personal data is defined as any information that is relevant to a person in a way that clearly identifies them either directly or indirectly. So, for instance, information held by a company that includes your full name, date of birth, medical information, photo, bank details, home address, or email address, would all count as sensitive, personal information that comes under the new GDPR.
Data processing and storage processes must be coordinated on a large scale to ensure that EU citizens had the right to understand where there personal data was being stored and how. It is believed GDPR will go a long way to help manage the threat of large-scale data theft.
Companies that are found to be failing to comply with GDPR could face heavy fines. In certain industries where there is a need for accurate data at all times on personnel and visitors to a potentially dangerous site, GDPR ensures that personal data is only used for its intended purpose. So for instance, on an offshore project, or a hazardous construction site, contractors would only be required by law to provide personal information that could be used in the event of an accident or where there is a need for fast and accurate information. This includes information about next of kin, phone numbers, and any relevant individual medical details.