Issue - meetings

Report of the Legal Advisor.

Craig Allcock, Legal Advisor, presented a report, which had been circulated prior to the meeting, giving information about the forthcoming General Data Protection Regulation (GDPR) and the steps being taken to ensure compliance.

RESOLVED to:

1)    Note the contents of the report and the steps taken to ensure the Council complies with the General Data Protection Regulation and forthcoming Data Protection Act;

2)    Designate the Service Manager - Legal Services as the Data Protection Officer (DPO) from 25 May 2018 and approve the establishment of two Deputy DPO roles as detailed in the report;

3)    Approve the amendments to the Information Security Incident Management section of the Information Security Policy at Appendix 1 to the report to take effect from 25 May 2018;

4)    Authorise the Director of Organisational Development & Democratic Services to approve amendments to all of the Council’s policies falling within the remit of the Executive which reference the Data Protection Act 1998 to refer to the GDPR and/or Data Protection Act 2018; and

5)    Delegate authority to the DPO or deputy to exercise all the DPO functions listed in the GDPR and delegates all other functions under the GDPR and DPA 2018, with specific reference to use of exemptions, to the Director of Organisation Development and Democratic Services.