The Jenner Hall Community Trust & commitment to General Data Protection Regulation. (GDPR)
The General Data Protection Regulation (GDPR) is a new, European-wide law that replaces the Data Protection Act 1998 in the UK. It places greater obligations on how organisations handle personal data. It came into effect on 25 May 2018.
Our commitment to GDPR. The General Data Protection Regulation (GDPR) has been described as a “game changer for everyone” by the Information Commissioner’s Office. This new piece of EU data protection law represents a major shake-up in the way we collect, process and store personal data. The legislation aims to standardise data protection law across the EU, giving individuals more control over how, when and by whom their data is processed.
The Jenner Hall Community Trust is committed to partnering with our service users to help prepare for GDPR. Here we will explain what we are doing to achieve GDPR compliance both internally and for those we support.
We have been preparing the business for the significant changes involved. These include:
Updating and amending our documents and privacy statements to bring them in line with the GDPR legislation.
Ensuring that appropriate confidentially is in place with computers which support the principles of GDPR. All computers that contain confidential data are protected against viruses by running anti-virus software, and using a system of passwords so that access to data is restricted.
Updating our internal policies and practices to respond to GDPR requirements. E.g. 1) Trustee application forms will be destroyed when the Trustee is appointed or not appointed. 2) Keyholders forms will be destroyed after they have been added to the key holders list on the Booking Secretary computer and one other computer. 3) Bookings data is received by the Bookings Secretary on a Bookings Form then transferred to the Bookings Diary. The form should then be destroyed and the diary secured in a locked cupboard or safe. Diaries will be retained for 1 year in a locked cupboard then destroyed. Booking forms from previous years will be destroyed.
Continuing to ensure confidentiality by reinforcing our commitment to GDPR.
We will continue to monitor the GDPR guidance to ensure compliance
We will protect our staff and service users’ privacy by securely managing data which is a high priority for us. Access to our computers is controlled; only elected Trustees, our Bookings Manager and our Treasurer will be granted access. Compliance is an important ethos that we hold as a Community Trust. As such, we plan to ensure all our Trustees have an up-to-date working knowledge of data protection law inclusive of GDPR legislation.
Stay Updated: We will be updating this regularly with current information about our commitment to protecting our Trustees and service user’s data. If you have any specific questions/queries about our GDPR, please contact us directly at: firstname.lastname@example.org , email@example.com or firstname.lastname@example.org