General Data Protection Regulation (GDPR) 

From 25th May 2018, the Diocesan Policy for General Data Protection Regulation comes into effect.

Several secondary draft policies are given below subject to Trustee approval. They are provided for immediate use. Please refrain from downloading and saving locally as they are likely to be updated over forthcoming weeks and months while the new legislation settles and further advice is provided by our regulator.

Introduction to GDPR 

Privacy Notice 

Consent Sample Forms and Checklist 

Retention Policy

Subject Access Request Process 

Data Breach Procedure 

Data Breach Report Form 

Bring Your Own Device (BYOD) 

GDPR Footnote Template

Complaint Process

Use of Photography, Film and Audio Consent Form