GDPR Principles
The main principles of the Data Protection Act are:
1) Fair and lawful processing of personal data
2) Processed for specified, lawful and compatible purposes
3) Adequate, relevant and not excessive
4) Accurate and up to date
5) Not kept for longer than necessary
6) Processed in accordance with the rights of the individual
7) Processed with appropriate security.
You have the right to:
1) Make us correct any inaccurate personal data about you by contacting the Association secretary. You can ask us to erase any personal data we hold about you as long as it is no longer a legal requirement or necessary for us to hold the data for the longer than is necessary.
2) Lodge a complaint regarding our use of your data.
We are always happy to immediately address any concerns regarding the use of personal data but if we fail at this then you can contact the Information Commissioner’s Office using the details on their website www.ico.org.uk.