The Employee Privacy Notice is a mandatory document under both the EU General Data Protection Regulation (GDPR) and Dutch law, specifically required for any organization employing staff in the Netherlands. This document must be provided to employees at the start of their employment and whenever significant changes are made to data processing practices. It serves as a transparent explanation of how the organization processes employee personal data, covering everything from basic contact information to sensitive data like health records. The notice must comply with the GDPR's transparency requirements while incorporating specific Dutch legal considerations, including requirements from the UAVG, Works Councils Act, and Dutch employment law. Regular updates may be needed to reflect changes in data processing practices or legal requirements.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Your data doesn't train Genie's AI
You keep IP ownership of your docs
Alternatively...
1. Introduction: Overview of the privacy notice purpose and its importance for employees
2. Scope of the Privacy Notice: Who the notice applies to, including employees, contractors, temporary workers, and job applicants
3. Data Controller Information: Identity and contact details of the employer as data controller, DPO details if applicable
4. Categories of Personal Data: Comprehensive list of personal data types collected and processed about employees
5. Purposes of Processing: Detailed explanation of why the organization processes employee personal data
6. Legal Bases for Processing: Legal grounds under GDPR for processing each category of personal data
7. Data Retention: How long different types of employee data are kept and criteria for determining retention periods
8. Data Security: Measures taken to protect employee personal data
9. Data Sharing and Recipients: Information about third parties who receive employee data and international transfers
10. Employee Rights: Explanation of GDPR data subject rights and how employees can exercise them
11. Updates to the Privacy Notice: How and when changes will be communicated to employees
1. Automated Decision Making: Required if the organization uses automated processing or profiling affecting employees
2. Workplace Monitoring: Needed if the employer monitors employees through CCTV, computer usage tracking, or other means
3. Remote Working Data Processing: Include if organization has remote working arrangements and specific data processing implications
4. Biometric Data Processing: Required if organization uses fingerprint, facial recognition, or other biometric systems
5. Cross-border Data Transfers: Necessary if employee data is transferred outside the EEA
6. Special Categories of Data: Required if processing health data, union membership, or other sensitive data
1. Data Retention Schedule: Detailed retention periods for specific categories of employee data
2. Authorized Data Recipients: List of specific third parties and service providers who receive employee data
3. Security Measures: Detailed description of technical and organizational security measures
4. Cookie and Monitoring Policy: Detailed information about workplace monitoring technologies and purposes
5. Data Subject Request Procedure: Detailed procedure for handling employee data rights requests
6. International Transfer Mechanisms: Details of safeguards for international data transfers if applicable
Authors
Find the document you need
Data Privacy Notice
A mandatory privacy notice under Dutch/EU law (GDPR/AVG) explaining how an organization handles personal data in the Netherlands.
Download
Privacy Notice Statement
A GDPR-compliant Privacy Notice Statement under Dutch law that explains how an organization handles personal data and data subject rights.
Download
Online Privacy Notice
A legally required privacy notice under Dutch/EU law that explains how an organization handles personal data collected through its online presence.
Download
Privacy Policy Notice
A GDPR-compliant Privacy Policy Notice under Dutch law that outlines an organization's personal data processing practices and data protection measures.
Download
Employee Privacy Notice
A GDPR-compliant Employee Privacy Notice under Dutch law that details how an organization handles employee personal data.
Download
Genie’s Security Promise
Genie is the safest place to draft. Here’s how we prioritise your privacy and security.
Your data is private:
We do not train on your data; Genie’s AI improves independently
All data stored on Genie is private to your organisation
Your documents are protected:
Your documents are protected by ultra-secure 256-bit encryption
We are ISO27001 certified, so your data is secure
Organizational security:
You retain IP ownership of your documents and their information
You have full control over your data and who gets to see it
