As unions bring digital tools deeper into their case management processes, they start generating loads of often sensitive personal data. And that brings some clear responsibilities with it under the General Data Protection Regulation (GDPR).
This blog is intended as a kind of broad checklist for principles and practices that you might find helpful to think about to ensure what you’re doing is lawful. As always you should check with your own advisors when planning detail for your union around this, as there will likely be specific factors that affect you in different ways.
Continue reading Data protection responsibilities in designing systems and processes for union casework