Back

knowledge base

Security & Compliance

Data Protection

Workbloom is committed to supporting organisations in meeting applicable data protection requirements, including obligations related to the General Data Protection Regulation (GDPR). Personal data processed within the platform is handled in accordance with applicable legal and contractual requirements.

Tips

  • Ensure employee information is accurate and up to date.
  • Review internal data protection policies regularly.
  • Only provide access to authorised users.

Common Mistakes

  • Uploading inaccurate employee information.
  • Sharing account access with unauthorised individuals.
  • Assuming internal policies replace regulatory obligations.

Related Articles

Employee information imported into Workbloom is stored and processed to support reward programme administration and related platform functionality.

Employee data may include:

  • Name
  • Email address
  • Employee identifier
  • Department information
  • Other approved employee-related information

Only authorised users should have access to employee information.

Tips

  • Import only information required for programme administration.
  • Review employee records periodically.
  • Remove inactive employee records where appropriate.

Common Mistakes

  • Uploading outdated employee information.
  • Allowing unnecessary access to employee records.
  • Retaining duplicate employee records.

Related Articles

Data may be retained for operational, reporting, compliance, and legal purposes in accordance with Workbloom policies and applicable regulations. Retention periods may vary depending on the type of information involved.

Tips

  • Review organisational data retention policies regularly.
  • Ensure employee information remains accurate.
  • Contact Workbloom Support if clarification is required.

Common Mistakes

  • Assuming all information is removed immediately after account changes.
  • Retaining unnecessary duplicate records.
  • Ignoring organisational retention requirements.

Related Articles

Account Security

Strong passwords help protect Workbloom accounts and organisational information from unauthorised access. Passwords should meet the security requirements established during account registration.

When creating an account, passwords must include:

  • At least 8 characters  
  • One uppercase letter  
  • One lowercase letter  
  • One number  
  • One special character  

Tips

  • Use unique passwords for Workbloom accounts.
  • Update passwords periodically.
  • Avoid sharing passwords with other users.

Common Mistakes

  • Reusing passwords from other systems.
  • Sharing login credentials.
  • Using weak or predictable passwords.

Related Articles

Privacy & Data Processing

Employee information should be managed responsibly throughout the reward programme lifecycle. Administrators are responsible for ensuring imported information is accurate, relevant, and appropriately maintained.

Tips

  • Verify employee information before importing data.
  • Update records when organisational changes occur.
  • Limit access to authorised users.

Common Mistakes

  • Importing inaccurate employee records.
  • Maintaining duplicate employee data.
  • Granting unnecessary access to employee information.

Related Articles

Organisations using Workbloom are responsible for ensuring that employee information is collected, maintained, and processed in accordance with applicable legal and internal requirements. Administrators should ensure that appropriate controls are in place for managing employee information and platform access.

Tips

  • Establish clear internal processes for user access management.
  • Review employee information periodically.
  • Monitor compliance requirements relevant to your organisation.

Common Mistakes

  • Failing to review access permissions regularly.
  • Allowing outdated employee information to remain active.
  • Assuming compliance responsibilities are fully transferred to the platform.

Related Articles