The General Data Protection Regulation (GDPR) comes into force from May 2018.
It applies to any organisation processing and holding personal data. Personal data is any information related to someone, that can be used to directly or indirectly identify that person. It can be anything from a name, postal address and telephone number(s), an email address, bank details, posts on social networking websites, medical information, or even a computer IP address.
As a charity, we have always been committed to data protection and adhering to current legislation. The way that we handle and process data will be affected by this new regulation when it comes into force and we have been working on the requirements for some time. GDPR requirements include:
- unambiguous or explicit consent, which may be service-specific
- consent that can be withdrawn as easily as given
- right to view all data
- right to be forgotten
- right to data in a readable format
If you require any further information please send us an email