GDPR

Log in or subscribe today to access these resources Guides • General Data Protection Regulation (GDPR): This information sheet looks at the proposed impact of the GDPR on community organisations, and what community organisations can do between now and 25 May 2018, to prepare for the GDPR.  • GDPR – Archives: Steps community organisations can take to […]

Log in or subscribe today to access these resources

Guides

  • General Data Protection Regulation (GDPR): This information sheet looks at the proposed impact of the GDPR on community organisations, and what community organisations can do between now and 25 May 2018, to prepare for the GDPR. 
  • GDPR – Archives: Steps community organisations can take to ensure their archived records comply with the General Data Protection Regulations.  
  • GDPR and CCTV: Identifiable imagery captured by CCTV (Closed Circuit Television) is considered as personal data under the GDPR and therefore, at a data protection level, requires the same level of thought and care that is being paid to other affected areas of the business.

Model Policies

  • Data Protection Policy: A Specimen Policy for Community Organisations: Organisations have a legal duty to ensure that the way they hold and process personal information is done so in accordance with the General Data Protection Regulations. This is an example of a policy that could be adopted by a community organisation. 
  • Example Privacy Notice for Website/Social Media: This template is provided for organisations to use to state clearly their privacy policy on their website and social media (FREE).  
  • Privacy Statement: A model document
  • Written Agreement between Data Controller and Data Processor: Under the GDPR, all Data Controllers (organisations which determine the purposes and means of processing personal data) who use a Data Processor (an organisation responsible for processing personal data on behalf of a controller) need to have a written contract in place. The GDPR and Information Commissioner Officer have set out what needs to be included in this written contract. This is an example of a written contract which could be adapted by a community organisation.
  • Written Agreement between Organisation and Employee/Volunteer: Many community organisations use volunteers and employee’s to process personal data and under GDPR it is important that they receive the appropriate training and supervision to do so. This is an example of an explanatory sheet for all volunteers or employees, and a template agreement which could be adapted by a community organisation.

Checklists

  • GDPR and Photographs: Checklist for photos you hold or want to take.

Ready to dive in? Become a member today.

From just £25 per year you can subscribe to our services and get access to a knowledge bank of information as well as expert advice via email to support your organisation.

Subscribe