As a community space, you are likely to hold and process information about your clients, employees, volunteers, users or suppliers. Therefore, you are legally obliged to protect that information.
You need to be aware of and meet the requirements of data protection legislation under the Data Protection Act 2018 and including the General Data Protection Regulations (GDPR) which mean you should make sure data is: used fairly, lawfully and transparently
- used for specified, explicit purposes
- used in a way that is adequate, relevant and limited to only what is necessary
- accurate and, where necessary, kept up to date
- kept for no longer than is necessary
- handled in a way that ensures appropriate security, including protection against unlawful or unauthorised processing, access, loss, destruction or damage
- SCVO’s online information on data protection provides useful information, training and signposting to various digital resources and a self-assessment toolkit.
Last modified on 24 October 2023