Data Protection Compliance - Volunteer Task list

From Freegle Wiki
Revision as of 19:43, 17 September 2017 by Jc4freegle (talk | contribs)
Jump to navigationJump to search

Ongoing Tasks on Freegle Data Protection Compliance

As of 17th Sept 2017 the volunteer who is dealing with Data Protection compliance has the following tasks that are ongoing

Ongoing Tasks Task Status
Raising the awareness of the Board, Volunteers and Membership of Freegle to the GDPR implications There will be a few items posted out as we work through the different elements, however most information will be via the notifications that point to Wiki informational pages.
Document Freegle's Legal Basis for Data Processing & National Jurisdiction DPO will look for standard wording and see if we can get a DPO savvy legal eye over it.
Create Data Protection Policy Document This will clearly spell out Freegle's policy on :
- Consent & Notices
- Subject Access requests
- Notification of Data Breaches
- Children's accounts and guardian consent
- Design of Data Protection
- User requested data deletion
- Data Retention Policy

The DPO to draft initial policy and work with system owners (Freegle Direct, Norfolk, TrashNothing) to ensure there is clarity
Create Data Protection Guidance This will explain how the policies can be operated. This will be for the System owners and Volunteers


Completed Tasks - Freegle Data Protection Compliance

As of 17th Sept 2017 the volunteer who is dealing with Data Protection compliance has the following tasks that are ongoing

Ongoing Task Completion comments
Assign Data Protection Officer Although its not a legal or regulatory requirement for an organisation such as Freegle to have a DPO, we have a Volunteer assigned. There is also a generic email address for this function which is DPO@ilovefreegle.org

Useful Links