The GDPR enhances existing individual privacy rights considerably, and organisations should review their current employment practices to ensure alignment and compliance. The Office of the Data Protection Commissioner has produced GDPR specific guidance that organisations should familiarise themselves with. The Data Protection Commissioner has released briefing notes for data controllers and data processors in the run up to the implementation date, and has also launched a GDPR dedicated website www.gdprandyou.ie.
Employers are also encouraged to have a data protection policy in place, that includes details on the recruitment practices, use of information and communications technology, transfer of personal data, record keeping, data access requests and other key issues relevant to the organisations' obligations under data protection legislation. GDPR enhances data protection rights of employees, imposes onerous obligations on employers and introduces severe financial penalties for non-compliance. Ibec has produced a number of resources to help employers prepare for the requirements of GDPR and the Data Protection Acts 1998 to 2018.