Issue - meetings

Report of the Cabinet Member Corporate Services

RESOLVED THAT

1.   the new Data Protection Policy be approved.

2.   Authority be delegated to the Director of Resources and Corporate Projects to vary the existing s101 Share Service arrangement between the Council, Gloucester City Council and One Legal (Tewkesbury Borough Council) to;

-     Include undertaking the statutory function of the Data Protection Officer (DPO) under the Data Protection legislation and;

-     the Council’s Borough Solicitor be designated as the DPO for the Council.

In the absence of the Cabinet Member Corporate Services the Leader introduced the report and explained that on 25 May 2018 the EU General Data Protection Regulation (GDPR) and a new Data Protection Act and related legislation came into force. A temporary arrangement had been put in place leading up to this Cabinet decision. The new Data Protection Policy at appendix 2 applied to all users who handled information and personal data held by Cheltenham Borough Council, including personal data of our service users. The policy applied to all employees, Members and processors of personal data held by the Council. It did not apply to Members handling their own data or data as part of their political work.  A process for Members to register was taking place separately to this.

RESOLVED THAT

1.   the new Data Protection Policy be approved.

2.   Authority be delegated to the Director of Resources and Corporate Projects to vary the existing s101 Share Service arrangement between the Council, Gloucester City Council and One Legal (Tewkesbury Borough Council) to;

-     Include undertaking the statutory function of the Data Protection Officer (DPO) under the Data Protection legislation and;

-     the Council’s Borough Solicitor be designated as the DPO for the Council.