Decision details

The Head of Internal Audit & Procurement Delivery referred Members to his report which provided an update on the work that had been undertaken in response to the General Data Protection Regulation (GDPR) and outlines further work planned for delivery by the GDPR project team.

Members were advised of the 3 main work streams being taken forward in respect of Developing Data Protection Registers – in particular, recording ‘lawful bases’ for processing; Developing and publishing Privacy Notices and thirdly Embedding the requirements of the GDPR into current contractual arrangements, and within procurement practices. 

The Leader thanked the officers involved for the work done to date to ensure the Council were compliant with the new regulations and it was RESOLVED:

1.    That following consideration of the reports contents that the fundamental requirements of the General Data Protection Regulation have been delivered in a robust and pragmatic way.

2.    To endorse those areas identified as the next work-streams requiring action.

3.    To any additional work-streams required in order to further strengthen the arrangements in place.

N/A