Eglwyswrw and District Heritage Society

Cymdeithas Treftadaeth Eglwyswrw a'r Fro



Eglwyswrw and District Heritage Society

Data Protection and Use of Personal Data

The General Data Protection Regulation (GDPR), which came into force on 25th May 2018, regulates the rights of individuals over their personal data, in digital and hard copy and all other formats, and requires that organisations document how and why they process such data. 'Personal data' is any information relating to a living person, by which that person might be identified, and 'Processing' is any activity carried out involving personal data, including holding and storing it.

The Eglwyswrw and District Heritage Society (the Society) is an association of individual members who are interested and concerned with the heritage, traditions and local history of the modern civil parish of Eglwyswrw and its environs. Its officers (Chairperson, Vice Chairperson, Secretary and Treasurer) are elected annually, and its management decisions are made by the members at monthly meetings and the Annual General Meeting. This document describes the personal data that the Society collects and how it manages and uses this.

The Society is the Data Controller for all personal data that it holds and processes. It may be contacted through its e-mail address, to which there is a link on the home page of the Society's website.

The Society may obtain, hold and process personal data usually consisting of personal details such as name, postal and e-mail addresses, and telephone number, and membership subscription details, but in some cases we may hold other information such as particular expertises, membership of other societies, web addresses, photographs etc.

The Society does not normally hold or process sensitive personal data (as defined by the GDPR) or special category data (as defined by the GDPR).

The personal data held by the Society is obtained directly from members or correspondents or in some cases from a third-party organisation with common interests to those of the Society (such as a local history society or community organisation).

The Society holds this personal data on the lawful basis of Legitimate Interests, being information necessary to implement and manage our activities and processes in achieving the objectives stated in our Constitution. Only information required for these purposes is obtained and processed, without which the Society is unlikely to be able to fulfill its purposes.

The Society does not disclose the personal data it holds without the express consent of the individuals concerned, unless there is an overriding legal obligation to do so. It does not share this data with any other organisation for marketing, market research or commercial purposes. It does not use cookies on its website or pass details to other websites. It does provide links to other websites from its own site but has no control over these. People using these links are advised to read the privacy policies on those websites to find out what they do with their information. The Society will not hold or process personal information that it may receive when its website is accessed from another website.

The Society uses the personal data it obtains and/or holds to :
• To manage membership, maintain a register of members and communicate with members
• To manage financial records and accounts
• To respond to enquiries or requests for information or assistance with research relating to the aims and objectives of the Society.
• To advertise and report its own meetings, events, and publications to other organisations with common interests to those of the Society (such as local history societies or community groups) in its environs, and to the local press.
• To provide contact details of speakers, groups and individuals offering local history services, talks and presentations (with their consent or at their request) to other organisations with common interests to those of the Society (such as local history societies or community groups) in its environs, and to correspondents with like interests (at their request).

The Society will hold and process the personal data of members until their membership ceases. Personal information received by the Society from other organisations and individuals will be appropriately held and processed until the purpose for which the Society holds the information has been achieved, or the consent to hold the information expires or is withdrawn.

The GDPR confers certain rights upon individuals whose personal data is held by the Society. These are the right to gain access to their personal data; to have inaccurate or incomplete personal data rectified; to restrict the processing of their personal data; to have their personal data erased; to restrict the processing of their personal data; to obtain and reuse their personal data for their own purposes; to object to the processing of their personal data in certain circumstances; to object to automated decision making and profiling. Detailed explanations of these rights can be found at

If you are unhappy with the Society's handling of your personal data, or believe that the Society may not be meeting the requirements of the GDPR, you should contact the Society in the first instance, at its e-mail address to which there is a link on the home page of the Society's website. You also have the right to complain to the Information Commissioner’s Office at

This statement may be revised at any time in line with developments in the Society's activities and in law or guidance, or other changes in circumstance.


Gartref   Home