General Data Protection Regulation
It also addresses the export of personal data outside the EU. The GDPR aims primarily to give control back to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.
The GDPR has been adopted on May 25th, 2016 and IS enforcable to all European Union countries since May 25th, 2018. Ref: GDPR -Wikipedia
Data Protection Authorities
Each country in EU has to legitimate its own Data Protection Authority (DPA).
These authorities are asked to monitor and enforce the GDPR in the specific country.
They are also responsible for pronouncing the fines and the place to report any breaches.
The committee is looking at issues connected with GDPR to provide help for operational implementation
and support all European toastmasters entities and their representatives in the compliant implementation of GDPR.
Whilst we await further details, please see the document, Preparing for the General Data Protection Regulation. The document outlines 12 steps to consider, please could you ensure that ALL club Presidents and VPE’s have reviewed all the steps, with particular attention to the following:
- Information you hold
- Communicating privacy information
- Individuals’ rights
- Subject access requests
- Lawful basis for processing personal data
- Data Breaches
- Data Protection by Design and Data Protection Impact Assesments
- Data Protection Officers
If your club is collecting information about its guests and/or members make sure that the privacy notice supports the GDPR
– see the following examples of privacy notices.
GDPR and easySPEAK
Most of our clubs use easySPEAK to manage the meetings and store data about the members and guests. Thanks to the efforts of Malcolm (the creator of this great tool) easySPEAK is being updated to fully support the GDPR by May 25th, 2018, and allows each club to correctly manage data about members and guests.
GDPR and Toastmasters International
TI has issued all clubs the following advice.
TI has issued all clubs the following advice:
For guidance on how to be compliant, please refer to the helpful links below:
GDPR Guide – Find answers to common GDPR questions.
GDPR Guidance Chart – See how the process works step by step.
Club Privacy Notice – This notice must be signed by all members and guests of your club.
Additionally, we encourage you to visit the Guide to the GDPR to learn more about the regulation and to access useful tools.
For further question please contact firstname.lastname@example.org.
Information for germany
Hinweise für Vereine
- LDS Baden-Württemberg – Datenschutz im Verein
- LDS Bayern
- LDS Hessen – Handreichung für Vereine
DSK – Datenschutzkonferenz – Kurzpapiere zur DS-GVO
Die Datenschutzkonferenz besteht aus den unabhängigen Datenschutzbehörden des Bundes und der Länder.