New General Data Protection Regulations
What do you need to know about GDPR?
GDPR (General Data Protection Regulations) came into force on May 25th 2018, this new regulation replaces the UK Data Protection Act 1998 giving people more control over how they are being contacted and what data is being stored about them.
As Girlguiding volunteers, if you process information on behalf of Girlguiding you are responsible for making sure that data security is maintained.
If you process information as part of your role you must:
- Follow the policy and relevant procedures whenever personal data is being used for planning and delivering Girlguiding activities
- Follow Girlguiding procedures, guidance and codes of practice about the collection and use of personal data
- Think about why you need to handle personal data and make sure you use as little data as you need to carry out you task
- Reduce as much as possible the likelihood of a breach i.e. personal data being lost, inappropriately shared, altered, destroyed, or published without permission, by maintaining good data handling practises with adequate control measures in place
- Report any data breaches to the data protection team (Girlguiding Ulster office)
- Ensure persona data is destroyed safely (in line with Girlguiding’s data retention schedule)
- Inform your commissioner if you receive a request form a data subject for information held about them
Please read the below documents for information on how this directly affects your role and how you can prevent a data breach.