As a community space, you are likely to hold and process information about your clients, employees, volunteers,Therefore, you are legally obliged to protect that information.,You need to be aware of and meet the requirements of data protection legislation under the Data Protection,Act 2018 and including the General Data Protection Regulations (GDPR) which mean you should make sure,data is: used fairly, lawfully and transparently used for specified, explicit purposes used in a way

For more on your specific responsibilities under Data Protection legislation, see our in-depth information,on Data Protection law and practice.,support a reliable conclusion.,The risk of misinterpreting data: Make sure you don’t use data to support misleading or dubious claims,The ICO has useful templates and guides to help you document your data flows.

Your legal obligations depend on: What type of organisation you are: there are specific duties and guidance,Wider legal obligations – such as those for health and safety, equality and non-discrimination and data,protection - will also affect how you keep people safe.,If you work with Adults at Risk of harm, you may want to consider the Scottish Government Adult Support,and Protection (Scotland) Act 2007: Code of Practice.

Your organisation will create lots of information while you carry out your activities.,Records Retention A well-run and effective organisation should have a Record Retention policy that is,You should also follow The Data Protection Act (DPA) and the UK General Data Protection Regulation (GDPR,There are no standard time limits for Data Protection and GDPR.,The Data Protection Act (DPA) covers records you hold about living people.

Know your organisation’s purpose It’s vital as a trustee that you know about what your organisation was,You can find this out by reading your organisation’s governing document.,you must always put the interests of your organisation first.,There may also be other regulators that you need to report to, and you should ensure you’re up to date,with any changes in the law that may affect your organisation and its work, eg Data Protection or Lobbying

The SCVO HR and employment support service is available to voluntary sector organisations in Scotland,GET READY Before you even think of employing staff, make sure that your organisation is ready. 2.,These must be kept in accordance with the requirements of the General Data Protection Regulation (GDPR,You must have a data protection policy that sets out how to manage this information. 10.,salaries for your organisation.

All SCVO employees or anyone who is a trustee, a full or part-time employee or volunteer of any organisation

harm people within, and connected to, your organisation might experience.,Weigh up the key risks facing your organisation and then decide how that should influence your approach,to protect people from harm.,When developing your safeguarding policies and procedures, you should consider your organisation’s activities,Consulting your team or those benefiting from your organisation when developing your policies and procedures

If your organisation has paid staff or volunteers carrying out regulated work, you need to check their,checks and also have a sample Child/Adult Protection Policy.,and your team's ongoing support and supervision.,You could: Keep clear records and share data.,The regularity, length, and level of detail of the data shared with the Board will depend on your organisation's

He has supported businesses, charities and institutions in areas of information security and data protection,(GDPR) as well as providing data protection training.,protection and other aspects of privacy, responding to consultations on new legislation proposed by,Tim's current course: Introduction to data protection and the GDPR Tom Burke Tom has extensive experience,in leading safeguarding and child protection training for voluntary organisations working with children