The Information Commissioner’s Office (ICO), the body responsible for ensuring that organisations comply with the Data Protection Act 1998, has published new data protection guidance for charities to promote good practice in their handling of personal information and to ensure that they comply with the act.
Over the last 12 months, the ICO has undertaken advisory visits to 32 charitable organisations to see how the sector handles personal data and to assess what it does well and where there is room for improvement. The organisations visited varied greatly in size, resources, facilities and the sophistication of their systems and processes. However, the ICO found common themes running throughout the sector. In particular, the ICO found charities’ dependence on volunteers to be a particular challenge, as there is often a high turnover in staff and it can be difficult for charities to ensure that volunteers are aware of their data protection responsibilities and comply with the act.
Furthermore, charities should ensure that proper procedures are implemented to reduce the risk of unauthorised and inappropriate access to personal information by new starters…
If you are registered and logged in to the site, click on the link below to read the rest of the Mills & Reeve briefing. If not, please register or sign in with your details below.