Data held by BASC clubs and syndicates - a brief guide
|
|
- Michael Casey
- 5 years ago
- Views:
Transcription
1 Data held by BASC clubs and syndicates - a brief guide Introduction All clubs and friendly societies should not collect more information than necessary or legally entitled to under the Data Protection Act (DPA) for the administration of their club. The following advice is taken from the Information Commissioners Office (ICO) and covers all information held by clubs and friendly societies. There is an emphasis on firearm security. Retention of firearm/shotgun certificate data (including photocopies and scanned images). BASC has been working with the National Crime Agency on security of firearms with an emphasis on targeted burglaries. We have jointly been raising awareness of current provisions in order to avoid knee jerk proposals to tighten the law. Requesting and/or retaining firearms certificate data is excessive for administration of a clubs membership. A club only need maintain a bare minimum of details in order to provide official communications such as newsletters, club notifications and subscription reminders. Should certificate data be lost or stolen, it could provide criminals a list of guns to choose from, their locations and a photograph of their owner to aid targeting. Computer hacking often goes unnoticed and storage of electronic and scanned images make it easier for criminals to obtain. Clubs seeking prospective members to show or provide copies of firearm or shotgun certificates serves little to help the club protect its interests. Clubs are unable to verify data with the police due to data protection laws. Club members must act within the law and club rules. The police perform an adequate function in enforcing firearms law; a firearm/shotgun certificate can be revoked at any time and the police will remove the person s firearms as a precaution. BASCs view is that the retention of certificate data/copies is, in a large number of cases, held contrary to the Data Protection Act As such BASC advises clubs to destroy archived certificate data/copies. Certificate holders are under no obligation to supply such data/copies as part of the joining process nor should the supply of such data be a requisite of the clubs application process. Divulging the whereabouts of guns to unauthorised persons is unwise. Should this lead to their theft it might be contrary to the certificate s security conditions which, if proven, would be a criminal offence. Why are clubs and societies covered by the DPA? As a club or society you are likely to hold information on your members, employees or other members of the public. These people are the data subjects. You are the data controller as you hold the information and process it for your use. The data subjects are permitted by law to request that you provide them with the information you hold on them. This is called a subject access request and there are rules regarding how you respond to such a request.
2 Why comply with the DPA? It is the law, and if you fail to process information in line with the data protection requirements, and an individual suffers damage as a result, then that person is entitled to seek compensation from you through the courts. Sending out a mailing from an out-of-date or inaccurate record will not only frustrate some of your members buy also cost you money and waste your time. Good information handling can enhance your club s reputation by increasing member confidence in you. Good information handling will reduce the risk of a complaint being made against you. Do I need to register with the ICO? The "not-for-profit exemption is intended to be used by small clubs and other voluntary organisations not established or conducted for profit. In stating this; clubs and syndicates, as not-for-profit organisations, are allowed to make a profit for their own purposes but the profit should not be used to enrich others, i.e. any money raised should be used for their own activities. Clubs set up as limited companies or who repay Wildlife Habitat Trust (WHT) loans will likely have to register with the ICO but could be waived the fee, see below. Most clubs do not need to register with the ICO, and can claim an exemption, although clubs are still required to be compliant in all other respects. Clubs must check themselves whether they are required to register with the Information Commissioner s Office (ICO). If the club processes any personal data on computer You will be required to register: If you have members who have been through a vetting procedure such as the DBS checks to supervise vulnerable people alone. If the club utilises a CCTV system. Further advice on the exemption from registration for not-for-profit organisations:- What happens if I don t comply? Your club s reputation and finances could be affected. Many people contact the ICO with enquiries about the way their information is handled and is compliant with the DPA. This may result in an enforcement action being taken against you to force you to comply with the DPA. Any individuals affected may also seek compensation from you through the courts for any damage caused. Remember too that failure to notify or renew your notification on an annual basis, unless you are exempt from notifying, is one of the criminal offences under the DPA, punishable by a fine.
3 What does it cost? Most clubs will be exempt from the fee if they are run on a not for profit basis. For those clubs that fall outside of this description, the current fee is 35 per annum on notification. A How to comply checklist Being able to answer yes to all these questions means you are well on the way to being compliant. Some issues may still need further advice, in which case please contact the ICO. Customer Care Do the people whose information is held know that it is held and what it is going to be used for? Is this information really needed? Is it accurate and up to date? Is it deleted or destroyed when it has no further use? Is it held on a strict need to know basis? Who is going to see it, especially if it is going on a website? Do users know if it is OK to pass the information on to someone else and to whom? Is it held securely? Compliance with the DPA Does the club need to notify and if so, is it up to date? Does the club have notices up advising people that it has CCTV? Do other users understand their duties and responsibilities under the DPA? Does the club have a policy for dealing with data protection issues? What is personal data? Personal data means data which relate to a living individual who can be identified (a) from those data, or (b) from those data and other information which is in the possession of, or is likely to come into the possession of, the data controller, and includes any expression of opinion about the individual and any indication of the intentions of the data controller or any other person in respect of the individual. The principles of data protection; 1. Fair and lawful Personal data shall be adequate, relevant and not excessive in relation to the purpose or purposes for which they are processed. In practice, it means that you must: have legitimate grounds for collecting and using the personal data; not use the data in ways that have unjustified adverse effects on the individuals concerned; be transparent about how you intend to use the data, and give individuals appropriate privacy notices when collecting their personal data handle people s personal data only in ways they would reasonably expect; and make sure you do not do anything unlawful with the data.
4 2. Purposes Personal data shall be obtained only for one or more specified and lawful purposes, and shall not be further processed in any manner incompatible with that purpose or those purposes. In practice, it means that you must: be clear from the outset about why you are collecting personal data and what you intend to do with it; comply with the Act s fair processing requirements including the duty to give privacy notices to individuals when collecting their personal data; comply with what the Act says about notifying the Information Commissioner; and ensure that if you wish to use or disclose the personal data for any purpose that is additional to or different from the originally specified purpose, the new use or disclosure is fair. 3. Adequacy Personal data shall be adequate, relevant and not excessive in relation to the purpose or purposes for which they are processed. In practice, it means you should ensure that: you hold personal data about an individual that is sufficient for the purpose you are holding it for in relation to that individual; and you do not hold more information than you need for that purpose. 4. Accuracy Personal data shall be accurate and, where necessary, kept up to date. To comply with these provisions you should: take reasonable steps to ensure the accuracy of any personal data you obtain; ensure that the source of any personal data is clear; carefully consider any challenges to the accuracy of information; and consider whether it is necessary to update the information. 5. Retention Personal data processed for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes. In practice, it means that you will need to: review the length of time you keep personal data; consider the purpose or purposes you hold the information for in deciding whether (and for how long) to retain it; securely delete information that is no longer needed for this purpose or these purposes; and update, archive or securely delete information if it goes out of date. 6. Rights Personal data shall be processed in accordance with the rights of data subjects under this Act. The rights of individuals that it refers to are: a right of access to a copy of the information comprised in their personal data; a right to object to processing that is likely to cause or is causing damage or distress; a right to prevent processing for direct marketing; a right to object to decisions being taken by automated means;
5 a right in certain circumstances to have inaccurate personal data rectified, blocked, erased or destroyed; and a right to claim compensation for damages caused by a breach of the Act. Appropriate technical and organisational measures shall be taken against unauthorised or unlawful processing of personal data and against accidental loss or destruction of, or damage to, personal data. 7. Security Appropriate technical and organisational measures shall be taken against unauthorised or unlawful processing of personal data and against accidental loss or destruction of, or damage to, personal data. In practice, it means you must have appropriate security to prevent the personal data you hold being accidentally or deliberately compromised. In particular, you will need to: design and organise your security to fit the nature of the personal data you hold and the harm that may result from a security breach; be clear about who in your organisation is responsible for ensuring information security; make sure you have the right physical and technical security, backed up by robust policies and procedures and reliable, well-trained staff; and be ready to respond to any breach of security swiftly and effectively. How to get help and advice The Information Commissioners Office Wycliffe House Water Lane Wilmslow Cheshire SK9 5AF Tel: registration@ico.org.uk Web:
KCSP Data Protection Policy
KCSP Data Protection Policy Approving Body Board of Directors Approval Date March 2017 Review Date March 2019 By knowledge the upright are safeguarded [Proverbs 11/9] 1. Statement of purpose The purpose
More informationDocument Title. Date coming into force: Review Date: Edition No:
Document Title Data Protection Policy Document Author and Department: David Farley, Data Protection Officer, Library Responsible person and Department: David Farley, Data Protection Officer, Library Approving
More informationFitzwilliam College Data Protection Policy
Fitzwilliam College Data Protection Policy INTRODUCTION The information within this policy and supporting guidelines are important and apply to all members and staff of the College who shall in this policy
More informationSouthern Golden Retriever Rescue Data Protection Policy
Southern Golden Retriever Rescue Data Protection Policy Date: 16.05.18 V3 Next Policy Review Date by Trustees: May 2019 Contents 1. Introduction... 2 2. Policy... 2 3. Responsibilities... 2 4. Definitions...
More informationPrivacy Statement for Intermediaries
Privacy Statement for Intermediaries This Privacy Statement applies to intermediaries who submit business under the following terms: (1) Terms of Business Non-FCA Regulated Firms, and (2) Terms of Business
More information1.1. This policy lays out how Glebe Primary School will comply with its responsibilities under the Data Protection Act 1998.
We can and we will GLEBE PRIMARY SCHOOL Data Protection Policy Mission Statement: At Glebe School we believe in an ethos that values the whole child. We strive to enable all children to achieve their full
More informationGUIDANCE NOTE ON THE DATA PROTECTION ACT Information for clubs & county associations
GUIDANCE NOTE ON THE DATA PROTECTION ACT Information for clubs & county associations This guidance note gives an overview of how the (the Act ) applies to clubs and county associations. It suggests a series
More informationData Protection Privacy Notice for people not directly involved in the accident
Data Protection Privacy Notice for people not directly involved in the accident Purpose of this Privacy Notice MIB (or we ) respects your privacy and is committed to protecting your personal data. This
More informationERGO Versicherung AG UK Branch Data Privacy Notice
ERGO Versicherung AG UK Branch Data Privacy Notice This data privacy notice is designed to help you understand how ERGO Versicherung AG UK Branch (ERGO) processes your personal data. This notice specifically
More informationData Protection Policy. Newbury Academy Trust
Newbury Academy Trust 1. Introduction 1.1. Academy, Academy Trust all refer to Newbury Academy Trust, Love Lane, Newbury, Berkshire, RG14 2DU. School refers to one of the three schools within the Newbury
More informationDATA PROTECTION POLICY
DATA PROTECTION POLICY Author: Mrs A Taylor Approval needed Board of Directors by: Adopted (date): 6 December 2016 Date of next review: December 2017 Data Protection Policy Introduction The de Ferrers
More informationDATA PROTECTION POLICY. Little Baddow Parochial Church Council
DATA PROTECTION POLICY Little Baddow Parochial Church Council INTRODUCTION: The Data Protection Act 1998 ( the Act ) seeks to protect individuals against the unfair use of personal information. There are
More informationWelcome To Your Data Protection Journey. Paula Tighe Information Governance Executive
Welcome To Your Data Protection Journey Paula Tighe Information Governance Executive Legal Statement All information in this presentation is protected under copy right and where indicated protected under
More informationERGO Versicherung AG UK Branch Data Privacy Notice
ERGO Versicherung AG UK Branch Data Privacy Notice This privacy notice is designed to help you, as a customer of ERGO Versicherung AG UK Branch (ERGO), to understand how we process your personal. You are
More informationPlease read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
Privacy Policy Introduction In this Privacy Policy the terms, our, us or we or our group are references to Foster Maddison (company number 05343182) and FarmTrend (company number 05313841) having a registered
More informationSun Life Assurance Company of Canada (U.K.) Limited. Customer Data Protection Notice
Sun Life Assurance Company of Canada (U.K.) Limited Customer Data Protection Notice Protecting your privacy We are committed to protecting and respecting your privacy. This notice tells you more about
More informationData Protection: Fair processing of student personal information Contents
Data Protection: Fair processing of student personal information Contents Introduction... 2 What is personal data... 2 Sensitive personal data... 2 The Data Protection Act 1998... 2 The conditions under
More informationA distinctive local company with national standards. Practical Credit Control & New [GDPR] Data Protection Regulations
A distinctive local company with national standards Practical Credit Control & New [GDPR] Data Protection Regulations 1 Introduction DSL started collecting veterinary debt 11 years ago and now help over
More informationMobius Life Limited Data Privacy Notice
Mobius Life Limited Data Privacy Notice Introduction This data privacy notice confirms how Mobius Life Limited (referred to hereafter as our, us, we or MLL ) obtains, manages, uses, retains and destroys
More informationITCHENOR SAILING CLUB DATA PROTECTION POLICY
ITCHENOR SAILING CLUB DATA PROTECTION POLICY 1. About this Policy 1.1. This policy explains when and why Itchenor Sailing Club ( we ) collect personal information about our members and instructors, how
More informationAppropriate Policy Document
Appropriate Policy Document Schedule 1, Part 4, Data Protection Act 2018 July 2018 Privacy Notice - Appropriate Policy Document v2.docx Page 1 of 8 Contents 1 Introduction... 3 2 Relevant Schedule 1 conditions
More informationFirm Registration Form - Equity Release and Mortgage products
Firm Registration Form - Equity Release and Mortgage products This registration form should be completed by firms who are authorised and regulated by the Financial Conduct Authority. It is for advisers
More informationThis information, or "personal data" as it is often referred to, must be processed according to the principles contained within the Regulation.
MBIT Data Protection Policy (May 2018) Introduction The Margaret Beaufort Institute of Theology (MBIT) is committed to protecting the rights and privacy of individuals in accordance with the EU General
More informationQuotation/Inception. Renewal. Policy administration. Claims processing PRIVACY POLICY
PRIVACY POLICY Aro Underwriting Group Ltd is committed to ensuring your privacy is protected. This Privacy Policy sets out details of the information that we may collect from you and how we may use that
More informationMember Circular March Implementation of the EU General Data Protection Regulation 2016/679 General Guidance to Members
Member Circular March 2018 Implementation of the EU General Data Protection Regulation 2016/679 General Guidance to Members Introduction Regulation (EU) 2016/679 containing the General Data Protection
More informationLegal Compliance Education and Awareness. Privacy Act (Commonwealth)
Legal Compliance Education and Awareness Privacy Act 1988 (Commonwealth) Background The Privacy Act 1988 (Cth) applies to some private sector organisations and Commonwealth government agencies State government
More informationPrivacy Notice Student Loans Company Ltd
Privacy Notice Student Loans Company Ltd Student Finance England is the student finance service provided in England by the Student Loans Company Ltd. Student Finance Wales is the student finance service
More informationPower of Attorney Application to Appoint an Attorney to Operate an Account(s)
Power of Attorney Application to Appoint an Attorney to Operate an Account(s) Please complete this form using black ink and BLOCK CAPITALS and return it together with and any proofs of identity/residency,
More informationhenriksen limited This document sets out how Henriksen processes data and your rights as the data subject.
henriksen limited Henriksen Limited Fair Processing and Privacy Notice Henriksen is committed to protecting the rights and privacy of data subjects and ensuring all data is processed in line with the requirements
More informationCustomer Privacy Notice Edition
Customer Privacy Notice - 2018 Edition How Precise Mortgages uses your personal data 0800 116 4385 precisemortgages-customers.co.uk Contents About us 3 Who this privacy notice applies to 3 Why we are providing
More information1.5 This policy meets the guidance provided by the ICO on data security breach management.
William Austin Junior School Data Breach Policy Introduction 1.1 The Data Protection Act 2018 (DPA) is based around six principles of good information handling. These give people specific rights in relation
More informationLondon Borough of Redbridge
Data Protection Policy Classification: Not Protectively Marked Date: March 2013 Version: 1.0 Owner(s): Information Governance Board 1.1 Change Control This document is subject to change control and amendments
More informationLAMP Services Limited Privacy Notice v1.2 4 th March Controller
1. Controller LAMP Services Limited is the Controller under the EU General Data Protection Regulation (EU GDPR). LAMP Services Limited is incorporated in England, company registration number 04967967.
More informationThe New EU General Data Protection Regulation (GDPR)
The New EU General Data Protection Regulation (GDPR) The clock has started on the biggest change to the European data protection regime in 20 years. After four years of negotiation, the new EU General
More informationClaims Handling We process Your Personal Data in order to record and handle your insurance claim. This may include sharing your Personal Data with:
Privacy Statement This Privacy Statement details our policies and procedures in relation to the personal data we process. Haven Claims are committed to processing data in accordance with the General Data
More informationLong-term Care Insurance Privacy Notice
Contents of this Notice Long-term Care Insurance Privacy Notice This Notice provides you with the necessary information regarding your rights and obligations and explains how, why and when we collect your
More informationPersonal effects, baggage, money and legal protection claim form
Bupa travel insurance Personal effects, baggage, money and legal protection claim form Please send completed claim forms with supporting documentation to: Bupa Travel Claims, Willow House, Pine Trees,
More informationMan and Machine - Data Protection Policy
Man and Machine - Data Protection Policy 1. Introduction This Policy sets out the obligations of Man and Machine Ltd, whose registered office is at Unit 8 Thame 40, Jane Morbey Road, Thame, Oxfordshire,
More informationSCCCI Personal Data Protection Policy
SCCCI Personal Data Protection Policy At SCCCI, we are committed to protecting and safeguarding the personal data we collected from you. This Personal Data Protection Policy describes the types of personal
More informationYOUR PERSONAL INFORMATION AND WHAT WE DO WITH IT
YOUR PERSONAL INFORMATION AND WHAT WE DO WITH IT WHO WE ARE AND HOW TO CONTACT US Bath Investment and Building Society of 15 Queen Square, Bath BA1 2HN is a data controller of your personal information.
More informationINTERNATIONAL SOS. Data Protection Policy. Version 1.8
INTERNATIONAL SOS Data Protection Policy Document Owner: LCIS Division Document Manager: Group General Counsel Effective: December 2008 2017 All copyright in these materials are reserved to AEA International
More informationFirefighters Pension Scheme
Compliance Firefighters Pension Scheme General Data Protection Regulation Privacy Notices As confirmed in bulletin 7 (April 2018) the LGA Bluelight team commissioned Squire Patton Boggs to produce a template
More informationWHO IS RESPONSIBLE FOR LOOKING AFTER YOUR PERSONAL DATA?
OVERVIEW of this Policy and Commitments to Privacy within Dual At Dual ("we", "us", "our"), we regularly collect and use information which may identify individuals ("personal data"), including insured
More informationPrivacy Statement. Key Definitions. Data Controller. Processing
Privacy Statement This Privacy Statement details our policies and procedures in relation to the personal data we process. Haven Claims ( Haven ) are committed to processing data in accordance with the
More informationHydro Building Systems UK Limited ( the Company )
Hydro Building Systems UK Limited ( the Company ) Privacy Policy relating to the enhanced transfer value (ETV) option in connection with the Sapa Holdings Limited Pension and Life Assurance Scheme (the
More informationHow we deal with complaints
Freedom of information and environmental information How we deal with complaints A guide for public authorities This guidance explains how we deal with complaints made about public authorities under section
More informationPrivacy Notice A2 Solicitors LLP
Privacy Notice A2 Solicitors LLP 1. What is this Notice? A2 Solicitors LLP takes privacy seriously and we are committed to protecting it. This policy relates to our clients, prospective clients, visitors
More informationPRIVACY POLICY OF BPO INSOLVENCY LIMITED (COMPANY REGISTRATION NO ) REGISTERED OFFICE 37 WALTER ROAD SWANSEA SA1 5NW
PRIVACY POLICY OF BPO INSOLVENCY LIMITED (COMPANY REGISTRATION NO. 09830297) REGISTERED OFFICE 37 WALTER ROAD SWANSEA SA1 5NW 1. This Policy We take privacy seriously and we are committed to protecting
More informationDelay, missed departure and catastrophe claim form
Bupa travel insurance Delay, missed departure and catastrophe claim form Please send completed claim forms with supporting documentation to: Bupa Travel Claims, Willow House, Pine Trees, Chertsey Lane,
More informationGUIDE TO MAKING A MOTOR INSURERS BUREAU CLAIM. Guide to making an MIB claim - Issue 7 (05.18)
GUIDE TO MAKING A MOTOR INSURERS BUREAU CLAIM 1 This booklet This booklet gives important information about the Motor Insurers Bureau (MIB) and making a claim. Please read it carefully before you fill
More informationBUPA GLOBAL CLAIM FORM
BUPA GLOBAL CLAIM FORM IMPORTANT INFORMATION For quicker handling of your claim, simply log in to your Membersworld account and either complete a digital version of this claim form, or complete the mandatory
More informationApplication form. Bupa By You. Thank you for choosing Bupa. Before you begin. For office use only. Ex Group Scheme Transfer D D M M Y Y Y Y
Application form Bupa By You Ex Group Scheme Transfer Thank you for choosing Bupa This form should be completed by you, the intermediary on behalf of your client. Please complete this application form
More informationGeneral Data Protection Regulations Briefing (the presentation you ve all been waiting for)
Item 6 General Data Protection Regulations Briefing (the presentation you ve all been waiting for) Current law Data Protection Act 1998 Defines how an individual s personal data may be held lawfully by
More informationLOCAL GOVERNMENT PENSION SCHEME (LGPS) GENERAL DATA PROTECTION REGULATION - THE IMPLICATIONS FOR THE LGPS
LOCAL GOVERNMENT PENSION SCHEME (LGPS) GENERAL DATA PROTECTION REGULATION - THE IMPLICATIONS FOR THE LGPS INTRODUCTION Thank you for providing us with a list of questions and background information in
More informationREGISTER OF MEMBERS FINANCIAL AND OTHER INTERESTS
REGISTER OF MEMBERS FINANCIAL AND OTHER INTERESTS The Localism Act 2011 requires you to declare your interests on this form. The interests are recorded in a register which is maintained by the Monitoring
More informationBINDING CORPORATE RULES
BINDING CORPORATE RULES CONTROLLER PRINCIPLES INTRODUCTION At Marsh & McLennan Companies (MMC), we respect and are committed to protecting the privacy, security and integrity of Personal Information 1
More informationPrivacy Policy. For the purposes of Data Protection Legislation the data controller is the Company.
Privacy Policy Ashoka India Equity Investment Trust plc (the "Company"), or any third party service provider, functionary, or agent appointed by the Company acting on its behalf (together, the "Fund",
More informationData Protection Act Policy
Data Protection Policy Version 1.0 Last amended: 18 January 2013 Policy Owner: Governance Team Data Protection Act Policy Data Protection The University of Nottingham takes its responsibilities with regard
More informationFor further reference, readers are also advised to be in touch with:
This handbook is a summary of some of the main clauses in the Data Protection Act 1998 and is not a complete, exhaustive review of the Act. No liability can be accepted by Experian for any loss or damage
More informationMunich Re UK General Branch Information Notice
Munich Re UK General Branch Information Notice This information notice is designed to help you, the policyholder of a customer (your insurer) of Munich Re UK General Branch, to understand how we process
More informationCUSTOMER DATA PROCESSING ADDENDUM
CUSTOMER DATA PROCESSING ADDENDUM This Data Processing Addendum ( DPA ) and applicable Attachments apply when HP acts as a Data Processor and processes Customer Personal Data on behalf of Customer in order
More informationPRIVACY NOTICE Use of Information Data Controller and Data Processor
PRIVACY NOTICE Please take time to read this document carefully as it contains details of the basis on which we will process (collect, use, share, transfer) and store your information. You should show
More informationFirm Registration Form
Firm Registration Form This registration form should be completed by firms who are authorised and regulated by the Financial Conduct Authority. It is for advisers who wish to recommend our mortgage products,
More informationData Protection Policy
Data Protection Policy 1.0 Policy 1.1 This policy applies to all members of the University of Wolverhampton ( the University ). For the purposes of this policy, the term Staff means all members of University
More informationApplication for a life assurance plan on the life of another person
Application for a life assurance plan on the life of another person Before completing this form, please read this information carefully. This form is for use where the applicant wishes to take out a plan
More informationThe Pension and Life Assurance Plan of NG Bailey (Scheme) Privacy notice
The Pension and Life Assurance Plan of NG Bailey (Scheme) Privacy notice WHAT IS THE PURPOSE OF THIS DOCUMENT? The trustees are committed to protecting the privacy and security of your personal information.
More informationWho are we? Why do we collect and use your personal information?
Your privacy is important to us and we are committed to keeping it protected. We have created this Customer Privacy Notice which will explain how we use the information we collect about you and how you
More informationPrairie Centre Credit Union
Code for the Protection of Personal Information Prairie Centre Credit Union Adopted by: Prairie Centre Credit Union Board of Directors July 15, 2003 Updated November 2014 Introduction P rairie Centre Credit
More informationGLOBAL DATA PROTECTION POLICY URUP
Page 1 of 8 1. SCOPE AND INTRODUCTION GLOBAL DATA PROTECTION POLICY URUP 1.1. This document is intended to provide a policy under which URUP International Limited, its subsidiaries and affiliates and/or
More informationFreedom of Information Act 2000 (FOIA) Decision notice
Freedom of Information Act 2000 (FOIA) Decision notice Date: 22 August 2017 Public Authority: Address: Devon Partnership NHS Trust Wonford House Dryden Road Exeter Devon EX2 5AF Decision (including any
More informationThe Controller and Processor Data Protection Binding Corporate Rules of BMC Software
The Controller and Processor Data Protection Binding Corporate Rules of BMC Software 4 August 2015 Table of Contents Introduction 2 PART I: BACKGROUND AND ACTIONS 3 PART II: BMC AS A CONTROLLER 5 PART
More informationBanks Sheridan Limited Data Protection Privacy Policy 19 May 2018
Banks Sheridan Limited Data Protection Privacy Policy 19 May 2018 1. Introduction This Policy sets out the obligations of Banks Sheridan Limited ( the Company ) regarding data protection and the rights
More informationPrivacy Policy. NESS Super is committed to respecting your right to privacy and protecting your personal information.
February 2018 Privacy Policy Our privacy commitment to you NESS Super is committed to respecting your right to privacy and protecting your personal information. We are bound by the provisions of the Privacy
More informationDATA PROTECTION ACT 1998
DATA PROTECTION ACT 1998 Guidance Notes These Notes are an edited version for parishes of the diocesan policy and Guidance Notes. References to procedures at diocesan level have been omitted as irrelevant.
More informationFreedom of Information Act 2000 (FOIA) Decision notice
Freedom of Information Act 2000 (FOIA) Decision notice Date: 17 February 2016 Public Authority: Address: Chief Constable of Cheshire Constabulary Cheshire Constabulary HQ Oakmere Road Winsford Cheshire
More informationDATA PROCESSING AGREEMENT
DATA PROCESSING AGREEMENT This Data Processing Agreement (the DPA ), entered into by the Customer and the company Ganttic OÜ (company registration number 11979702) having its registered office at Lai tn
More informationBusiness Banking Terms and Conditions
Business Banking Terms and Conditions 1 Account Terms These Terms apply to the following Accounts (an Account ) provided by Ulster Bank Limited: Corporate Current Account Business Current Account Deposit
More informationTwilio Data Protection Addendum ( DPA ) (GDPR, Binding Corporate Rules, Privacy Shield, and Standard Contractual Clauses) (Revision June 2018)
Twilio Data Protection Addendum ( DPA ) (GDPR, Binding Corporate Rules, Privacy Shield, and Standard Contractual Clauses) (Revision June 2018) Once fully executed, this DPA forms a part of the agreement
More informationMedical expenses and cutting short your trip claim form
Bupa travel insurance Medical expenses and cutting short your trip claim form Bu~ Please send completed claim forms with supporting documentation to: Bupa Travel Claims, Willow House, Pine Trees, Chertsey
More informationAvantcard DAC Terms and Conditions
Avantcard DAC Terms and Conditions Text in green is valid up to and including the 24/05/2018 Text in red is effective from 25/05/2018 This booklet contains the Chill Money credit card standard terms and
More informationUniversity of Wollongong
University of Wollongong Privacy Policy September 2004 Table of Contents 1. Detailed Privacy Policy...1 1.1 Definitions...1 1.2 Legislation...1 1.3 Our Commitment to Privacy...1 2.1 Collection of Personal
More informationGuide to compliance with the Australian Privacy Principles. APP 1 Open and transparent management of personal information
Guide to compliance with the Australian Privacy Principles This guide provides a summary of each of the Australian Privacy Principles (APPs) prescribed under the Privacy Act 1988 (Cth), together with some
More informationArk Syndicate Management Limited. Privacy and Transparency Notice. Version 1
Ark Syndicate Management Limited Privacy and Transparency Notice Insurance Market Information Notice Insurance is the pooling and sharing of risk in order to provide protection against a possible eventuality.
More informationDATA HANDLING AGREEMENT
DATA HANDLING AGREEMENT This agreement is for the provision of the transfer of school data between the School, Wonde and approved third party applications. Wonde Ltd a company registered in England under
More informationCODE OF PRACTICE FOR CHILDCARE VOUCHER PROVIDERS ASSOCIATION
CODE OF PRACTICE FOR CHILDCARE VOUCHER PROVIDERS ASSOCIATION INTRODUCTION The CVPA was founded by a group of Childcare Voucher Providers committed to ensuring that Childcare Voucher schemes are managed
More informationDATA PROCESSING ADENDUM
W www.exponea.com C +421 948 127 332 sales@exponea.com A Exponea, Twin City B, Mlynské Nivy 12 821 09 Bratislava, SK DATA PROCESSING ADENDUM Exponea s.r.o. registered in the Commercial Register maintained
More informationThe General Data Protection Regulation (GDPR): action plan for pension scheme trustees
The General Data Protection Regulation (GDPR): action plan for pension scheme trustees July 2017 (revised March 2018) Pension briefing HIGHLIGHTS The European General Data Protection Regulation (GDPR)
More informationThe GDPR how to prepare MiFID II where are we now? Wednesday 21 February 2018
The GDPR how to prepare MiFID II where are we now? Wednesday 21 February 2018 GDPR so far The EU General Data Protection Regulation (Regulation (EU) 2016/679) comes into effect on 25 May 2018 Aims to protect:
More informationAvantcard DAC Terms and Conditions
Avantcard DAC Terms and Conditions Text in red is effective 31/12/2017 Text in blue is effective 13/01/2018 This booklet contains the Avantcard credit card standard terms and conditions for customers.
More informationDATA PROTECTION NOTICE
DATA PROTECTION NOTICE The protection of your personal data is important to the BNP Paribas Group, which has adopted strong common principles in relation to data protection for the entire Group and which
More informationBupa Select. Your application form. Before you begin. Applying to join from another insurance company
Bupa Select Your application form Applying to join from another insurance company Before you begin The Group Secretary must complete the Scheme details and the main applicant must complete Sections 1 to
More informationAccount Opening Application CHILD BOND SAVINGS
Account Opening Application CHILD BOND SAVINGS 2 P a g e TERMS AND CONDITIONS FOR ACCOUNTS Updated May 2016 1 Application These Terms & Conditions apply to all Accounts, except where explicitly defined
More informationFixed Deposit Account Terms & Conditions
Fixed Deposit Account Terms & Conditions 1 Introduction and about us 1.1 These Fixed Deposit Account Terms and Conditions set out the terms and conditions that apply to fixed term deposit accounts with
More informationTrip cancellation or amendment claim form
Bupa travel insurance Trip cancellation or amendment claim form Please send completed claim forms with supporting documentation to: Bupa Travel Claims, Willow House, Pine Trees, Chertsey Lane, Staines,
More informationHighland Distillers Pension Scheme (the "Scheme") Privacy Notice
Highland Distillers Pension Scheme (the "Scheme") Privacy Notice This notice explains how The Trustees of the Highland Distillers Pension Scheme (the "Trustees") use and protect the personal information
More informationData Sharing Agreement Between University of Chichester and University of Chichester Students Union
Data Sharing Agreement Between University of Chichester and University of Chichester Students Union 1. Overview 1.1 The following agreement governs the provision of registered students personal data by
More informationRevising policies and procedures under the new EU GDPR
Revising policies and procedures under the new EU GDPR Richard Campo, CISM GRC Consultant IT Governance Ltd 1 Sept 2016 www.itgovernance.co.uk TM Introduction Richard Campo GRC consultant Data protection
More informationSHOPRITE MONEY (POWERED BY STANDARD BANK) TERMS OF USE (Version effective from 1 February 2017) IMPORTANT NOTICE
SHOPRITE MONEY (POWERED BY STANDARD BANK) TERMS OF USE (Version effective from 1 February 2017) IMPORTANT NOTICE (1) Shoprite Checkers (Pty) Limited and its group of companies in South Africa (we, us or
More informationPLATFORM SERVICE TERMS AND CONDITIONS. November 2017
PLATFORM SERVICE TERMS AND CONDITIONS November 2017 Important notice This is an important document so please read it carefully. These Terms and Conditions form the legal agreement between you and Seven
More informationMortgages and Loans Privacy policy
Mortgages and Loans Privacy policy Effective from May 2018 2 Contents 1. Our privacy policy 3 2. About us 3 3. What personal data do we use? 3 4. What do we use personal data for? 3 5. What are our legal
More information