GDPR (General Data Protection Regulation)
GDPR comes into force on 25 May 2018.
GDPR is an EU regulation that, among other things, aims to give individuals control of their personal data.
Its requirements affect all organisations storing personal data — and that includes Churches and Voluntary Organisations.
Organisations storing personal data already have obligations under current data protection laws. GDPR extends these. There will now be a legal basis for storing personal data which, in many (though not all) cases, will require the explicit permission of an individual.
Individuals will have the right: