The Grampian-Houston Association seeks to comply with the requirements of the General Data Protection Regulations (GDPR) in relation to the use we make of members’ personal data.

Personal data means any data that relates to an identifiable person who can be directly or indirectly identified from that data.

Our privacy policy applies to our use of data retained by us relating to members of the Association. We collect the names of members, their business/company name, postal and e-mail addresses and telephone numbers for the purpose of communicating with members. We do not retain information relating to members’ bank details or dates of birth.

All personal data is processed and stored securely and is not made available to any third party.

The Association Secretary is designated as Data Controller responsible for implementation of the privacy policy.

Under GDPR a data subject has the following rights:

The right to be informed about our collection and use of personal data.

The right of access to the personal details we hold about you.

The right to the rectification of any personal data we hold about you who which is inaccurate or incomplete.

The right to be forgotten i.e. the right to ask us to delete any personal data we hold about you.

The right to restrict the processing of personal data.