The General Data Protection Regulation (GDPR) has been a major and important topic this year. Even if the discussions have now subsided somewhat, it has not lost any of its topicality. Today we would like to show you the implementation of our add-on partner LESSOR for the Human Resources area, which has integrated the GDPR guidelines into the modules.
In addition to payroll accounting and bookkeeping, LESSOR's NAV add-on modules can be used to efficiently organize workflows relating to time recording, travel expense accounting and statutory reporting. The handling of personal data plays a special role in personnel management.
With the release, particular attention was paid to ensuring that the "right to be forgotten" (retention periods/deletion obligation) is complied with in accordance with the regulation. The employee's right to know which persons have access to the data and which personal data is stored in the system is also covered by the new feature. As both regulations are presented across all modules, the processes only need to be carried out once.
Below you will find all relevant information structured according to the basic features of the GDPR:
Right to information
- Under a special menu item "GDPR", all relevant information about a person is displayed across all modules
- An extract of all relevant data on a person can be created as an "Information right" report from the employee card
- It is possible to customize the report by selecting the corresponding tables and fields
- Data portability via the NAV standard tool "Rapid Start Services" allows the report to be transferred to Excel or created as a PDF file
Confidentiality & access rights
- Guarantee of anonymized export of employee data
- Recognize confidential communication by marking it as "Contains sensitive data"
- Documentation with assigned user ID and roles, which users currently have access to the employee data
- Appropriate assignment of access rights for setting up tables and deleting employee data by adding the user ID, which is stored in the "GDPR admin" role
"Right to be forgotten" / storage limitation (deletion obligation)
- Consideration of legal requirements for retention periods in the context of data storage or deletion of data of former employees under the corresponding menu item "GDPR" with the number of years specified
- The deletion obligation is stored by a corresponding function and enables the deletion of all personal data/employee master data of employees who have left the company after the deadline specified in the institution
Are you already using Microsoft Dynamics NAV in your company? The modules can be integrated seamlessly and quickly into your NAV system.
Are you interested in other very helpful functions of NAV or would you like to use Microsoft Dynamics NAV to optimize your payroll accounting processes and adapt them in accordance with the GDPR regulations?
Get in touch with us! Our consultants will be happy to support you with the implementation or answer any initial questions you may have.
