1. Your personal data – what is it?
Personal data relates to a living individual who can be identified from that data. Identification can be by the information alone or in conjunction with any other information in the data controller’s possession or likely to come into such possession. The processing of personal data is governed by the General Data Protection Regulation (the GDPR).
2. Who are we?
The Stratford sub Castle Guild (the Guild) – of which the committee is the data controller. This means it decides how your personal data is processed and for what purposes.
3. How do we process your personal data?
The Guild complies with its obligations under the GDPR by keeping personal data up to date and by storing and destroying it securely.
We use your personal data for the following purposes: -
- to inform you about Guild meetings, news, events and activities
- to manage the Guild and maintain our Membership Records & Accounts
4. What is the legal basis for processing your personal data?
Explicit consent of the Guild member so that we can keep you informed about our meetings, news, events and activities.
Processing is carried out by a not-for-profit body provided: -
- the processing relates only to members or former members
- there is no disclosure to a third party without consent
5. Sharing your personal data
Your personal data will be treated as strictly confidential and will only be used by the committee in order to carry out matters connected with the Guild.
We will only share your data with a third party with your consent.
6. How long do we keep your personal data?
We will keep data in accordance with the guidance set out by the GDPR.
We will regularly review consents to check that the purposes for which they were given have not changed.
We will refresh consent at appropriate intervals (eg Membership renewal time).
7. Your rights and your personal data
Unless subject to an exemption under the GDPR, you have the following rights with respect to your personal data: -
- the right to request a copy of your personal data which the Guild holds about you
- the right to request that the Guild corrects any personal data if it is found to be inaccurate or out of date
- the right to request your personal data is erased where it is no longer necessary for the Guild to retain such data
- the right to withdraw your consent to the processing at any time
- the right to request that the data controller provide you with your personal data
- the right, where there is a dispute in relation to the accuracy or processing of your personal data, to request a restriction is placed on further processing
- the right to lodge a complaint with the Information Commissioners Office
8.Who to Contact
To exercise all relevant rights, queries or complaints please, in the first instance, contact
The Guild Chairman, otherwise any committee member.
(See reverse of your membership card for contact details.)
9. Further processing
If we wish to use your personal data for a purpose not covered by this Data Privacy Notice, we will contact you accordingly and we will seek your consent prior to the new processing.
The Guide to the General Data Protection Regulation (GDPR) can be found on the Information Commissioners Office web site https://ico.org.uk/
You can contact the Information Commissioners Office on Tel: 0303 123 1113 or via email https://ico.org.uk/global/contact-us/email/ or at the Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire. SK9 5AF.
Version 1 – 04/2018