Any employer storing the personal data of employees needs to comply with the Data Protection Act. The Act sets out who is legally allowed to store confidential data, the amount of time for which they are allowed to store it, and exactly which pieces of information they are allowed to store. The act doesn’t suggest any particular minimum or maximum durations for storing personal data, but it does state that personal information processed for specific reason(s) should not be stored for longer than is necessary for that reason. Theft of personal data by cyber-criminals happens every day and can be difficult to detect until it’s too late – that’s why it’s important to ensure that your employer is not holding any more information than is needed.
The confidential information employers can legally hold usually consists of general information such as:
- Previous work experience
- Emergency contact information
- Disability information
- Bank details
- National Insurance Number.
According to the Information Commissioner’s Office in the UK, personal data is “anything that can identify an employee and be used to reflect crucial decisions such as employment.” Should you wish to check the information your employer is storing on you, you have that right – employers can charge a fee of £10 but this is often waived.
Should you discover that your employer – intentionally or otherwise – has been storing more of your personal information than they are allowed to, or has been storing it for longer than they are legally allowed to, all surplus records should be destroyed. That’s where Datashredders come in – we’ll visit your premises and shred anything from paper documents to laptops, hard drives, data discs and more, ensuring your personal data stays secure.