DATA PROTECTION ACT 2018 (GDPR)
The Committee recognises its responsibility to comply with the Data Protection Act 2018 and the General Data Protection Regulation. The Data Protection Act 2018 came into force on the 25th May 2018 this Act supersedes the Data Protection Act 1998. The Act applies to ‘personal data’ which is data relating to a living person who can be identified from that data. ‘Processing data’ means any operation performed on that personal data such as collection, recording or use. The Committee may hold data that relates to living individuals and does process data in order to perform its role. When dealing with personal data, The Committee must ensure that:
-
DATA IS PROCESSED FAIRLY AND LAWFULLY: The Committee will be open and honest about why information is required.
-
DATA IS PROCESSED FOR SPECIFIED PURPOSES ONLY.
-
DATA IS RELEVANT: Data will be monitored so that too much or too little is not kept; only data that is needed will be held.
-
DATA IS ACCURATE AND KEPT UP TO DATE: Only accurate personal data will be kept. Inaccurate data will be corrected.
-
DATA IS NOT KEPT LONGER THAN IT IS NEEDED.
-
DATA IS PROCESSED IN ACCORDANCE WITH THE RIGHTS OF INDIVIDUALS: Individuals will be informed, upon request, of all the information held about them.
-
IT IS KEPT SECURELY – Only Committee members with duties relating to their role will be able to access the data. Data will be stored securely so it cannot be accessed by members of the public.