There are strict regulations on what personal information we can collect and store, how we can use and process that personal data, who we are allowed to share with, and who we must pass data to when ordered to do so.
You have rights in respect of your data which include the right to request your personal information from us; we must reply to you within strict timescales giving you the information you asked for, or tell you why we cannot give it to you.
General Data Protection Regulation 2016
The General Data Protection Regulation 2016 (GDPR) was put in place to standardise across Europe, the protection and rights afforded to citizens and to help protect people's personal data. It aims to ensure that people know where their data is held, what it is used for, who it is shared with and how long it will be kept for.
It also obliges organisations to treat people's data correctly, transparently and have systems in place for managing information.
The GDPR is a law applicable throughout the EU and is augmented by the new UK Data Protection Act.
The new regulation is the legal framework within which all organisations who are controllers of personal data must operate. It covers all data held about an individual (data subject) in both manual and computerised files.
Wiltshire council is committed to compliance with all requirements of the GDPR, we regard the protection of people's personal data as important, not only for improving confidence in the council but for improving the quality of service provided. The council is committed to openness and transparency; meeting our obligations under GDPR will help to achieve this commitment.
We will implement and follow procedures that aim to make sure all:
- Elected members
- Other persons that have access to personal data held by or on behalf of the council are made aware of their responsibilities and fulfil their duties under the GDPR.