What is 'Data'?

In the context of Data Protection, 'Data' is referring to personal data. This is defined as:

...any information concerning an identified or identifiable natural person. Personal data which have undergone pseudonymisation, which could be attributed to a natural person by the use of additional information should be considered to be information on an identifiable natural person.
General Data Protection Regulation

This means that if you hold any information on someone that is alive, you need to abide by Data Protection Laws. If you are able to make the data you hold anonymous, then you should do that. If your data has been anonymised but you are still be able to identify the data subject with the use of other data, then Data Protection laws still apply. You can find a more in-depth definition on the ICO website.

Examples of data you may hold:

  • List of society members - name, email address, phone number, address etc.
  • Other membership information such as industry bodies or sports federations
  • Data for trips or tours eg. passport numbers, nationalities etc.
  • IP addresses

 

Sensitve Personal Data

There is a subset of personal data referred to as 'sensitive'. This includes information such as:

  • sexual orientation
  • religion
  • trade union membership
  • genetic/biometric data etc.

You shouldn't handle any sensitive data without proper security and protocols in place to ensure it is safe. If you need to handle any data that could be deemed as sensitive, please contact the activities team to ask for further advice.

Loading, please wait  

Report a problem