Search site
»
  • Data Protection Policies

Data Protection Policies

The Fund has drafted a Data Protection Policy which sets out its compliance with the requirements under the General Data Protection Regulations (GDPR).

pdf icon Data Protection Policy [401kb]

word icon Appendix 1 [96kb]

word icon Appendix 2 [31kb]

In complying with the requirements of GDPR the Fund recognises that this is a change which affects both the Fund and our employers and we have been working with other LGPS Funds and the LGA to understand  how our relationship will continue under GDPR.

The position as understood from this engagement, is that both the Fund and our Employers are considered Data Controllers under the GDPR as we both have individual and separate access to information about individuals who are members of the scheme. The Fund recognises that this is a change which affects both the Fund and our employers and we have been working with other LGPS Funds and the LGA to understand  how our relationship will continue under GDPR.

In assisting Funds to develop template information for publication in our websites, the LGA has also been working with Squire Patton Boggs to develop a Memorandum of Understanding for Funds and their Employers which sets out the data controller role for each of our 2 bodies and seeks to provide assurance on our management of data.

The LGA believe that this Memorandum of Understanding removes the need for a formal data sharing agreement as it imposes obligations on both our parts to comply with the requirements of GDPR.

pdf icon Employer Memorandum of Understanding [233kb]

The Fund has also produced an assurance statement in its management of data

pdf icon GDPR Assurance Statement [236kb]

Together with completing the ICO checklist for Data Controllers

pdf icon ICO Checklist for Data Controllers [209kb]

 

Powered by GOSS iCM