Fairford and District U3A - GDPR
The EU’s General Data Protection Regulation

The new The EU’s General Data Protection Regulation came into force on 25 May 2018. It is more significant and wide-reaching in scope than previous data protection acts and supersedes the 1998 UK Data Protection Act.

The GDPR applies to all commercial businesses, charities or public authorities – that collect, store or process the personal data of individuals residing in the EU, even if they’re not EU citizens. This means that organisations like Fairford and District U3A will by law have to have written policies that have been thought through and implemented to meet these new requirements.

Compliance is not just a matter of ticking a few boxes; the Regulation demands that an organisation must be able to demonstrate compliance with the data protection principles. This involves taking a risk-based approach to data protection, ensuring appropriate policies and procedures are in place to deal with the transparency, accountability and individuals’ rights provisions, as well as building a workplace culture of data privacy and security.

The Fairford and District U3A committee has reviewed how it will meet the requirements of the GDPR when we gather, stores and uses “personal data” for membership purposes and has developed new policies and procedures to meet the new requirements.

Data Protection Policy

Data Privacy Policy