№ files_lp_3_process_7_001595
File format: docx
Character count: 6321
File size: 150 KB
Internal policy document establishing rules, responsibilities and legal basis for processing, storing and sharing personal data within 1 Hart, 1 Mind, 1 Future in compliance with GDPR and related legislation.
Organisation:
1 Hart, 1 Mind, 1 Future
Document Type:
Policy
Subject:
Data protection and confidentiality
Legal Framework:
General Data Protection Regulation (GDPR) 2018
Related Legislation:
Freedom of Information Act 2000; Freedom of Information (Scotland) Act 2000; Prevention of Terrorism Act; Charities Act 1993 (Section 41); Companies Act 1989 (Section 222)
Data Roles:
Data Controller; Data Processor
Applies To:
Staff; Volunteers; Trustees; Managers; Steering Group
Data Subjects:
Individuals supported by the organisation; Young people; Carers and families
Key Provisions:
Six GDPR principles; Data subject rights; Subject access requests; Data storage and retention; Information sharing conditions; Breach procedures
Geographical Scope:
England; Wales; Northern Ireland; Scotland
Review Oversight:
Steering Group
Retention Requirements:
Financial records retained in accordance with statutory time limits
Price: 8 / 10 USD
The file will be delivered to the email address provided at checkout within 12 hours.
The file will be delivered to the email address provided at checkout within 12 hours.
Don’t have cryptocurrency yet?
You can still complete your purchase in a few minutes:- Buy Crypto in a trusted app (Coinbase, Kraken, Cash App or any similar service).
- In the app, tap Send.
- Select network, paste our wallet address.
- Send the exact amount shown above.
The final amount may vary slightly depending on the payment method.
The file will be sent to the email address provided at checkout within 24 hours.
The product description is provided for reference. Actual content and formatting may differ slightly.
Year:
2018
Region / City:
United Kingdom
Topic:
Data protection, patient access to medical records
Document Type:
Application form
Author:
N/A
Target Audience:
Patients, legal representatives, family members
Validity Period:
N/A
Approval Date:
N/A
Date of Last Modification:
N/A
Contextual Description:
A formal application form for accessing medical records under GDPR and UK Data Protection Act, outlining required information for patients and their representatives.
Year:
2018
Region / City:
Dumfries & Galloway
Theme:
Data Protection, Health Records, GDPR
Document Type:
Request Form
Organ / Institution:
NHS Dumfries & Galloway
Author:
NHS Dumfries & Galloway
Target Audience:
Individuals requesting access to personal health records, authorized representatives
Period of Validity:
N/A
Approval Date:
N/A
Amendment Date:
N/A
Year:
2023
Region / City:
Dublin
Subject:
Data Protection, GDPR Compliance
Document Type:
Policy
Organization / Institution:
Technological University Dublin
Author:
Information Governance
Target Audience:
Employees, Students, and Relevant Stakeholders
Period of Validity:
Ongoing review annually
Approval Date:
23/11/2020
Date of Changes:
May 2023
Year:
2026
Regulation:
EU General Data Protection Regulation (GDPR)
Type of Document:
Annex to contract / Data processing agreement
Parties:
GIZ (controller), Contractor (processor)
Content:
Clauses 1–11, Appendices I–III
Appendices:
Appendix I – Description of processing, Appendix II – List of Subcontractors, Appendix III – Technical and organisational measures
Scope:
Processing of personal data on behalf of GIZ
Legal Basis:
Article 28(3) and (4) GDPR
Sensitive Data:
Personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data, health data, sex life or sexual orientation, criminal convictions and offences
Data Transfers:
Subject to Chapter V GDPR provisions
Year:
Not specified
Region / City:
Eschborn, Germany
Topic:
Data protection, GDPR
Document Type:
Agreement
Organization / Institution:
Deutsche Gesellschaft für Internationale Zusammenarbeit (GIZ) GmbH
Author:
Not specified
Target Audience:
Not specified
Period of validity:
Not specified
Approval Date:
Not specified
Date of amendments:
Not specified
Year:
2016
Region / city:
European Union
Subject:
Data protection, outsourcing, personal data processing
Document type:
Agreement
Organization:
GIZ
Author:
GIZ, Contractor
Target audience:
Data protection officers, legal teams, contractors
Duration:
Undefined
Approval date:
27 April 2016
Date of changes:
N/A
Context:
Legal document detailing the outsourcing of data processing under GDPR, establishing terms for data security and processing compliance.
Year:
2023
Region / City:
European Economic Area (EEA)
Topic:
Data Protection
Document Type:
Legal Agreement
Organ / Institution:
Not specified
Author:
Not specified
Target Audience:
Organizations processing personal data under GDPR
Validity Period:
Linked to the term of the main contract
Approval Date:
Not specified
Amendment Date:
Not specified
Year:
2026
Region / City:
Not specified
Subject:
Data protection, GDPR compliance
Document Type:
Appointment letter
Organization / Institution:
Controller (Principal)
Author:
Not specified
Target Audience:
Employee designated as DPO
Legal Reference:
Articles 35, 36, 37, 38, 39 GDPR
Effective Date:
Date of signature
Duration:
Undefined / Until termination of employment contract
Responsibilities:
Monitoring compliance, advising on data protection, cooperating with supervisory authorities, contact point for data subjects
Compensation:
As per employment contract or additional remuneration specified
Year:
2019
Region / City:
UK
Subject:
General Data Protection Regulation (GDPR) Compliance
Document Type:
Action Log
Organization / Institution:
LawWorks
Author:
RW and PJ
Target Audience:
LawWorks staff, clinics, volunteers, and other relevant stakeholders
Period of Validity:
Ongoing
Approval Date:
March 2018
Modification Date:
March 2019
Year:
2021
Region / city:
Tallinn, Estonia
Subject:
Digital inheritance, Post-mortem privacy, GDPR
Document type:
Academic article
Organization / institution:
Tallinn University of Technology
Author:
Marta Terletska
Target audience:
Legal scholars, privacy law experts, EU policymakers
Period of validity:
Not specified
Approval date:
Not specified
Date of changes:
Not specified
Note:
Year
Country:
United Kingdom
Legislation Referenced:
Equality Act 2010
Regulation Referenced:
General Data Protection Regulation (GDPR) 2018
Document Type:
Equality and diversity monitoring form
Purpose:
Collection of equality information for monitoring policies and procedures
Data Protection Basis:
Substantial public interest and explicit consent
Confidentiality:
Information kept confidential and not used in application assessment or interview process
Issuing Organisation:
WMSF
Contact:
Data Protection Officer (DPO) [email protected]
Website:
http://www.wmsf.ac.uk/staffvacancies1
Categories Collected:
Ethnic group, age, personal relationship status, gender, disability, type of disability or illness
Audience:
Job applicants
Year:
2023
Region / city:
Tokyo
Topic:
Data Protection, GDPR Compliance
Document type:
Consent form
Organization:
The Tokyo Foundation
Author:
N/A
Target audience:
Applicants to the READ JAPAN PROJECT
Effective period:
N/A
Approval date:
N/A
Amendment date:
N/A
Year:
2025/26
Region / City:
UK
Theme:
Data Protection, Governance
Document Type:
Guide
Organization:
Smaller Authorities Proper Practices Panel (SAPPP)
Author:
Not specified
Target Audience:
Parish and town councils
Effective Date:
2025/26 AGAR submission
Date of Approval:
Not specified
Date of Changes:
Not specified
Context:
Guide for parish and town councils on compliance with UK GDPR and Data Protection Act 2018 in relation to AGAR Assertion 10.
Note:
Year
Document Type:
Deed
Program:
HIV Care and Treatment Program
System:
CAREWare / CAREAssist
Document type:
Administrative form and confidentiality agreement
Organization:
Oregon Health Authority, Public Health Division, HIV/STD/TB Program
Region:
Oregon
Purpose:
User account addition or deletion and confidentiality acknowledgment
Applicable law:
ORS 179.505; ORS 192.558; ORS 433.008; ORS 433.045; OAR 943 Division 14
Required signatures:
HIV Program Supervisor; IT Representative (when adding a user); Employee
Target users:
Contractors and employees accessing RW CAREWare through OHA
Access scope:
Client-level HIV data and CAREAssist Eligibility Reports
Approval authority:
Oregon Health Authority
Source type:
Official administrative and legal record governing system access and data confidentiality within a public health program
Year:
2026
Region / city:
Geneva, Switzerland
Subject:
Confidentiality agreement for shared information between parties regarding research on Zoliflodacin and its effects on human testicular function
Document type:
Agreement
Organization / institution:
GARDP FOUNDATION
Author:
Not specified
Target audience:
Research institutes, universities, pharmaceutical companies, consultants, and relevant professionals in the field
Validity period:
Not specified
Approval date:
January 9th, 2026
Amendment date:
Not specified
Policy Guide and Checklist for Privacy, Confidentiality and Records Management Policy and Procedures
Year:
2023
Region / City:
Queensland
Subject:
Privacy, Confidentiality, Records Management
Document Type:
Policy Guide
Organization / Institution:
Organisation
Author:
Not specified
Target Audience:
Employees, volunteers, governance body members
Effective Period:
Not specified
Approval Date:
Not specified
Date of Changes:
Not specified
Version:
1.0 draft
Date Equality Screened:
13 February 2023
Approved by IGG:
10 January 2023
Approved by EMT:
22 March 2023
Approved by Business Committee:
2 May 2023
Approved by Council:
9 May 2023
Review Date:
May 2025
Organisation:
Patient and Client Council
Jurisdiction:
United Kingdom
Legal Framework:
UK General Data Protection Regulation (UK GDPR)
Document Type:
Policy
Subject Area:
Data protection and information governance
Applies To:
Staff, contractors, third-party service providers
Source Type:
Organisational policy document