The General Data Protection Regulation (GDPR)

HR had to develop and implement all identified segments in a fairly short time frame, and make sure that all functional teams were able to execute the GDPR processes and were compliant as per Privacy’s requirements.

Plan was developed and implemented to work with Program, Technology, OCDO, Privacy and all HR functional areas.

• Globally across Canada, USA, EU & Asia-Pacific engaged all HR functional teams and worked on the execution of all identified deliverables.

• Developed the Requirements Package.

• By using Enterprise Data and Information Retention Schedule, 28 Data Inventories (DI) were generating in the predefined template (fully mapped and classified PI data related to EU citizens).

• Designed and mapped GDPR specific processes.

• Developed ~ 210 unique GDPR Standard Operation Procedures (SOP).

• Analyzed all HR systems to make sure they have purging functionality.

• Developed purging functionalities where it was applicable.

• Purged PI data as per established retention rules.

• Developed Privacy Notices.

• GDPR language was crafted and implemented in all SOWs.

• Through change management methodology conducted stakeholders impact analysis (SIA) and provided all required trainings.

• Through change management methodology conducted stakeholders impact analysis (SIA) and provided all required trainings.