Data protection assumes an increasingly crucial importance in contemporary society, marked by the regulation of digital technologies and growing dependence on information. In the business sphere, this protection assumes even more significant relevance, with its implementation helping to reinforce the trust of customers and partners; mitigate risks and assessments; and increase efficiency and productivity. The present work aims to understand, in the area of people management, what are the phases of implementing the General Data Protection Regulation (GDPR), what are the challenges faced in this implementation, what are the advantages and, finally, what are the opportunities for improvement in data protection processes. The interest in this topic arose in the context of an internship carried out in the people management area of Nors, S.A. To answer this set of research questions, a case study was carried out on the implementation of the GDPR in the Nors Group. The study was based on semi-structured interviews and documents provided by the organization. The analysis of the data collected allowed us to conclude that the implementation of the GDPR, organized through a planned process in several phases, brought positive, but also negative, aspects to the company's daily life. With regard to benefits, the implementation brought greater protection to employees' personal data; it drove change in certain antiquated processes and reduced the risk caused by a lack of data protection. On the other hand, the collection of data and processes associated with the GDPR was characterized by a gigantic customer database full of personal information that made this process difficult and delayed. Additionally, it was noticed that there is no program that is capable of dealing with the criteria of this regulation. Furthermore, we concluded that there are some gaps in the procedures aimed at the security of personal data, which must be resolved, namely, when the employee is hired, all personal data necessary for the execution of the employment contract reverts to paper format and their level of security decreases since they are at the mercy of “anyone”.
| Date of Award | 17 Jul 2024 |
|---|
| Original language | Portuguese |
|---|
| Awarding Institution | - Universidade Católica Portuguesa
|
|---|
| Supervisor | Ana Lourenço (Supervisor) |
|---|
- GDPR
- People management
- Data protection
- Digitization
Implementação do Regulamento Geral sobre a Proteção de Dados em gestão de pessoas: o caso da Nors, S.A.
Rouxinol, R. M. B. (Student). 17 Jul 2024
Student thesis: Master's Thesis
