Data Protection Policy for ‘The Friends of Burnham Hospital’.
The Friends of Burnham Hospital is fully committed to protecting the rights and privacy of individuals operating in accordance with the statutory legislation outlined within the Data Protection Act 1998 (DPA) and the General Data Protection Regulation (GDPR) due for implementation in 2018.
In doing so we are committed to protecting the privacy and confidentiality of data provided to us. Any decisions for the disclosure, retention or disposal of information are made in line with relevant legislation.
We recognise that the first priority under the DPA and the GDPR is to avoid causing harm to individuals. On this basis we keep information securely in the right hands, maintain the quality of the information and retain or dispose information as appropriate.
Information about our members, donors and other individuals will only be used in line with established regulations. Personal data will be collected, recorded and used fairly, stored safely and securely and not disclosed to any third party unlawfully. It is ultimately the responsibility of the Committee of the Friends of Burnham Hospital.
As the lawful and correct treatment of personal data is critical to our successful operations and to maintaining confidence, The Friends of Burnham Hospital is committed to operate in line with the data protection principles by:
Collecting accurate personal data only
Protecting Members, donors and other individuals’ personal details and any related records using this data fairly and only for specified lawful purposes
Handling personal data for limited, specifically stated purposes
Using personal data in an adequate and relevant manner, which is not excessive
Holding personal data only for the time period required
Maintaining personal data safely and securely
Releasing personal data only to authorised individuals/parties with adequate protection and the individual’s permission
Adhering to regulations and related procedures to ensure that all members who have access to and handle any personal data held by or on behalf of The Friends of Burnham Hospital are in line with individual’s data protection rights and are fully aware of and abide by their duties under the DPA and GDPR.