Diverse crowd

Diversity in the workplace is important not just from a compliance and legal perspective. Results published in a McKinsey research paper show that companies with more diverse workforces perform better financially. Further, in July 2017 the £1,200 employment tribunal fee was scrapped by the Supreme Court. The result is that those who feel mistreated can take their current or former employer to court without having to overcome a financial hurdle.

Full transparency of a company policy will help diminish the risk of discrimination in the workplace, as well as promote a diverse culture in the workplace. VinciWorks has therefore created an equality and diversity policy template that can easily be edited to suit your organisation and industry.

Download equality and diversity policy template

Equality and Diversity Policy

The procedures in an Equality and Diversity Policy should reflect the controls and processes within an organisation for promoting equality and diversity, and explain the structured process for encouraging equality of opportunity and respect for diversity and preventing unlawful discrimination, whether direct or indirect, within in the organisation and in relationships with clients and others. The requirements reflected in the procedures will apply in relation to protected characteristics, including age, disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion or belief, sex, and sexual orientation. The procedures should be in accordance with local laws, for example, the Equality Act 2010 in the UK.

What should the equality and diversity policy include?


The introduction should explain the purpose of the policy and what it consists of. It should also explain the importance of everyone contributing to compliance with the requirements of the policy by embedding such values in the workplace and by challenging inappropriate behaviour and processes.
Continue reading

Hands showing freedom from modern slavery

Ensuring an organization promotes an anti-slavery culture is now more vital than ever. Organisations must therefore ensure their staff feel comfortable bringing up any concerns they have regarding slavery. All staff should be familiar with the organisation’s modern slavery statement and be able to identify a red flag worth raising with their employer. VinciWorks has therefore created a modern slavery whistleblowing policy template that can easily be updated to suit your organisation and staff.

Continue reading

Data protection

The General Data Protection Regulation (GDPR) is now in force. It presents the most significant change to EU data protection in 20 years, meaning organisations have had to update their policies to ensure they are compliant. Further, all staff who are involved in the processing and storing of data must be familiar with their organisation’s data protection policy. We have therefore provided a data protection policy template to help your staff understand and follow your organisation’s data protection procedures.

Download GDPR policy template

Learn more: The GDPR resource page

GDPR policies and procedures

The General Data Protection Regulation (GDPR) is an EU regulation on data protection and privacy in the European Union (EU) and the European Economic Area (EEA). The GDPR is an important component of EU privacy law and of human rights law. Its reach also extends to the transfer of personal data outside the EU and EEA areas. The GDPR’s primary aim is to widen individuals’ control and rights over their personal data and to simplify the regulatory environment for international business.

The General Data Protection Regulation (GDPR) was a major shakeup in data protection laws. GDPR’s reach is global. Any company that offers goods or services to anyone in the EU or UK may be required to comply.

The GDPR was adopted on 14 April 2016 and became enforceable beginning 25 May 2018. As the GDPR is a regulation, not a directive, it is directly binding and applicable, and leaves room for certain aspects of the regulation to be amended by individual member states.

Many other countries around the world used the EU’s GDPR as a model to make similar regulations. These countries include Turkey, Mauritius, Chile, Japan, Brazil, South Korea, South Africa, Argentina and Kenya. 

In the post-Brexit UK, GDPR is known as UK GDPR. UK-based organisations processing data of EU residents must comply with EU GDPR, just as EU organisations processing the data of British residents must comply with UK GDPR.

UK GDPR and EU GDPR are essentially the same; except UK GDPR refers to British institutions such as the Information Commissioners Office, as opposed to EU institutions.

The California Consumer Privacy Act (CCPA), adopted on 28 June 2018, has many similarities with the GDPR.

What should a data protection policy include?

Who is responsible for the data protection policy?

Staff should know who to approach if they have any questions regarding the data protection policy or anything related to the processing of personal data. Under GDPR, certain organisations are required to appoint a Data Protection Officer (DPO). It will be their role to advise the company on the rules needed to ensure compliance with data protection laws.
Continue reading

A Young Girl Sews Fabric for a Clothes Retailer
Does your organisation know exactly what is happening in its supply chain?

Produce a Slavery and Human Tracking Statement with Our Template

Under the 2015 UK Modern Slavery Act, all businesses with over £36m in annual turnover conducting business in the UK are required to publish a slavery and human trafficking statement. The statement should detail the steps that your organisation is undertaking to ensure that your global supply chain is slavery free. Continue reading