On 25 May 2018 most processing of personal data by organisations will have to comply with the General Data Protection Regulation (GDPR).
The new GDPR legislation intends to make data protection laws consistent across EU nations and to implement more contemporary legislation, with many existing laws insufficient to protect against data usage on social media and the volumes of data now available to organisations
Your organisation should already be compliant with the existing Data Protection Act 1998 legislation and the GDPR builds on this. ‘This is evolution not revolution’.
Below are some resources to give you some guidance:
Community Action Suffolk
The Information Commissioner’s Office (ICO)
- Privacy Notice checklist
- Good and bad examples of Privacy Notices
- How to write a Privacy Notice
- Data Protection self-assessment toolkit
- GDPR FAQ’s for small Charities
- Detailed, practical guidance for UK organisations on consent under the GDPR
- a getting ready for the GDPR self assessment checklist
- a guide to the GDPR
- the new advice service for small organisations
- Getting ready for GDPR Data protection self assessment toolkit
- ICO helpline on 0303 123 1113 and select option 4
Charity Commission
GDPR guidance from the Charity Commission (4 May 2018)
National Cyber Security Centre
Charity Finance Group
Fundraising Regulator
