General Data Protection Regulation 2018

December 8, 2017

The General Data Protection Regulations (GDPR) are coming into force on the 25th May 2018. As a regulation, the GDPR will have a direct effect on the Irish law system, including the Data Protection Acts 1988 & 2003 and the Data Protection Directive 95/46/EC.


Purpose

The GDPR focus is on standardising the European citizen’s right to data privacy, as well as emphasising transparency, security and accountability by data controllers.


Key Changes

Fines: The GDPR is providing data protection authorities with administrative fines which can turn out to be devastating for organisations. It allows fining for non-compliance of up to €20mln or 4% of total annual global turnover (whichever is greater) for the most serious breaches.


Data Request:

The new regulation will make it easier for individuals to request copies of data relating to them.


At the moment employees are liable to pay a fee of €6.35 and wait for up to 40 days, for the copies of the data to be supplied to them.


However under the GDPR, this request is now free of charge and an employer now has only 30 days to process the request.


An employer is now also required to provide an employee with additional information such as information on how long data is being stored and the right to have inaccurate data concerning them corrected.


Data Breaches:

Mandatory reporting of data breaches has also been introduced.


At the moment only some organisations are obliged to do this. Once the GDPR comes into force, all organisations will be obliged to report any data breaches to the Data Protection Commissioner within 72 hours.


Breaches that are required to be reported are those that are likely to bring harm to an individual. In addition any concerned individual needs to be informed about the breach also.


A failure to report it could result in a fine, as well as a fine for the breach itself.


Data Protection Officers:

Some companies will be required to appoint a Data Protection Officer. Such organisations include:


  • Public authorities
  • Organisations whose activities involve regular and systematic monitoring of data subjects on a large scale
  • Organisations who process what is known as a sensitive personal data on a large scale.


Recommendations

If your organisation is compliant under the existing law, your approach will be valid under GDPR.


The following are the main principles of Data Protection.We recommend that you make sure that your organisation is compliant with these, as this will vastly help you in the case of any inspection under GDPR:


  • Advise all employees that you are collecting data about them, why you do this, who your Data Controller is and who may have access to it.
  • Obtain and process information fairly
  • Keep it only for one or more specified, explicit and lawful purposes
  • Use and disclose it only in ways compatible with these purposes
  • Keep it safe and secure
  • Keep it accurate, complete and up-to-date
  • Ensure that it is adequate, relevant and not excessive
  • Retain it for no longer than is necessary for the purpose or purpose
  • Give a copy of his/her personal data to that individual on request
  • The GDPR introduces a number of significant changes that every employer must be aware of and be sure to comply with, in order to avoid significant penalties.. We recommend that Employers;


Review their existing Data Protection policies to ensure that they reflect the new changes.

  • Ensure to report any breach that is likely to bring harm to an individual, as well as informing the concerned individuals.
  • Consider whether their company are obliged to appoint a Data Protection Officer.
  • Finally, here are a few questions to bring you one step closer to being compliant:


What data do you hold?

  • Why are you holding it?
  • How long will you retain it?
  • Is it safe?

 


This update is provided by the MSS HR Support Service. For further details on the General Data Protection Regulations or on other HR services please email hr@mssirl.ie.

New Retirement Age Legislation Takes Effect on 29 June 2026
By Amy Vickers July 1, 2026
The Employment (Contractual Retirement Ages) Act 2025 introduces new obligations for employers who operate a contractual retirement age below State Pension Age .
Labour Court Issues First Decision on Right to Request Remote Working
By Amanda Scully June 30, 2026
A landmark Labour Court decision reinforces that the right to request remote working, highlighting the importance of employers following the correct process.
How SMEs Can Attract Great Candidates Without Big Salaries
By Amy Vickers June 30, 2026
Recruitment is about more than pay, and SMEs can gain a competitive edge by promoting the unique benefits of working in a smaller organisation.
Hot Weather in the Workplace: Employer's Responsibilities?
June 30, 2026
As Ireland experiences warmer weather, we examine employers' responsibilities and share practical tips for creating a safe and comfortable working environment.
By David Casey June 12, 2026
One of the biggest mistakes we see employers make is starting recruitment before defining exactly what they need.  When a vacancy arises, there is often pressure to recruit quickly. However, taking time to plan before advertising a role can significantly improve recruitment outcomes and reduce costly hiring mistakes. Before starting the recruitment process, employers should ask themselves five fundamental questions. 1. Do We Actually Need to Hire This Person? Before recruiting, consider whether a new hire is genuinely required. Is the workload permanent? Could responsibilities be redistributed? Is there another solution available? Recruitment should address a business need, not simply fill a vacant seat. 2. What Exactly Do We Need From This Person? Many employers focus on job titles rather than outcomes. Consider: • What responsibilities will they own? • What skills are essential? • What results should they achieve? A clear understanding of the role makes it easier to identify the right candidate. 3. Will This Candidate Be the Right Cultural Fit? Technical skills are important, but so is cultural fit. A candidate may have the right experience on paper, but will they align with your company values, team dynamics, and ways of working? Long-term success often depends on both capability and compatibility. 4. Are Our Expectations Realistic and Sustainable? Unrealistic expectations can make recruitment unnecessarily difficult. Employers should assess whether the salary, responsibilities, and required experience are aligned with the realities of the market. The ideal candidate rarely ticks every box. 5. Do We Have the Infrastructure to Support and Retain Them? Hiring successfully requires a meaningful investment of time. Before proceeding, evaluate whether you have the necessary time, administrative resources, and budget to effectively interview, onboard, and train a new employee. Recruitment doesn't end when the offer is accepted. Supporting and retaining talent is equally important. Key Takeaway Recruitment done right is rewarding for both employers and employees, laying the foundation for a successful and productive working relationship. However, it requires careful planning, time, and investment to achieve the best outcomes. Taking the time to answer these five questions before recruiting can help streamline your hiring process, protect your budget, and ensure you're attracting the right person for your business. If you're planning a hire and would like support with your recruitment strategy, we're happy to help. info@mssthehrpeople.ie | 01 887 0690
WRC Upholds Constructive Dismissal and Protected Disclosure Complaints
By Amy Vickers June 4, 2026
Health and safety concerns, deteriorating workplace relationships and poor record keeping create significant exposure for employers
WRC Criticises Employer Conduct, Workplace Practices and AI Generated Submission
By Amy Vickers June 4, 2026
WRC decision highlights that seemingly casual comments, compliance failures, and the careless use of AI material can all contribute to legal liability
Is workplace conflict increasing, or are employees less tolerant?
By Amy Vickers June 4, 2026
Are workplaces actually becoming more difficult or are employees simply becoming far less willing to tolerate behaviour that previous generations may have ignored
How Long Is Too Long? The Cost of Delayed Recruitment Decisions
By Amy Vickers June 4, 2026
Many employers would be surprised to learn how often good candidates are lost because a recruitment process takes too long.
By Tara Daly May 19, 2026
Irish employers are increasingly turning to international hiring as a solution to ongoing skills shortages. This trend is particularly evident in sectors where local talent is limited and demand continues to grow. Why employers are looking overseas Common drivers include: • Difficulty filling specialist roles locally • Business expansion and growth • Increased competition for talent International hiring can provide access to a wider talent pool and support long-term workforce planning. The challenge While the opportunity is clear, the employment permit process can be complex. Employers often underestimate: • The level of detail required in applications • The importance of aligning with eligibility criteria • The potential for delays or refusals Where the process is not managed properly, the impact can be significant. Roles remain open for longer, business plans are affected, and onboarding timelines move further out than expected. Getting it right A structured and informed approach is essential. This includes: • Understanding the appropriate permit type • Ensuring the role meets eligibility requirements • Preparing a clear and robust application Where employers take the time to position the role properly and support the application with strong documentation, the process is far more likely to run smoothly. Key takeaway for employers International hiring can be a highly effective solution, but only where the permit process is managed correctly. Approached properly, it enables businesses to secure the talent they need to grow and succeed with greater certainty and less disruption. If you would like advice or support with the employment permit process, our team would be happy to assist. info@mssthehrpeople.ie | 01 887 0690