GDPR is an EU regulation that obliges organisations to protect personal data and privacy of EU citizens. On the surface, this important legislation may only seem relevant for businesses which operate within the EU; however, even if your business is based outside of the EU, you might still need to ensure you’re compliant.

What is GDPR?

General Data Protection Regulation (GDPR) introduced new data protection responsibilities for any organisation that collects the personal data of EU residents. The legislation gives people new rights and more control over their information, including the right to withdraw consent and opt-out of receiving communications.

The legislation, introduced in May 2018, applies to organisations that process EU resident’s data. This includes companies outside of the EU that offer goods or service to EU residents.

Fines for non-compliance are hefty: €20 million or 4% of global revenue – whichever is greater.

Why does it exist?

GDPR exists due to public concern over privacy and companies losing their data. It replaces the previous EU Data Protection Directive from 1995, a time before the internet and operating online. The old legislation didn’t address how data is stored, collected and transferred in today’s modern world, so change was necessary. Companies now need to consider whether the way they store personal data is compliant, ensuring there are sufficient measures to protect people’s information.

Studies have shown there is growing concern among the public over data breaches and hackers getting hold of their personal information, such as email addresses, passwords and bank account details. This means there is a rising need for businesses to monitor and protect people’s data in our increasingly digital world.

How does GDPR affect non-EU countries?

Companies that store or process personal information about EU citizens need to comply with the legislation, even if they do not have a physical presence in the EU.

If you are a business outside the EU, you need to be GDPR compliant if you process personal data by:

  • Offering goods or services to people in the EU and/or
  • Monitor the behaviour of these people as far as their behaviour takes place in the EU (e.g. you employ people in the EU)

If this sounds like your business, you need to seek advice and take immediate steps to become compliant. Contact us now to find out more.

My business is based in the USA – do I need to be compliant?

As mentioned above, just because your business is based outside the EU doesn’t mean you are safe from GDPR constraints.

If you employ staff in the EU but your base is in the USA, you still need to be compliant in how you collect your remote workers’ data, such as addresses, emails and credit card details.

What to do next

You can take steps to minimise the risks associated with GDPR by working with a Global Professional Employer Organisation (PEO), like us, in the EU.

At TopSource Worldwide, we provide full professional employer services to our clients. This means that we become the legal employer of record for your employees and consultants across the globe. As the legal employer, we are authorised to collect your remote employees’ personal information and ensure it is GDPR compliant.

We can help you to adhere to GDPR and other local employment regulations across the world, allowing you to expand your operations and maximise your service offering.

So, if you have EU citizens on your payroll get in touch with us today to see how we can help your business thrive while remaining within EU legislation.

See more benefits of working with us here.

Share this article, choose your platform!

Published On: 28/03/19Last Updated: 14/09/22

About the Author: Sam Barnes

Sam is our Global Business Development Manager for Employer of Record services. For the last 10 years, he has assisted companies in the successful execution of their international expansion plans. Sam tells us “There’s something inherently exciting about growing a business into overseas jurisdictions. Each country does things slightly differently and it’s great to be able to share learnings on statutory requirements and cultural nuances”. Email: sam.barnes@topsourceworldwide.com

Subscribe to our newsletter don’t miss out

Subscribe to receive our latest posts and events straight to your inbox.

We care about your privacy. By submitting this form, you’ll receive the requested information as well as business insights from TopSource Worldwide. You can unsubscribe at any time. For details, view our Privacy Policy.

Our top blog categories

Global employment cost calculator

Estimate the cost of your new hire with our new calculator.

Calculate costs

Recent posts

What makes effective HR management?

By |21/09/22|

Your workforce is the most essential component of your business. Therefore, you must have effective HR management to achieve an efficient, positive, and productive ...

Related posts

  • Published On: 16/03/224 min readBy

    One of the most direct fallouts from COVID-19 in the UK is its impact on sick pay legislation. Not ...

    Read the full blog
  • Published On: 10/02/225 min readBy

    Over the past two years, technology has evolved enormously to accommodate our ‘new normal’ of hybrid working, allowing employees ...

    Read the full blog
  • Published On: 25/11/215 min readBy

    It’s been a busy couple of years for data protection laws worldwide. The European GDPR came into force for ...

    Read the full blog
  • Published On: 16/03/224 min readBy

    One of the most direct fallouts from COVID-19 in the UK is its impact on sick pay legislation. Not ...

    Read the full blog
  • Published On: 10/02/225 min readBy

    Over the past two years, technology has evolved enormously to accommodate our ‘new normal’ of hybrid working, allowing employees ...

    Read the full blog
  • Published On: 25/11/215 min readBy

    It’s been a busy couple of years for data protection laws worldwide. The European GDPR came into force for ...

    Read the full blog
  • Published On: 27/10/215 min readBy

    The past two years have been full of immense upheaval — from the outbreak of a global pandemic to ...

    Read the full blog

Start your global expansion journey today.

Expand faster and stay compliant in over 150 countries without a legal entity

  • Expand globally

  • Deploy quickly (in days not weeks)

  • A single global portal for all your hiring needs

  • No legal entity required

  • Experienced expert team

Contact us today & talk to an international payroll or EOR consultant

We care about your privacy. By submitting this form, you’ll receive the requested information as well as business insights from TopSource Worldwide. You can unsubscribe at any time. For details, view our Privacy Policy.