Personal data and online resources
What is personal data?
Personal data is information which can be used to identify an individual. GDPR defines Personal data as: Any information relating to an individual, whether it relates to his or her private, professional or public life. It can range from a person’s name, email address, phone number, posts on social networking sites, a computer’s IP address to medical information or bank details.
Privacy policies are normally accessible via a company’s website.
What is the General Data Protection Regulation (GDPR)?
Following advances in technology, the volume of personal data generated has increased in recent years. The GDPR is a new piece of legislation in the UK which came into force in May 2018 replacing the Data Protection Act 1998 (DPA). GDPR is designed to protect the personal data and privacy of individuals, giving them more control over how their personal data is used.
GDPR applies to all countries holding personal data relating to EU nationals and all companies holding personal data are required to ensure they are GDPR-compliant.
For more information please see the Guide to the GDPR on the Information Commissioner’s Office website
The rights you have under the GDPR are:
- right to be informed
- right of access
- right to rectification
- right to erasure
- right to restrict processing
- right to object to data processing
- right to data portability
- right to object
- rights in relation to automated decision making and profiling
To find out more about each of your rights, the Information Commissioner’s website provides detailed guidance.
If you have any questions or concerns about sharing personal data with an online resource provider, please contact firstname.lastname@example.org
If you have questions relating to GDPR in general, please contact City’s Information Compliance Team at email@example.com.