The General Data Protection Regulation (GDPR) will take effect in the UK in May 2018. It replaces the existing law on data protection (the Data Protection Act 1998) and gives individuals more rights and protection in how their personal data is used by organisations.
Parishes must comply with its requirements, just like any other charity or organisation. This guide tells you what you need to do. You may also find our checklist and sample consent forms helpful, and there is a longer briefing note available here for people leading on this at parish level.
For help, advice and resources, visit the Church in Wales GDPR page.