Clare Roots Society
Data Protection Policy

Data Protection Statement in compliance with GDPR

This policy is a statement of Clare Roots Societies (CRS) commitment to protect the rights and privacy of individuals and demonstrate compliance with General Data Protection Regulation (GDPR) which seeks to harmonize privacy laws across Europe.

Collecting information
Individuals provide Clare Roots Society (CRS) with their contact details to be advised of Society Meetings and Society genealogy business using electronic mail. By becoming members of CRS they are agreeing to receive e-mails and genealogy information through the internet.

GDPR Principles

CRS will carry out our GDPR responsibilities in accordance with the following five principles:

Data to be Collected – The data collected is limited to the personal contact details for each member; i.e.  Name, Home Address, Landline & Mobile Telephone numbers and E-Mail Address.

Use of Personal Data – Use of personal contact information is limited to e-mail contact for notification of Society meetings and passing genealogy information to members.

Non-Disclosure – Members personal information will not be disclosed to 3rd Parties without the members prior consent. CRS do not engage in sales and marketing to the Society Membership.

Data Storage – The membership database is encrypted and stored electronically.

Data Accuracy – Members have the right to request a copy of their personal data, to have it changed or corrected if necessary. This will be provided within 30 days of request at no-charge. Members may also request that their data be deleted and removed from the Society database. The request will be actioned by CRS within 30 days and confirmed by return e-mail.

All requests related to members data should be addressed to the Secretary, Clare Roots Society by e-mail at .

Overall responsibility for ensuring compliance with GDPR rests with the Clare Roots Society. Representatives and volunteers of Clare Roots Society who use the personal data of Society members are individually responsible for compliance with GDPR.

Further Information

Updated August 2018