Data Protection Policy

Winterbourne Parish Council is committed to the protection of personal data and will always comply with obligations under applicable data protection law including the Data Protection Act 1998 (DPA), which covers both electronic data and data held on manual records. It is the responsibility of each elected member and every employee, worker and volunteer to be aware of their individual and collective responsibilities under the Act and to make sure they comply with its provisions. Deliberate breaches of this policy will be considered as gross misconduct. Individuals, as well as the Parish Council, can be prosecuted for breaches of the Data Protection Act. The Parish Council will be open about the type and extent of personal data it holds. It will keep the minimum amount of personal information needed to perform its duties; it will hold that information securely, use it only for appropriate purposes, and not disclose it without proper authority.