We focus on GDPR!
Learn how the GDPR legislation affects your data in TimeLog
GDPR is EU’s personal data legislation which took effect 25. May 2018. The purpose of GDPR is to protect EU’s citizens against misuse of personal data. Therefore all European companies need to meet a number of obligations related to saving personal data collection and handling.
The legislation sets tough requirements for us as a data processer and you as a data controller.
We have published our data processing agreement on our website which you can find a copy of here. The TimeLog responsible will always be able to access it directly in TimeLog.
We do not enter into specific agreements with our customers, instead, all our customers get our data processing agreement, so we ensure that you are all covered by the same terms.
We update the guides on an ongoing basis, and it is a good idea to visit our GDPR section once in a while to stay up to date.
TimeLog and GDPR: Guides
- TimeLog's responsibilities as data processer
- Your responsibilities as a data controller
- FAQ: Our customer's typical GDPR questions
- FAQ: How the ISAE 3000 and ISAE 3402 reports protect your data
- Recording of our GDPR webinar
- PowerPoint about GDPR
Help to comply with GDPR in TimeLog
To help you comply with GDPR, we have made it possible to anonymise data in TimeLog for former employees.
Thereby, data cannot be linked to a specific person, but still, be used in your reporting.
When former employees are anonymised, their data are transferred to one collective anonymous system user. Here all data from former employees will land and be anonymised to make sure that data cannot be linked to a specific person at a later point in time.
You cannot return the data once it is on the anonymous system user.
How to set it up
Under General settings in the System administration, you need to navigate to Personal data protection. Here you make your anonymisation setup.
You decide yourself when data are anonymised and/or deleted if an employee is no longer employed.
This is what the setup looks like:
It is on the same page, where you enter your data responsible.
If you do not yet have an overview of the basic GDPR rules or need for basic information, we recommend you take a closer look at the EU's website, so you learn all the rules for responsible data handling.
The above information is completed based on the Confederation of Danish Industry’s, The Danish ICT Industry Association’s (IT-Branchen) and The Danish Data Protection Agency’s websites.
This page was updated on 14 February 2023.
Learn about TimeLog's policies and what it means to you as customer.
Data security policy
We have obtained both the ISAE 3000 and 3402 report. Learn how they help secure your data in our FAQ.