Half-Day Course | £229 +VAT

This comprehensive half-day course carefully explains how the rules regarding
data protection in the UK should be applied by your organisations payroll
department. It is essential training for anyone who deals with the pay,
pensions, benefits or any other records about employees or contract workers.

LONDON | 23rd May 2017 | 14:00 – 17:00

Course Overview

All employers are responsible for holding and processing the personal data of
their employees. The legal obligation to protect that data applies whether the
payroll is processed in-house or is outsourced – in both cases, the employer has
ultimate responsibility. The employees, whose information is being held and
processed, have many rights under the Data Protection Act and these are shortly
to be enhanced by the new General Data Protection Regulation.

The financial penalties imposed by the Information Commissioner’s Office for
non-compliance have increased significantly in recent years and the maximum
penalty will increase substantially under GDPR so it is vital that your
organisation is compliant. 

This comprehensive half-day course will show you how to comply with the DPA.
It will explain what is required of payroll departments to be compliant and what
activities must be undertaken to remain compliant.

Who should attend?

This course is intended for all people who work in payroll, human resources
and the administration of pensions and rewards.  It is suitable for all
those with managerial responsibility for any part of an organisation processing
personal data of employees, sub-contractors and other workers. Knowledge of the
current law is not essential to attend this course.



Extra Benefits:

  • A Seminar Pack containing the information presented on the
  • A Compliance Action Plan setting out the key areas to
    consider that you can take away and complete for your organisation 

  • A Certificate of Attendance

What will you learn?

  • What is personal data in an employment context?
  • What is processing?
  • Which payroll processing functions are covered by the DPA?
  • Does the law apply only to computerised staff records?
  • How is a data subject defined and are there any exceptions?
  • Are employers data controllers or data processors?
  • What are the eight data protection principles?
  • What sensitive personal data can you hold about employees and what
    additional protection applies?
  • What does the law say about transferring employee data internationally?
  • How must ‘consent’ be obtained?
  • How can you demonstrate that you are processing data fairly?
  • What rights do people, including current and former workers, have to see and
    have changed information held about them?
  • How long can you legally retain staff records and payment details?
  • What are the rights to prevent direct marketing?  
  • What are the restrictions on using automatic decision-making systems in the
  • What is notification and to whom is it given?
  • What should you be aware of when working with a Data Protection Officer?
  • How can an individual make a complaint about the use of their data and what
    remedies are available?
  • How should an organisation your department respond to complaints?
  • What are the penalties that can be imposed on your business in the event of
    a breach or complaint?
  • To what types of data breach might a payroll department be particularly
  • How does the DPA apply to written references?
  • Is staff monitoring or surveillance prohibited?

Course Presenters:


Norman is a payroll, IT and data protection specialist.
He has recently retired after spending many years as the Legislation and
Compliance Manager for the CGI group of companies. He often advises
people on payroll and data protection issues. He has been a tutor for
the Chartered Institute of Payroll Professionals for over 20 years and
is now the Vice-Chair of the BCS’s Payroll Group.


Leave a Reply