People data
Employee management has never been easier. We are ready to show how easily you can digitize your admin needs, and get all your employee management processes in order!
How can HR help companies with
Privacy and GDPR
As an employer, we must have some basic data and information about our employees. All this information is necessary in order for the employer to be able to exercise their duties and ensure, for example, employment contracts, salaries, etc. Data protection and GDPR are increasingly high on the agenda and the Data Protection Authority is seeing increased reporting of deviations in the workplace.
Let's take a closer look:
Examples of required information include name, national identity number, address, email address, telephone number, emergency contacts and information about where in the company you work.
It is important that this personal data is stored securely and is not accessible to anyone other than the few who need this information.
As an employer, in line with our privacy policy and GDPR compliance, we should ask ourselves what data we store, why we store it, how long we need the data, how it is stored and who has access to it.
In other words, we can't collect personal data just because we might need it, but processing under the GDPR must be for specific and explicitly stated purposes and have a legal basis to be lawful.
What basis for processing do you have?
As an employer, you must have a legal basis for the processing to be lawful. Relevant grounds may be, for example:
- That the processing is necessary for the performance of an (employment) contract or a legal obligation.
- That the processing is necessary in order to safeguard the employer's legitimate interests, and that these take precedence over the employee's interests.
Would you like to read more about the current grounds for processing? Then click here to go to the Norwegian Data Protection Authority's own pages.
Huma and GDPRAt Huma, we help you both easily manage, automate, and digitize your HR and admin processes while ensuring your employee and company data is safely stored in line with GDPR guidelines. |
Data processing
For the purposes of the General Data Protection Regulation, Huma, or another Huma group company, will from time to time act as data processor of your personal data. Our data controller can be contacted at dpo@hu.ma
Security and safety
Huma's services and data are stored with Amazon Web Services (AWS), Neo4j Aura and MongoDB Atlas facilities, all within the EU. Read more about our product security at https://www.hu.ma/product-security Or if you believe you have found a weakness in our security, please contact our security team at security@hu.ma
Subcontractors
Huma is a data processor that engages various subcontractors that process personal data entrusted to Huma's services by the administrator. For more information and a list of our subcontractors, go to our subcontractors page: https://www.hu.ma/subprocessors
Training and education
All our employees undergo security and awareness training annually.
Want to see how easy it is to get full control?
Read more about how you can easily improve your privacy and GDPR compliance with Huma
