GDPR requires that a data controller retains any HR related data for the following periods:
in the UK, for 6 +current year
in Denmark, for 5 years
The retention of data is the data controller’s responsibility. Planday is the data processor, and can assist a data controller to export any data.
Please note, that as per the T&Cs signed with Planday, your data will be available for up to 120 days after the date the contract terminated. Planday then has the right to delete any data.
Planday encourages the data controller to export the data in Planday portal(s), so that the data controller can be compliant to any privacy regulation, for example GDPR. If the data controller needs assistance, please contact firstname.lastname@example.org
With portals, on the Settings page, the portal admin can delete archived / de-activated employee data after the retention period has passed. The data controller can define this data retention period on the same page.
The data controller has responsibility for any requests to delete data. Planday can assist, on written request from the data controller only, and will only proceed with confirmation that the data controller understands the risks and responsibilities associated with deleting HR data before the retention period has passed.
Planday recommends the following best practice: the data controller should make regular backup copies of all their data held within Planday. Backups can be made by downloading data from Planday or running a backup tool / service.