Page Title

VIRGINIA’S CHAMBERS INTERNATIONAL RECOVERY PRAYING TO STAY ALIVE DATA PROTECTION POLICY

17th of June 2022 To 16th of June 2023

Virginia’s Chamber’s International Recovery Praying to stay alive is committed to protecting all information that we handle about people we support and work with, and to respecting people’s rights around how their information is handled. This policy explains our responsibilities and how we will meet them.

See Registration

Section A – What this policy is for............................................................................ 3

Policy statement......................................................................................... 3
Why this policy is important......................................................................... 3
How this policy applies to you & what you need to know................................. 4
Training and guidance................................................................................. 5

Section B – Our data protection responsibilities......................................................... 5

What personal information do we process?................................................... 5
Making sure processing is fair and lawful...................................................... 6
When we need consent to process data....................................................... 8
Processing for specified purposes................................................................ 8
Data will be adequate, relevant and not excessive......................................... 8
Accurate data............................................................................................. 8
Keeping data and destroying it..................................................................... 8
Security of personal data............................................................................. 8
Keeping records of our data processing........................................................ 9

Section C – Working with people we process data about (data subjects)..................... 9

Data subjects’ rights......................................................................................................... 9
Direct marketing....................................................................................... 10

Section D – working with other organisations & transferring data.............................. 10

Sharing information with other organisations............................................... 10
Data processors....................................................................................... 11
Transferring personal data outside the United Kingdom (UK)....................... 11

Section E – Managing change & risks.................................................................... 11

Data protection impact assessments.......................................................... 11
Dealing with data protection breaches........................................................ 12

Schedule 1 – Definitions and useful terms.............................................................. 13

[Schedule 2 – ICO Registration]............................................................................. 15

Schedule 3 – Appropriate Policy Document 16

Click to read full GDPR

Page Title

Contents