Data protection and GDPR

The law and principles regarding the information collect and how we use it.

We need to collect and use information about people to carry out our work.

We have to deal with personal information properly no matter how it is collected recorded or used.

We follow the principles of General Data Protection Regulations (GDPR) and the Data Protection Act 2018:

•    processed lawfully, fairly and in a transparent manner
•    collected for specific, explicit, and legitimate purposes
•    adequate, relevant, and limited to the purposes for which it was collected
•    accurate and up to date
•    kept for no longer than is necessary for the purpose(s) for which it was collected
•    secured using appropriate technical or organisational measures

To ensure that personal data is managed effectively we:

•    assess data protection risks
•    understand and document data sharing requirements
•    communicate data processing activities to customers 
•    respond to requests for personal data
•    identify, contain and manage data breaches

For more information please contact us: dataprotection@cumberland.gov.uk