General Data Protection Regulation
This folder is here to help you with the introduction of the General Data Protection Regulation (GDPR), which comes into effect in May 2018. I will add information, as and when I receive it, to help you tackle this.
It is important that you understand 'personal data' and exactly what that includes; together with knowing what personal data you hold for your staff, volunteers, service users etc.
To comply with GDPR, you will need to obtain each individual's written consent to hold their personal data; explaining the reasons why, under GDPR, you hold it; how the data will be processed; how often it will be updated etc.
You will also need written consent to send information - with each different mailing (e.g. newsletter, training, information etc) receiving individual consent.
This is the latest, and most up-to-date handbook from Blackbaud, produced to help non-profits in the lead up to GDPR.
More chapters are due to be added in the future, and will amend this document as and when they are issued.
Please keep checking for up dates.
This document is from the ICO website and answers the question: "What it fact or fiction?"
Use this compliance checker to see if you are on track for the new GDPR.
GDPR impact on HR
The document and link attached relate to the effect GDPR will have on HR, including Contracts of Employment, Employees Rights, Subject Access Requests etc.