We are committed to a policy of protecting the rights and privacy of individuals. We need to collect and use certain types of Personal Data (PD) in order to carry on our work of managing St Thomas's Hall, Muirkirk.
This personal information must be collected and handled securely. The Data Protection Act 1998 (DPA) and General Data Protection Regulations (GDPR) govern the use of information about people (personal data). Personal data can be held on computers, laptops and mobile devices, or in a manual file, and includes email, minutes of meetings, and photographs. The committee will remain the data controller for the information held. The trustees, staff and volunteers are personally responsible for processing and using personal information in accordance with the Data Protection Act and GDPR.
Trustees, staff and volunteers who have access to personal information will therefore be expected to read and comply with this policy. Purpose The purpose of this policy is to set out St Thomas's Hall, Muirkirks commitment and procedures for protecting personal data. Trustees regard the lawful and correct treatment of personal information as very important to successful working, and to maintaining the confidence of those with whom we deal with. We recognise the risks to individuals of identity theft and financial loss if personal data is lost or stolen.