– 6 –
PSSA
Standards
NEWS
|
ISSUE 15
May 2017
It’s less than 18 months until the General
Data Protection Regulation (GDPR)
goes into effect. Are you ready? If you’re
like most organisations, the answer is
probably no.
But with 100% compliance required on
May 25, 2018, and fines of up to 2-4% of
global revenue for non-compliance, the
pressure is on to comply.
Under the General Data Protection
Regulation (GDPR), the data protection
principles set out the main responsibilities
for organisations.
The principles are similar to those in the
Data Protection Agreement (DPA), with
added detail at certain points and a new
accountability requirement. The GDPR does
not have principles relating to individuals’
rights or overseas transfers of personal data
- these are specifically addressed in separate
articles (see GDPR Chapter III and Chapter V
respectively).
The most significant addition is the
accountability principle. The GDPR requires
you to show how you comply with the
principles – for example by documenting
the decisions you take about a processing
activity.
Article 5 of the GDPR requires that
personal data shall be:
(a) processed lawfully, fairly and in a
transparent manner in relation to individuals;
(b) collected for specified, explicit and
legitimate purposes and not further
processed in a manner that is incompatible
with those purposes; further processing for
archiving purposes in the public interest,
scientific or historical research purposes or
statistical purposes shall not be considered
to be incompatible with the initial purposes;
(c) adequate, relevant and limited to what
is necessary in relation to the purposes for
which they are processed;
(d) accurate and, where necessary, kept up to
date; every reasonable step must be taken to
ensure that personal data that are inaccurate,
having regard to the purposes for which they
are processed, are erased or rectified without
delay;
(e) kept in a form which permits
identification of data subjects for no longer
than is necessary for the purposes for which
the personal data are processed; personal
data may be stored for longer periods insofar
as the personal data will be processed
solely for archiving purposes in the public
interest, scientific or historical research
purposes or statistical purposes subject to
implementation of the appropriate technical
and organisational measures required by the
GDPR in order to safeguard the rights and
freedoms of individuals;
(f ) processed in a manner that ensures
appropriate security of the personal data,
including protection against unauthorised
or unlawful processing and against
accidental loss, destruction or damage,
using appropriate technical or organisational
measures.
Article 5(2) requires that:
“the controller shall be responsible for, and
be able to demonstrate, compliance with the
principles.”
Are you aware and up to date with the General
Data Protection Regulation?
SPOTLIGHT ON LISA
Lisa Bainbridge
joined the PSSA
office last autumn
after a career which
has given her
experience in both
marketing and the
construction world.
Q.
What companies
have you been with in the past?
Trafalgar House, Kvaerner, Skanska and
Totty Construction to name a few.
Q.
How have you enjoyed the PSSA
experience so far?
I’m fast learning the different products
that members manufacturer, supply and
install plus understanding the current
highlighted vehicle borne threats with
interest. Also the cruxs of the back office,
managing memberships, renewals and
general enquiries, I’m finding it a very varied
role, which is enjoyable and still able to
incorporate my marketing head. Thoroughly
enjoyed visiting HORIBA MIRA as being a
petrol head speedster it was fascinating
watching the vehicles outside. Sorry listening
to the CPNI presentation!
Q.
What projects have you been working
on?
So far I’ve worked on finalising the PSSA
website, organising exhibitions at Olympia
for UK Security Expo and Security and
Counter Terror Expo plus earlier this year the
PSSA CPNI Education Day.
Q.
What do you think the PSSA should be
tackling in the future?
My personal view is that we need to
be raising awareness of the association
and members, to large event venues, city
councils, major corporations especially those
with production facilities, and architects
and designers which require the benefit of
member products and knowledge in the
initial design stages of projects. This would
enable that perimeter / pedestrian protection
is at the forefront of construction design and
not an afterthought.
Q.
Away from the office how do you spend
your time?
Few of you may know that I’m a keen horse
endurance rider and Ultra Fell runner, this
year I’ve completed a 31 and 55 mile Ultras
along with 2 Hardmoors Marathons, only
another 7 and a 60 mile Ultra to go this year.
The BottomLine!
V
V
Understand your obligations under the
GDPR
V
V
Don’t leave it late
V
V
Don’t get caught out.
Do you have an interesting story to tell or fancy being the spotlight in the next issue? email:
admin@pssasecurity.org