Warwick Chamber of Trade
Warwick Chamber of Trade
What is GDPR
GDPR stands for the General Data Protection Regulation. It's an EU legislation that is the framework for data protection across Europe. Companies must not only be compliant but demonstrate compliance, or face fines of up to 4% of annual global turnover or 20 million (much higher than the 500,000 fine imposed under the Data Protection Act 1998)
What Does GDPR Mean For Me?
The GDPR gives individuals 8 key rights regarding data:
The right to be informed, about what data is being captured, and what it is used for.
The right of access, to the data a company holds on you. The company must provide this within 30 days of the request.
The right to rectification. If the data held is incorrect or incomplete, an individual can request rectification (verbally or in writing). Again, a company has 30 days to respond to this.
The right to erasure. Also known as the right to be forgotten. A right for individuals to have their personal data erased - within 30 days.
The right to restrict processing. Individuals can request restriction or suppression - which means that companies are permitted to store the personal data, but not use it.
The right to data portability. This allows individuals to obtain and reuse their personal data for their own purposes across different services.
The right to object. Individuals have the right to object to direct marketing and other forms of data processing Rights related to automated decision making including profiling.
Individuals have the right to object to automated decision making, including profiling. These are the rights the GDPR brings to individuals, or you as a user or customer of websites and businesses
What Does It Mean For Businesses
There are a number of steps that businesses have to take in preparation for GDPR as outlined by the ICO (the Information Commissioner's Office) here. Warwick Chamber of Trade has followed and completed all of these steps.
Awareness. Making key decision makers aware of GDPR and the change in law. Information they hold. Document the data that a company holds, where it came from, what it is used for etc.
Privacy information. Businesses must review their current privacy information and communicate it with those affected.
Individual rights. The 8 key rights as listed above - make sure there are procedures and processes in place to respond to any of the requests individuals have the right to make (for example, deleting personal data).
Consent. Review how the business seeks, records and manages consent. Refresh any existing consents if they don't meet the new standard.
Data breach. Have procedures in place to detect, report and investigate a personal data breach.
Children. Obtain parental or guardian consent for any data processing activity regarding children.
Data Protection Officers. Designate someone to take responsibility for data protection. Some businesses may be required to formally designate.
We welcome the GDPR and the changes it brings. Keeping your data secure and operating in a safe, secure and transparent way is important to us - we ask our team to treat all data as if it is their own. If you have any questions around our compliance to the GDPR or data security and privacy in general then please get in touch.
Warwick Chamber of Trade published this guide based on information we have gathered about GDPR to help our customers understand the steps we have taken but it is in no way legal advice. For full information and help regarding the new regulations, please visit the Information Commissioner's Office (ICO) website.
Warwick Chamber of Trade takes the privacy of its members seriously and is committed to the following policy.
Who We Are
We are Warwick Chamber of Trade, The Court House, Warwick, CV34 4EW.
We are registered with the Information Commissioner in accordance with the Data Protection Act 1998 (the Act, Data Protection Registration no. Z9389651). For the purposes of the Act we are the data controller of your personal data.
The Information We Collect
Information Provided By You: We collect the following personal information of our members; Full name, Email address, Contact telephone number, Address.
How We Use This Information
The information you provide to us is used so that we can offer you, the user, the best experience possible.
Warwick Chamber of Trade is committed to being transparent when it comes to data and your privacy. We use data that you provide us for the following reasons:
Research - We use anonymised order data for market research purposes. For example, to report on how many orders we had from a city/town in a given period.
For more information on how you can opt-out of sending information to Google Analytics, see Google's support document here. In compliance with GDPR, we respect the individuals right to access, rectification and erasure of personal data. For more information on how to access, edit or erase information we hold please see the relevant points below.
Cookies are small text files, located in browser directories. They are used to help users navigate through our website efficiently.
There are two types of cookies used on our website:
Session (Transient) cookies - these cookies are erased when you close your browser, and do not collect information from your computer. They typically store information in the form of a session identification that does not personally identify the user.
Persistent (Permanent/Stored) cookies - these cookies are stored on your hard drive until they expire (i.e based on a set expiration date) or until you delete them. These cookies are used to collect identifying information about the user, such as web surfing behaviour or user preferences for a specific site.
Most browsers allow you to refuse to accept cookies and to delete cookies. The methods for doing so vary from browser to browser, and from version to version. Please note, if you block cookies, it will have a negative impact upon our website usability.