Get Started with Redwood for Oracle Cloud HCM Begin Now
To ensure that questions get required attention from community members and are NOT left unanswered, it’s important for the author to indicate (by selecting “Yes” or “No” when prompted) whether the question was answered. (newly added) Please note that it is also important to respond to EACH comment your question receives. Your Yes or No response ensures an accurate status for your question.
For more information, please refer to this announcement explaining best practices for getting answers to questions.
For more information, please refer to this announcement explaining best practices for getting answers to questions.
GDPR (EU Data Protection Regulation) - lawful basis for processing personal data
Summary
Consent /Contract / Legal Obligation / Legitimate InterestContent
As the GDPR enforcement date approaches, I guess we are not the only HCM Cloud customer documenting our data privacy strategy and I wanted to share some critical items where we are interested in understanding how others approached the topic.
First one if the "lawful basis for processing personal data". The regulation includes several options including the following that can potentially apply to an HCM/HRIS solution (I skipped d and e that are not relevant):
6 (1)(a) – Consent of the data subject
6 (1)(b) – Processing is necessary for the performance of a contract with the data subject or to take steps to enter into a contract
1