|MARLOW - MAIDENHEAD PASSENGERS' ASSOCIATION|
General Data Protection Regulation (GDPR)
The General Data Protection Regulation comes into force on 25th May 2018. Under the regulation we are required to:
You will of course realise that if you ask us to delete all your data, we then will not be able to send you newsletters, timetables, membership reminders or any ad hoc messages.
What Data We Hold
The data we hold fall into two categories: the membership database and membership accounts.
The database holds the following data:
The membership account shows all payment details for the year, including payment type (cash, cheque, automated or PayPal) and cheque details if applicable. The account is sent to the Treasurer by email and used to reconcile the bank and PayPal statements. The Treasurer supplies details of automated payments (online banking, standing orders, etc.) to the Membership Secretary. Year end accounts are held for a number of years in accordance with normal accounting practice.
The database is held on a personal computer which is behind two firewalls which both block incoming requests. It is not currently encrypted. Regular backups are made to a separate device.
No personal data are stored on the web server or in the ‘cloud’. However data entered on web forms are transmitted to the Membership Secretary by email. Mail to our domain (mmpa.org.uk) is forwarded by our host’s mail server to the recipient.
We do not pass personal data to any third party, and will not do so unless compelled by law.
You are entitled to request a copy of the current data we hold on you.
You may also request that any or all such data are amended or deleted.
Requests should be sent by email to firstname.lastname@example.org.
Please be aware that although we can delete or amend all current data it will not be feasible to update all archived backup copies.
Please complete and submit the form below to indicate your consent to MMPA holding your data. This only needs to be done once.
Last updated 15th April, 2018