kay
Well-known member
The General Data Protection Regulation which comes into effect in May 2018 requires organisations to state clearly how they obtain, sore and process information on individuals, how individuals can check it and rectify it, and so on. There is a guide here:https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/
It looks like it covers all organisations, and I can't see any obvious exemption for just keeping an address list. It seems to suggest that each organisation should draw up a document saying how they process and store data, who is able to see it, on what legal basis is it collected, and how an individual can withdraw consent and have their information removed from the list.
Does anyone know whether this is something caving clubs should be dealing with. If it is, what have clubs done so far?
It looks like it covers all organisations, and I can't see any obvious exemption for just keeping an address list. It seems to suggest that each organisation should draw up a document saying how they process and store data, who is able to see it, on what legal basis is it collected, and how an individual can withdraw consent and have their information removed from the list.
Does anyone know whether this is something caving clubs should be dealing with. If it is, what have clubs done so far?