Thank you for taking the time to visit our website. New Data Protection Regulations requires ShareRing Skills to hold your name and contact details to send you information.
By contacting the SRS Website(either through the contact us page) or sending us a email: firstname.lastname@example.org You are giving SRS permission to contact you with details of membership and/or courses. SRS will only hold your contact information for two years.
Your information will not be shared with any third parties for any reason. At any time your information can be deleted by your request.
What is GDPR?
A new European Union-wide framework known as the General Data Protection Regulation (GDPR) came into force across the EU on 25 May 2018, replacing the current data protection framework in Ireland. ... Data controllers and data processors are organisations that collect or use your personal data.
What are the 7 principles of GDPR?
The GDPR sets out seven principles for the lawful processing of personal data. Processing includes the collection, organisation, structuring, storage, alteration, consultation, use, communication, combination, restriction, erasure or destruction of personal data.
In general, the GDPR requires that you:
Have a lawful basis. The GDPR requires that you have at least one lawful basis for processing user data. There are 6 lawful bases outlined under the GDPR.
Aquire verifiable consent. Under the GDPR, consent is one of several legal/ lawful bases for processing user data and as such, it must be “freely given, specific, informed and explicit”. This means that the mechanism for acquiring consent must be unambiguous and involve a clear “opt-in” action (the regulation specifically forbids pre-ticked boxes and similar “opt-out” mechanisms).
The GDPR also gives users a specific right to withdraw consent and, therefore, it must be as easy to withdraw consent as it is to give it. Because consent under the GDPR is such an important issue, it’s vital that you document and keep clear records related to the consent.
Records of consent should at least contain the following information:
The identity of the user giving consent;
When they consented;
What disclosures were made (what they were told) at the time they consented;
Methods used for obtaining consent (e.g., newsletter form, during checkout etc.);
Whether they have withdrawn consent or not
Consent is not the ONLY reason that an organization can process user data; it is only one of the “legal bases”, therefore companies can apply other lawful (within the scope of GDPR) bases for data processing activity. With that said, there will always be data processing activities where consent is the only or best option.