Shelby Klingerman, Content Curator |

Data privacy is an issue that every organization should be heavily pondering. There are new legal and regulatory updates concerning data privacy coming out all the time and it is vital to stay up to date on them. Julie Alonso, Product Management Director for Core HR at Oracle, spoke at RECONNECT 18 about legislative updates and data privacy for Core HR. Here are the updates that we learned about in Julie’s session.

EEO-1 Reporting Changes

Initially, the deadline for EEO-1 was supposed to be in March 2018 but it was extended to June 1, 2018.

OSHA Reporting Changes

OSHA 300A was supposed to be required by December 2017 but the deadline was pushed back to July 1, 2018. Additionally, electronic submissions for 300 and 301 were also thought to be required; however, there has been no file format released, so this item is subject to change.

Updated Form I-9

Form I-9 was updated in 2017 but currently, there are no changes pending yet for 2018.

General Data Protection Regulation (GDPR)

GDPR regulates the “processing” of data for EU individuals, which includes the collection, storage, transfer or use of data. Any organization that processes personal data of EU individuals (employees/applicants) is within the scope of the law, regardless of whether the organization has a physical presence in the European Union.

GDPR went into effect May 25, 2018. Penalties for breach of GDPR include a fine of up to four percent of annual global revenue or €20 million, whichever is greater.

California Consumer Privacy Act of 2018 (AB378)

Organizations around the world have to comply with the California Consumer Privacy Act of 2018 if they receive personal data from California residents and if they or their parent company/subsidiary, exceed one of three thresholds:

1. Annual gross revenues of $25 million.
2. Obtains personal information of 50,000 or more California residents, households or devices annually.
3. 50 percent or more of annual revenue from selling California residents’ personal information.

The California Consumer Privacy Act of 2018 goes into effect January 1, 2020. Penalties can be up to $7,500 per violation.

Learn More

Staying up to date with data privacy legislation is crucial to protecting your company and employees. Features like Person ID Delete and Applicant Delete can help you manage the personal data that you keep on employees and applicants.

To learn about these features and more check out the full presentation in the video below:

Subscribe to Oracle’s monthly newsletter that contains regular legislative and regulatory updates by emailing [email protected] to be added to the mailing list.

Additional Resources

Learn more about what Oracle has planned for PeopleSoft HCM by checking out the PeopleSoft HCM Update and Roadmap session from RECONNECT 18.