WHAT RIGHTS DOES THE NEW LEGISLATION GIVE THE INDIVIDUAL?
THE RIGHT TO BE INFORMED
THE RIGHT OF ACCESS
THE RIGHT TO RECTIFICATION
THE RIGHT TO ERASE
THE RIGHT TO RESTRICT PROCESSING
THE RIGHT TO DATA PORTABILITY
THE RIGHT TO OBJECT
RIGHTS IN RELATION TO AUTOMATED DECISION MAKING & PROFILING
Importantly, any organisation storing personal details, needs to review how they are going to store that information securely.
CHANGES TO MARKETING
- Customers must be given the option to withdraw from future mailings.
- All databases must be cleaned according to GDPR regulations, run via MPS (Mailing Preference Service) and all people who do not want to be mailed removed.
- Mailing service providers must be GDPR compliant with strict and robust processing in place for the secure handling of data at every stage.
An alternative to personalised mailings are door drop
campaigns. The Royal Mail provides a service of targeting
customers by postcodes, cross referenced by numerous
factors such as house type and average income.
Leaflets and mail pieces can be delivered to targeted postcode areas along with general mail.
WHAT HAS POLLARDS DONE?
Secure receipt of data with an exclusive upload portal
Secure encrypted storage, processing and management of data
Secure proofing via a tailor made online proofing platform
Supply of mailing report once the job has been completed
Secure removal of mailing data once job has been invoiced
CYBER ESSENTIALS SCHEME: OVERVIEW
Cyber Essentials is a Government-backed, industry-supported scheme to help organisations protect themselves against common online threats. It focuses on key controls to help protect data and reduce the risk of cyber-attack.
Pollards has chosen to adopt the Information Assurance for Small Medium Enterprise (IASME) standard. IASME is one of five companies which has the right to act as an Accreditation Body for Cyber Essentials scheme. It has been recognised as the best cyber security standard for small companies by the UK Government. Under the scheme organisations are audited for key controls such as physical security, data management, staff awareness and document policies. These controls were identified by the government as the best way to prevent cyber-attacks on organisations.
WHAT DO YOU NEED TO DO?
The regulations for data controllers needs to reviewed against individual organisation’s circumstances and we would
recommend that you follow the link below to the ICO website. Here, you will find all the latest information to help you
ensure your processes for controlling data are compliant with the latest legislation and that you gain the correct consent
from customers or supporters.