The General Data Protection Regulation (GDPR) came into force across Europe on the 25th May 2018 replacing the existing data protection framework under the EU Data Protection Directive.
What is GDPR?
GDPR is a law around the protection of Personal Data which seeks to strengthen and unify data protection for all individuals within the EU. GDPR grants a number of enhanced rights to all individuals regarding the treatment of their personal information by organisations such as St. Francis Credit Union. These regulations apply to any organisation that controls and/or processes data on behalf of an individual or group of individuals.
Key aspects of GDPR:
GDPR seeks to extend data protection principles in order to strengthen the personal data rights of an individual. The key aspects are listed below:
- Accountability – St. Francis Credit Union must be responsible for and be able to demonstrate compliance within GDPR;
- Right to be forgotten – Data subjects can request to have their data erased by an organisation, if no legal basis exists for retaining the data.
- Data portability – Data subjects can obtain their data from an organisation and can have that data transmitted to another organisation .
- Right to Object – Data subjects can object to the processing of their data by an organisation, in certain circumstances
- Data subjects can request that they are not subjected to automated decision making, including profiling, in certain circumstances
- Data subjects can lodge a subject access request free of charge. The previous fee associated with lodging a subject access request has been removed under GDPR.
What does GDPR mean for you?
GDPR acts to empower individuals in relation to the treatment of their personal information. It increases and reinforces the rights of individuals in relation to the information we hold about them. Being transparent and providing accessible information to members about how we process their personal information is a key element of GDPR.
St. Francis Credit Union takes privacy and the protection of personal data belonging to our members and staff very seriously. We treat information belonging to our members and staff with the highest priority in terms of security and we will continue to implement this strategy going forward. Therefore, we fully support the enhancements to data protection which will be introduced by GDPR.
What do you need to do?
The changes described above are purely to enhance your understanding of GDPR and to clarify your rights under the regulations. Please take some time to read our Privacy Notice for more detailed information on how we use your information and your rights. Need more information? If you have any questions in relation to GDPR, please call us on 065 6828305 or email us at dataprotectionofficer@stfranciscu.ie.
Please click here for our General Privacy Notice.