The General Data Protection Regulation (GDPR) is a legal framework that sets guidelines for the collection and processing of personal information of individuals within the European Union (EU)
The GDPR sets out the principles for data management and the rights of the individual, while also imposing fines that can be revenue-based. The General Data Protection Regulation covers all companies that deal with data of EU citizens, so it is a critical regulation for corporate compliance officers at banks, insurers, and other financial companies. GDPR came into effect across the EU on May 25, 2018.
Autism & ADHD collects and holds personal data – not only about our clients, but also staff, parents, volunteers, visitors, suppliers and other ‘data subjects’. GDPR requires us to not only minimise any risks to the unauthorised access and loss of personal data within the organisation, but also to provide evidence and documentation of processing activity.
To ensure we commit to the GDPR compliance we are doing the following:
Documenting our processing activity, ensuring we have a lawful basis for processing
Auditing this process and identifying potential risks, to then create a plan to reduce the risks to personal data.
Documenting the compliance of third-party providers and reviewing contracts to ensure they comply with GDPR
To have processes and procedures in place to ensure the rights of data subjects
Reviews of technical and organisational measures in place to protect data
All staff members are trained on GPDR and our data handling procedures
Data Protection
Autism & ADHD collects and process large amounts of data. Our responsibility as custodians of this data is taken very seriously and we take opportunities that the GPDR provides, to make improvements in how we handle data.
The GDPR project is always ongoing, and we are committed in developing the privacy programme to ensure we are always approaching the data we hold lawfully. Whilst there will be ongoing changes, we will ensure that there are no negative effects on the support given to Clients and the welfare of them, their families, and our staff.
For more information contact the main office via info@autismandadhd.org
The data protection officer can be contact via annie.clements@autismandadhd.org