The General Data Protection Regulations were introduced in the UK on 25th May 2018. The regulations replaced the Data Protection Act 1998
Congregations as separate charities in their own right are required to comply with the regulations.
GDPR is focused on the privacy and rights of the individual and is based on the premise that data subjects should have a knowledge of what data is held about them and how it is held and processed.
The regulations require that personal data
- Should be processed lawfully, fairly and transparently
- Should only used for the purpose that the data subject has been made aware of
- Should be accurate and kept up to date
- Should not be stored longer than necessary
Regent Street Presbyterian Church has developed a number of policies and put in place a number of working practices to comply with the requirements of the regulations and demonstrate good governance in relation to protecting personal data.
These policies are listed below and can be downloaded and viewed.
Data Retention and Disposal