GDPR survey infographic – full results2018-11-22T10:35:35+00:00

2018 GDPR survey: infographic

Discover the full results of CIPHR’s survey of HR professionals

Full GDPR survey infographic

Headline statistics from our GDPR survey

Q1. How prepared do you feel your HR team was for the GDPR before 25 May 2018?

Somewhat or very prepared (82%)

82%

Somewhat or very prepared

Very prepared (30%)

30%

Very prepared

Somewhat prepared (52%)

52%

Somewhat prepared

Somewhat unprepared (12%)

12%

Somewhat unprepared

Very unprepared (2%)

2%

Very unprepared

Q2. How prepared do you feel your wider organisation was for the GDPR before 25 May 2018?

Somewhat or very prepared (69%)

69%

Somewhat or very prepared

Very prepared (25%)

25%

Very prepared

Somewhat prepared (45%)

45%

Somewhat prepared

Somewhat unprepared (15%)

15%

Somewhat unprepared

Very unprepared (7%)

7%

Very unprepared

Q3. How confident are you that your HR processes are fully compliant with the GDPR?

Somewhat or very confident (87%)

87%

Somewhat or very confident

Very confident (42%)

42%

Very confident

Somewhat confident (45%)

45%

Somewhat confident

Somewhat unconfident (7%)

7%

Somewhat unconfident

Very unconfident (1%)

1%

Very unconfident

Q4. How confident are you that your wider organisation’s processes are fully compliant with the GDPR?

Somewhat or very confident (79%)

79%

Somewhat or very confident

Very confident (29%)

29%

Very confident

Somewhat confident (50%)

50%

Somewhat confident

Somewhat unconfident (4%)

4%

Somewhat unconfident

Very unconfident (4%)

4%

Very unconfident

Q5. Which of the following measures have your organisation introduced to assist with GDPR compliance?

Most popular measures taken to assist with compliance:

Most popular measures taken to assist with compliance:

93%

Updated or introduced employee policies

Most popular measures taken to assist with compliance:

86%

Employee training

Most popular measures taken to assist with compliance:

83%

Defined data retention periods for employee, leaver and applicant data

Least popular measures:

Most popular measures taken to assist with compliance:

4%

Enabled self-service access to personal data for leavers

Most popular measures taken to assist with compliance:

7%

Enabled self-service access to personal data for job applicants

Most popular measures taken to assist with compliance:

31%

Enabled self-service access to personal data for employees

Other measures:

Most popular measures taken to assist with compliance:

65%

Requested consent from employees, leavers, and applicants to hold their data

Most popular measures taken to assist with compliance:

69%

Deleted the records of employee, leavers, and applicants who retention period had expired

Q6. Have you requested updated contracts from HR IT vendors to ensure they are processing data in accordance with GDPR?

Have requested updated contracts from IT vendors (65%) 65
Have not (21%) 21
Didn’t know if they had (14%) 14

Q7. Which of the following have you received since 25 May 2018?

Respondents have received SARs since 2 May 2018 (31%)

31%

Of respondents have received SARs (Subject Access Requests) since 2 May 2018

Of all respondents have received an SAR from a staff member (16%)

16%

Of all respondents have received an SAR from a staff member

Of all respondents have received an SAR from a former staff member (13%)

13%

Of all respondents have received an SAR from a former staff member

Job candidates were most likely to request data erasure; but this had only been experienced by 6% of respondents (6%)

6%

Of job candidates were most likely to request data erasure; but this had only been experienced by 6% of respondents

Respondents had not received any requests from any people for any of a subject access request, request to rectify data, request to erase data, request to restrict data processing (62%)

62%

Of respondents had not received any requests from any people for any of a subject access request, request to rectify data, request to erase data, request to restrict data processing

Q8. How are you ensuring that you are not holding details of applicants and leavers for too long?

Said alerts set up in non-HR and recruitment systems were being used to prompt manual deletion (51%)

51%

Said alerts set up in non-HR and recruitment systems were being used to prompt manual deletion

Were using alerts in HR and recruitment systems to prompt manual deletion (39%)

39%

Were using alerts in HR and recruitment systems to prompt manual deletion

Were using HR and recruitment systems to automatically delete applicants’ and leavers’ data after their data-retention period expire (27%)

27%

Were using HR and recruitment systems to automatically delete applicants’ and leavers’ data after their data-retention period expire

The survey figures above have each been rounded to the nearest whole number

To find out more about CIPHR and how it could support your compliance with the GDPR: call 01628 814 242

CIPHR

Free guide

How to choose the right HR software: a buyer’s guide

arrow





By submitting this enquiry form you accept the terms of our Privacy Notice

close-link