General Data Protection Regulation (GDPR) centre

25 May 2018: the date GDPR lands. It’s your deadline to change the way you handle personal data. But what does it actually mean for employers like you? BrightHR explains all.





So what is GDPR?

GDPR is a new data protection law for every member country of the European Union. And even though the UK will turn its back on the EU in 2019, nothing will stop this law. It’s going ahead.

Let’s be clear, GDPR will change everything about how you store, manage and process data for your staff (and anyone else, for that matter). It has executives at multinationals feeling nervous, let alone employers at SMEs. Help is here…

The legal eagles at BrightHR came together with the data analysts and the software developers and, well, everyone, to explain GDPR in simple terms and offer guidance on what you need to do—starting today.

Discover more in BrightBase

What's the worst that can happen?

The penalties for a GDPR breach are massive. Dangerously so for SMEs. Learn the risks and, even better, find out how to avoid a fine.

Penalty A

(that’s about £17m)

Penalty B

(of your annual turnover)

12 steps to follow for GDPR compliance

GDPR: The basics

The government’s new Data Protection Bill will replace the UK Data Protection Act (DPA), a tired and creaking law from the ’90s that long ago became unfit for this fast-changing digital world.

The new bill will make sure that GDPR is brought into UK law. And like any fresh piece of legislation, people are now throwing GDPR buzzwords and jargon around with abandon.

Some may be in a panic about the looming changes, others just want to sound smart (but really just talk tosh). Don’t be that last person. Get to grips with the real GDPR in this simple glossary.

Get your GDPR glossary

Get your GDPR compliance checklist

Do SMEs need a Data Protection Officer?

You’re an employer at an SME. So you’ll control, store and process personal information. Possibly for the public, almost certainly for your staff. With GDPR, get ready for a raft of new responsibilities.

One of them involves the role of a Data Protection Officer (DPO). If you’re unsure what this is and whether it matters to your SME, you’re in the right place.

Here we break down the role of a DPO, what tools help a DPO, and reveal whether your business actually needs one.

Find out more

How will GDPR change the way you process staff data?

How BrightHR’s software helps with GDPR

Store employee info

Use the employee database to keep a secure record of your team’s personal information, like salaries and so on.

Call our HR advice line

Get fast and instant GDPR and employment law advice anytime from BrightHR’s team of UK-based HR advisors.

Document storage

If your staff want to access their data, forget about hunting through hard drives for lost files. It’s all in one place with BrightHR.

More useful articles, guides and downloads on GDPR

Request a demo

If you are an existing customer or one of their employees please call 0800 783 2806 or email

  • Request a demo