Policy document and additional safeguards

In this section

Policy Document and Additional Safeguards

The council is required to maintain an appropriate policy document and keep a record of processing activities in relation to the processing of personal and special category data.

Article 5 of the GDPR sets out the principles that must be met in connection with the processing of personal and special category data. These principles are:

Lawful, fair and transparent
Purpose limitation
Data minimisation
Accuracy
Storage limitation
Security
Accountability

You can read about how the council meets the requirements set out by the Principles in our Special Category Data Policy, which can be accessed via our Policy Hub.

The council has an appointed Data Protection Officer (DPO), whose role it is to provide independent advice on data protection to the council, and to monitor compliance with relevant Data Protection legislation.

Last reviewed: 17/08/2023

Previous What does the legislation say? Next Record of processing activity (ROPA)