People Compliance works collaboratively with multiple functional teams throughout the GitLab organization. We partner to manage and protect the privacy of our People's (team members) personal information, all relevant documents through data retention policies, and understanding all global compliance requirements to help meet internal and stakeholder expectations. Our primary partners are the entire People Group, Legal team, and Business Operations team.
People compliance (or HR compliance in other organizations) is a process of defining policies and procedures to ensure our employment and work practices demonstrate a thorough understanding of applicable laws and regulations, while also being aware of GitLab's larger People Group objectives. These practices include our sourcing, screening, interviewing, hiring, onboarding, and offboarding stages. It also includes safeguarding confidential team member people data while employed.
We at GitLab face increasing people complexities as the number of employment laws and regulations are consistently on the rise, and the risk of penalties for non-compliance has perhaps never been greater. When developing people policies and procedures, GitLab has to remember, for example, that:
Understanding GitLab's strategic priorities lays the foundation for a better understanding of how compliance concerns may impact decisions. People Group goals should be designed to support company strategy, yet they must also consider different scenarios and the people compliance implications. People compliance practices will refine and influence activities such as hiring, employee development, and retention.
All Responsibilities are listed in the People Compliance job family page, and they can be summarized as follows:
Our People Compliance Issue Board serves as the single source of truth on the People Compliance team's priorities. If you have a request for the People Compliance team, please open a Compliance Request issue and we will review and prioritize.
Please see the README.md in the People Compliance project listing our current status and communication labels. The main workflow stages are as follows:
workflow::triage: New issue and no triaging has been done on the issue.
workflow::research: Issue currently being scoped/considered but are not being actively worked on yet.
workflow::in progress: We are working on this now, towards our due date.
workflow::blocked: We worked on the issue and waiting for a response or another issue or MR to unblock us.
workflow::backlog: Adding to the backlog of work todo and add a due date.
This PI encompasses the 100% accuracy of personal information held in BambooHR for all team members under a GitLab entity or PEO. This PI also has as a goal to have documented and communicated policies for personal information data retention within BambooHR, their 100% implementation and 100% compliance.
This PI encompasses the 100% accuracy and compliance of all People-related data and documents held in Google Drive.
This PI encompasses the 100% implementation of quarterly audits for onboarding, offboarding and career mobility issues.