The General Data Protection Regulation (GDPR)
The new European legislation, the General Data Protection Regulation (GDPR), governing the use of personal data by organisations, and the rights of individuals, came into force on 25th May. The NI Squirrel Association has drawn up its own Data Protection Policy and Data Privacy Notice and these are available below.
To help Squirrel Dreys be GDPR compliant we have put together some information to guide you when collecting, storing and disposing of the personal data you gather on young people and adults in Squirrels. The document – What is GDPR? – will give you some background information and advice on how to become GDPR compliant. There is a ‘journey’ template which you can complete for your own individual Drey – these templates take you through the data ‘journey’ of an adult volunteering with Squirrels and a young person joining the Drey or volunteering with the Drey, e.g. through Duke of Edinburgh Award scheme. It helps you think about what you collect, why you collect it, where you store it, who you pass it on to and what you do with it when you no longer need it!
We have also prepared 2 templates which you can adapt for your own Drey – a Data Protection Policy and a Data Privacy Notice – parents/carers should be made aware of these and you may require them to meet GDPR policies for your meeting place.