Chichester Yacht Club Magazine January 2018 | Page 16

General Committee member Philip Brown
explains the steps CYC is taking to comply
with this year’s new data protection
legislation
Many members will know that Data Protection
law in the UK will undergo changes which will
come into force in May 2018 with the
introduction of the General Data Protection
Regulations – GDPR.
Once in force, the
new legislation will require, for example, far
more explicit processes around gaining consent
It’s based on new EU regulation and is in the
to hold personal information, and will expect us
main an update to existing regulations, to cater to be more rigorous with regard to which
for the new world of extensive social media and information we keep, for how long and its
global companies who hold massive amounts
security.
of our personal data.
And the range of the new rules is greater than
But it will affect just about every organisation,
previously in terms of the types of information
regardless of scale, which collects, stores and they cover – paper records and even CCTV for
uses personal information, including our club as example will come into their scope.
of course it holds a lot of members’ personal
information in order to operate!
The club will have a greater need to use
documentation to demonstrate its
The club already adheres to the current data
accountabilities under the new rules.
protection legislation and while your rights are
largely unchanged with regard to what happens Therefore the General Committee has set up a
to your information, there are some new
new work stream, essentially to get the club
elements and enhancements, and we are
ready for the new legislation.
required to review all our policies and practices
to make sure we will comply with the new rules.
The GC has already completed
the vital first step, a complete
mapping of all the personal
information we hold, either
centrally or within the sections,
whether in electronic or paper
format, including an analysis of
why we have it and what we do
with it.
16