Data Handling Best Practices: An Interview with DuPont

Events & webinars

If you want to learn best practice in handling data in light of the General Data Protection Regulations (GDPR), you can do no better than to look at DuPont. Now part of science giant DowDuPont following a merger last year, data is part of the DNA of the organisation and it has a long history of embedding data protection into its culture.

To learn more, we spoke to Edith Hamelryckx,  HR Manager Integrated Operations & Industrial Relations Leader EMEA at DuPont de Nemours who attended SD Worx European Conference 2018 in London as speaker early last month.

“GDPR is not shocking at all to us. It’s natural behaviour.”

Founded back in 1802, DuPont has a long background in protecting intellectual property, inventing everything from nylon and Lycra to Teflon and owning brands ranging from Corian solid surfaces to Kevlar fibre and Pioneer seeds. As such, data security has always been at the heart of what it does. You could call it a pioneer in the area.
Hamelryckx views GDPR as a positive step forward, bringing harmonisation to Europe. “As well as being an obligation, it reinforces the message that you are a strong employer, respecting customers and suppliers and doing the right thing with core information. It has a reputational and image building side,” she says.

 

With such expertise to impart, SD Worx asked Hamelryckx to share some of the data handling practices used at DuPont.

  1. Embed it into your values
    DuPont has four core values: safety and health, environmental stewardship, respect for people and highest ethical behaviour. Data fits perfectly into this latter value, which says that the company and its people conduct themselves and their business affairs in accordance with the highest ethical standards and in compliance with all applicable laws, striving always to be a respected corporate citizen worldwide.
  2. Make data training highly visible
    Every year all employees go through four hours of training followed by a test on data management, records management, data protection and ethical behaviour, which they must pass.  Employees are provided with instructions on what they can share or not share when at their desk, how to ensure data protection when they are working in an open space and on clean desk and clean screen approaches.
  3. Communicate regularly
    Reinforce the message regularly. Hamelryckx says she gets email messages almost every day regarding keeping records and cleaning the office. But it’s not only about instructions: “We have special officers in the company whom we can contact once we receive strange emails or experience IT related issues, such as phishing. They are easy to approach and make it feel natural getting in touch with them whenever you have a question.”
  4. Regularly review with your third-party vendors
    Every time a new process involving personal data is established, or an existing process where personal data movement is taking place is changed, make sure you check if information is being exchanged with third party vendors. For example, where are they storing the data and is the transaction secure? In 2016 alone DuPont itself undertook 26 privacy impact assessments.Be wary of Bring Your Own Device policies
    Be extra careful if you allow people to come in and use their devices to go on your network. DuPont has always refused such requests, instead providing company laptops or smart phones for those that need to access remotely or who regularly travel.
  5. Collaborate
    At DuPont, IT, HR and legal meet once a month and discuss issues around data processes. Good collaboration will help the smooth introduction of GDPR.

 

To read more about GDPR, including our statement, click here  or here to get presentation slide pack.. SD Worx aims to give guidance and provide news on this historic legislation from an HR and Payroll stand point which will impact businesses across the globe. For more information please visit our GDPR Page or contact us.

Related articles

GDPR

How GDPR effects non-EU based HR teams

It’s likely that no matter whether an organization works in the EU or not, its heard of the General Data Protection Regulation. GDPR, which was implemented on the 25th May 2018, changes the ways that data is processed, stored, and used by organizations. 

9 November 2018

Looking Back at Unleash

The SD Worx team has returned from another great annual UNLEASH conference. Over 5,000 attendees gathered at the RAI Exhibition and Conference Centre in Amsterdam – the site of the first conference seven years ago.

7 November 2018

Webinar: The Importance of GDPR for Non-EU Based Organisations

On 31st October, SD Worx is hosting an exclusive webinar, in collaboration with Ascender (also a member of the Payroll Services Alliance), to discuss the General Data Protection Regulation (GDPR) and how it affects organisations outside of the EU

19 October 2018
Regulation

What does a ‘hard Brexit’ mean for your international company and UK employees?

If no agreement between the UK and the European Union is reached at the EU summit on 18 and 19 October, the transitional period that would have applied until the end of 2020 will expire. As a result, on 29 March 2019, the UK’s membership in the EU will end, and EU law will no longer apply. If your company employs people in or from the UK, this change could be far-reaching. So, take the bull by the horns and avoid unpleasant surprises caused by a ‘no deal’ scenario by making the right preparations.

16 October 2018
GDPR

3 months on: What’s new with GDPR?

In the lead up to 25th May 2018, the General Data Protection Regulation (GDPR) was everywhere as organizations across Europe (and further afield) prepared for stricter regulations on handling customer and employee data. Three months have passed since its implementation, but what’s new with GDPR?

20 August 2018
GDPR
what is gdpr

Perfect payroll: Five tricks of the trade

Payroll, and the importance of payroll, is everywhere. Whether in Italy, France, or in Belgium, payroll is a crucial part of any organisation. Employees are the heartbeat of an organisation, so ensuring that they are paid on time and correctly is essential

17 May 2018
GDPR

GDPR: 3 ways to remain compliant

With just six months to go until the General Data Protection Regulation (GDPR) takes force, payroll departments need to ensure they know what’s coming, or risk paying for it later. The stakes are high, as businesses that fail to comply with GDPR could face fines of up to 4% of their total annual revenue.

14 May 2018
GDPR
what is gdpr

GDPR: Ensuring your HR and Payroll Business Partners are Compliant

With the implementation of the General Data Protection Regulation (GDPR) next month, if an organisation is working with HR and payroll vendors, it will be their responsibility to ensure that these business partners are GDPR compliant. Any external organisation that handles the data of employees or customers must be compliant, otherwise the organisation is also at risk of breaking GDPR regulations.

 

26 April 2018
GDPR
what is gdpr

GDPR: One month to go

With the 25th May deadline only a month away, it is more important than ever for HR and payroll departments to ensure that they are GDPR compliant. If organisations are not compliant the penalties are significant, with fines of up to €20m or 4% of global revenue, and companies will undeniably suffer from significant brand damage.

So, what should HR and payroll teams do during the next month to ensure that they are compliant and ready by the deadline?

9 April 2018
GDPR
what is gdpr

How to prepare for GDPR

With just three months to go until the General Data Protection Regulation (GDPR) comes into force, the clock is ticking for HR and payroll managers to get the systems and processes in place to ensure compliance. The regulation, coming into effect on 25 May 2018, updates data rights for today’s networked world and organisations ignore it at their peril. A major infringement could cost a company up to 4% of its global revenue while there is a penalty of 2% of global revenue if records are not in order or a supervising authority and data subjects are not notified within 72 hours when personal data is exposed in a security breach.

19 March 2018
GDPR
First Steps Towards GDPR Compliance

SD Worx Webinar: Integrating GDPR Security and Privacy Measures in your HR Processes

Once GDPR takes effect on 25th May 2018, organisations that fail to process data correctly, report security breaches within a set time period, or comply with data regulations, will face fines and brand damage. These legislative changes emphasise how HR and payroll professionals need to be more security-conscious than ever before.

14 March 2018
Digitalisation
what is gdpr

How to be internationally compliant in a digital world

PAREXEL provides best practice examples to international organisations.

With the General Data Protection Regulation (GDPR) coming into effect in May 2018, all organisations who handle data of EU citizens will need to comply with new guidelines. By nature, HR departments hold personal and sensitive employee data, including payroll data. However, with an increasing amount of payroll and HR departments adopting automated payroll processes, the question arises: how do you become compliant in a digital world, especially if you are an international company?

12 March 2018
GDPR
First Steps Towards GDPR Compliance

GDPR Data Register: What you need to know

Once GDPR comes into effect, companies must provide employees and data regulation authorities with carefully-documented data information. To simplify this process, these records should be stored in the form of a data register, filled in by HR and payroll professionals, alongside other departments within the organisation. However, how should HR and payroll departments set up and maintain a data register?


5 March 2018
GDPR
what is gdpr

SD Worx European Conference 2018: Top Five Lessons on Implementing GDPR

In February, SD Worx hosted its European Conference 2018 at Hilton on Park Lane, London, with over 800 attendees and 30 expert speakers. One of the sessions, titled ‘How to be internationally compliant in a digital world’, was hosted by Gert Beeckmans, chief risk and security officer SD Worx, and Frank Rudolf, director of payroll at PAREXEL. Here are their top five lessons on implementing GDPR:

1 March 2018
GDPR
First Steps Towards GDPR Compliance

SD Worx Webinar: ‘GDPR: Completing the Data Register’

With the General Data Protection Regulation (GDPR) around the corner, employees will soon have the right to know the status of the personal data that companies retain. Ex-employees and unsuccessful applicants can also request that their data is discarded (if the necessary period for keeping their data has expired). Because of this, it’s important that data is processed and stored clearly and correctly.

14 February 2018
GDPR

GDPR Webinar Roundup: Implementing an appropriate retention of employees’ data

#GDPRCountdown

On Wednesday 25th January, SD Worx and DLA Piper hosted the second webinar in our General Data Protection Regulation (GDPR) series focused on implementing an appropriate retention of employees’ data.

29 January 2018
GDPR

GDPR checklist: 4 months to prepare (Part 2)

With the GDPR deadline just four months away, are you prepared? To help get your HR and payroll department ready for when the regulation takes effect on 25th May, we’ve put together a checklist of essential steps to compliance.

19 January 2018
GDPR

GDPR Webinar: Implementing an appropriate retention of employees’ data

With the General Data Protection Regulation (GDPR) due to take effect in less than four months’ time, it’s essential that HR managers understand exactly what the regulation entails.

15 January 2018
GDPR

GDPR checklist: 4 months to prepare

With the General Data Protection Regulation (GDPR) deadline just four months away, is your organisation prepared? To help get your HR and payroll department ready for when the regulation takes effect on 25th May, we’ve put together a checklist that includes the essential steps to compliance.

8 January 2018
GDPR
what is gdpr

HR and Payroll: Five Steps to GDPR Compliance

With GDPR on the horizon, are your HR and Payroll departments prepared? With large fines and serious damage to your business’ reputation at stake for non-compliance, here’s how you can become GDPR compliant in five practical steps:

20 December 2017
GDPR
what is gdpr

Key Findings from the HR GDPR Divide Survey 2017

With GDPR fast approaching, SD Worx commissioned an independent survey of HR and payroll professionals across nine European countries to determine GDPR readiness in the industry. These countries included The United Kingdom, France, Germany, Switzerland, Belgium, Ireland, the Netherlands, Austria and Luxemburg.

19 December 2017
GDPR
what is gdpr

GDPR Webinar Summary: Dealing with the data rights of your employees

On Thursday 30th November, the SD Worx and DLA Piper teams hosted the first webinar in our General Data Protection Regulation (GDPR) series. This webinar focused on the HR and payroll industry and how it should manage the data rights of employees.

11 December 2017
GDPR
what is gdpr

GDPR Webinar: GDPR: Dealing with the data rights of your employees

In the upcoming webinar, titled ‘GDPR: Dealing with the data rights of your employees’ and brought to you by SD Worx and global law firm DLA Piper, HR professionals can learn about data subject rights ahead of the General Data Protection Regulation (GDPR). This is the first in a series of GDPR guidance webinars to be launched in the run up to May next year.

22 November 2017
GDPR

Six months to go: Why GDPR is important in payroll

With just six months to go until the General Data Protection Regulation (GDPR) takes force, payroll departments need to ensure they know what’s coming, or risk paying for it later. The stakes are high, as businesses that fail to comply with GDPR could face fines of up to 4% of their total annual revenue.

13 November 2017
GDPR
GDPR what you have done to prepare

GDPR checklist: What have you done to prepare?

We all know GDPR is coming, but is your business really prepared for it? To help get your HR and payroll department ready for when the regulation takes effect on 25th May 2018, we’ve put together a GDPR checklist.

25 October 2017
GDPR
what is gdpr

GDPR is Coming – Why HR Should Have a Key Role in its Success

Exactly who should be responsible for data protection within an organisation?  Should it be a matter for C-level staff only? Or the IT department? The sales and marketing department collecting customer information? Or is it time to appoint a dedicated Data Protection Officer?

18 October 2017
Advantages of Outsourcing for Efficient Global Payroll

The benefits of big data in HR and payroll

Big data and analytics have now entered numerous industries, including healthcare, financial services and retail. Despite many HR and payroll providers now using big data as part of their services, the industry has predominately been slow on the data uptake, in comparison to adoption within others. HR and payroll is largely an industry that relies on human intuition, rather than data and statistics, however, providers have started to see for themselves benefits of big data and analytics, and thus are beginning to implement these into their services.

10 October 2017
GDPR
gdpr affect your business

How will GDPR affect businesses?

We have previously discussed what the General Data Protection Regulation (GDPR) is, when it will come into play and the consequences of breaching it. In this blog, we want to focus on the key provisions of GDPR and how it will affect businesses.

Jean-Luc Barbier - 2 October 2017
GDPR
gdpr-marketing

GDPR overview: Sales and Marketing professionals

Having joined the GDPR bootcamp for Marketers in Reading on the 15th of September, I wanted to share what I have learned during this full on (but very enlightening) day in an easy to digest blog:.

2 October 2017
GDPR
First Steps Towards GDPR Compliance

First Steps Towards GDPR Compliance

The Chief Legal Officer of SD Worx, Jacqueline Raison, has written some useful information on GDPR and what it might mean for your organisation. This is the second of a series of articles on the steps we are taking at SD Worx to ensure GDPR compliance.

Jacqueline Raison - 6 September 2017
GDPR
what is gdpr

What is GDPR?

Chief Legal Officer of SD Worx, Jacqueline Raison, has written some useful information on GDPR and what it might mean for your organisation. This is the second of a series of articles on the steps we are taking at SD Worx to ensure GDPR compliance.

Jacqueline Raison - 6 September 2017
International payroll
Advantages of Outsourcing for Efficient Global Payroll

Business and Brexit: SD Worx European Conference 2017

With Britain voting to leave the EU last June, 2016 was a big year for pan-European news. And, while the full implications of Brexit remain to be seen, it is clearly creating much discussion amongst business leaders who are already starting to plan ahead for the legislative changes that will no doubt impact both their operations and compliance.
One of the business areas most likely to be affected is international HR and payroll, so with that in mind, ‘Brexit and Business’ will be one of the key themes at our upcoming 2017 SD Worx European Conference. This year’s event will be bigger and better than ever before, taking place on the 8th February at London’s Hilton on Park Lane.

24 January 2017
Services
Advantages of Outsourcing for Efficient Global Payroll

The challenges for global Payroll & HR

We were delighted to exhibit at HR Tech World 2016 in Paris last week , and were pleased to secure an enviable exhibition spot that ensured a great flow of both interesting and interested visitors

30 October 2016
refresh More articles
SD Worx 2018