In light of the changes to Data Protection with the introduction of the GDPR (General Data Protection Regulation) on the 25th May 2018, which you may already be aware of, we have made some changes to the way we collect, use and share your data.
The GDPR is an updated set of rules designed to harmonise data privacy laws across Europe and gives greater protection and rights to individuals. The GDPR implements 6 principals;
We have recently updated our Privacy notice which can be found on our website which details the information which we collect, the purpose for which we collect it, any 3rd parties who this may be shared with and how long we will retain it.
Under the GDPR, there is an enhancement of individuals rights;
It is important to note, where organisations have a legitimate purpose for the collection, use, sharing and storage of data these will therefore overrule individual’s rights and processing can continue.
Subject access requests (SAR)
If you wish to contact the Academy to obtain information that we hold, please complete the form available on the website or retrieve a paper copy in house. Proof of ID will need to be provided in order for the request to be completed and a response will be issued within one month from the date the request is received.
Reporting a Data Breach
If you believe that your personal or sensitive data has been compromised, please complete the “Reporting a Data Breach” form available on the Academy website or collect a form in house. All forms will be given to the Data Protection Officer to investigate.
For examples of Data breaches, please see the Academy website.