Data protection policies
An average rating of 3.2615384615384615
from
65
votes |
Rate this page
|
Rating stats
Rating statistics for this page
3.3 out of 5 from 65 votes
Breakdown
20 votes
11 votes
12 votes
10 votes
12 votes
CloseYour responsibility to protect any personal information you hold.
Data protection legislation covers everyone about whom you keep personal data. This includes employees, volunteers, service users and funders. The legislation:
- requires organisations to register if they keep records
- governs the processing of personal data including 'personal sensitive data'
- requires organisations to comply with eight principles
- allows employees to request to see the personal data held on them.
For further information on data protection, see the Information Commissioner's Office website.
Source: Published with permission from Cass Centre for Charity Effectiveness. This material is taken from Tools for Success: doing the right things and doing them right", published in October 2008. Download or buy your copy from Cass Centre for Charity Effectiveness.
Sample policies
It can be hard to write a policy from scratch. There are a number of websites which contain sample policies you can download. These are intended as guidance only.
Acas, CIPD also provide guidance.
Have your say
Have you had any good or bad experiences regarding data protection policy?
Share your thoughts in the Employment law and HR forum.
ianruneckles wrote on Jun 28, 2010 12:47 PM
There is a data protection policy framework with model clauses on Lasa's ICT Knowledgebase, written by Paul Ticher, acknowledged authority on VCS data protection. See http://www.ictknowledgebase.org.uk/dataprotectionpolicies
Paul is also author of Directory of Social Change's book Data Protection for Voluntary Organisations, recently (2009) republished in third edition. http://www.dsc.org.uk
Also the link to sample policies above is out of date (following demise of the Workforce Hub).
Hope this helps,
Ian Runeckles, Lasa