GDPR & Blue Sky
GDPR will replace the UK’s Data Protection Act 1998 when it comes into force on 25thMay 2018. It requires businesses to be accountable for their processing of personal data and helps EU citizens to protect their privacy and control the way their data is processed.
Blue Sky place a high importance on information security and already comply with a number of standards that also focus on information data security including ISO27001 and Cyber Essentials.
Our GDPR Principles:
- Lawfulness, fairness and transparency
- Lawful: Processing will meet the tests described in GDPR [article 5, clause 1(a)]
- Fair: What is processed will match up with how it has been described
- Transparency: Blue Sky will tell data subjects what data processing will be done.
- Purpose limitations
Blue Sky ensure that personal data will only be obtained for “specified, explicit and legitimate purposes”[article 5, clause 1(b)]. Data will only be used for a specific processing purpose that the subject has been made aware of and no other, without further consent.
- Data minimisation
Blue Sky will ensure that data collected on a subject is “adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed”.[article 5, clause 1(c)]. No more than the minimum amount of data will be kept for specific processing.
Blue Sky have built rectification processes into our data management / archiving activities for subject data.
- Storage limitations
Blue Sky will ensure that personal data is “kept in a form which permits identification of data subjects for no longer than necessary”. [article 5, clause 1(e)]
- Integrity and confidentiality
Blue Sky will handle data “in a manner [ensuring] appropriate security of the personal data including protection against unlawful processing or accidental loss, destruction or damage”. [article 5, clause 1(f)]
A cookie is a small piece of data sent from a website and stored in the user’s web browser while they are browsing the website. When the user browses the same website in the future, the data stored in the cookie can be retrieved by the website to notify the website of the user’s previous activity.