Consent to hold and use data - BWCT

Like many organisations, Burley-in-Wharfedale Community Trust (BWCT) has been preparing for the implementation of the General Data Protection Regulations on May 25 2018.  We have always ensured that the privacy of our membership is not compromised, and that the data we hold (names, addresses, phone numbers and email addresses) is only used for the purposes for which it has been given. Trustees have recently agreed the following statement in order to clarify how the BWCT processes personal data.  Please let us know if you have any queries:
1.       The Burley-in-Wharfedale Community Trust (BWCT) is required to implement the General Data Protection Regulations (GDPR) on May 25 2018.  This is to ensure that the organisation has the consent of individuals to hold and use their data.
 
2.       BWCT holds the name and contact address of members and supporters, plus email address and phone numbers on a secure electronic database.  This is used to send out periodic newsletters, electronically or hard copy by post according to stated preference.  Also, annual reminders for BWCT subscriptions, notices about fundraising events, and notices of Annual General Meetings and other General Meetings that may be called by the committee or membership.
 3.       BWCT will assume that unless a member or supporter advises the organisation that they wish to be removed from the database by May 25 2018, that they continue to consent to being contacted by the BWCT for the purposes detailed under paragraph 2
4.       When a member or supporter advises BWCT that they wish to be removed from the database, then their personal details will be permanently removed. 
 
5.       BWCT will not pass on personal information to third parties, other than where this may be required by law.
 
6.       If any member or supporter wishes to check what information is held by BWCT, then they are entitled to see this on request and to correct or update any information held by BWCT.
 
Draft policy 15th May 2018