{"id":271,"date":"2018-07-12T08:50:31","date_gmt":"2018-07-12T08:50:31","guid":{"rendered":"http:\/\/pensions.cardiffcouncilwebteam.co.uk\/?page_id=271"},"modified":"2023-06-06T07:04:54","modified_gmt":"2023-06-06T07:04:54","slug":"data-protection-gdpr","status":"publish","type":"page","link":"https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/data-protection-gdpr\/","title":{"rendered":"Data Protection (GDPR)"},"content":{"rendered":"<div class=\"wpb-content-wrapper\"><p>[vc_row][vc_column][vc_column_text]<\/p>\n<h1>Data Protection<\/h1>\n<p>The General Data Protection Regulation (GDPR) is a new set of European Union (EU) regulations which came into force on 25 May 2018. These new regulations will change how organisations process and handle data, with the key aim of giving greater protection and rights to individuals.<\/p>\n<p><a href=\"https:\/\/www.cardiffandvalepensionfund.org.uk\/wp-content\/uploads\/FULL-PRIVACY-NOTICE-Version-5-valid-from-22-February-2022-FINAL.docx\">Privacy Notice<\/a><\/p>\n<p><a href=\"https:\/\/www.cardiffandvalepensionfund.org.uk\/wp-content\/uploads\/GDPR_PNSv3.0c-Summary-Notice-September-2021.docx\">Summary Notice<\/a><a href=\"https:\/\/www.cardiffandvalepensionfund.org.uk\/wp-content\/uploads\/Privacy-Summary.pdf\"><br \/>\n<\/a><\/p>\n<h2>Will the GDPR still apply to the UK after Brexit?<\/h2>\n<p>The UK is in the process of implementing a new Data Protection Bill which largely includes all the provisions of the GDPR. There are some small differences, but once the Bill has passed through Parliament and become an Act, UK law on data protection will largely be the same as that of the GDPR.<\/p>\n<h2>So what\u2019s new?<\/h2>\n<p>There are new and extended rights for individuals in relation to the personal data an organisation holds about them, for example, an extended right to access and a new right of data portability. You can obtain further information about these rights from the <a href=\"http:\/\/www.ico.org.uk\" target=\"_blank\" rel=\"noopener noreferrer\">Information Commissioner\u2019s Office <i class=\"fa fa-external-link\"><\/i><\/a> or via their telephone helpline 0303 123 1113.<\/p>\n<p>In addition, organisations will have an obligation for better data management and a new regime of fines will be introduced for use when an organisation is found to be in breach of the GDPR.<\/p>\n<h2>What are the main principals of the GDPR?<\/h2>\n<p>The GDPR states that personal data must be:<\/p>\n<ul>\n<li>processed lawfully, fairly and in a transparent manner<\/li>\n<li>collected only for specified, explicit and legitimate purposes<\/li>\n<li>adequate, relevant and limited to what is necessary<\/li>\n<li>accurate and kept up to date<\/li>\n<li>held only for the absolute time necessary and no longer<\/li>\n<li>processed in a manner that ensures appropriate security of the personal data.<\/li>\n<\/ul>\n<h2>What is personal data?<\/h2>\n<p>The GDPR applies to \u2018personal data\u2019 meaning any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier.<\/p>\n<p>This definition provides for a wide range of personal identifiers to constitute personal data, including name, identification number, location data or online identifier, reflecting changes in technology and the way organisations collect information about people.<\/p>\n<h2>How will the GDPR affect LGPS members?<\/h2>\n<p>Your LGPS fund will already have procedures in place which comply with similar data protection principles under the Data Protection Act 1998. The new regulations will reinforce these existing requirements, and LGPS members are unlikely to notice a change in the service they receive from their LGPS fund.<\/p>\n<h2>How will members know that their LGPS fund is GDPR compliant?<\/h2>\n<p>Every LGPS fund will be required to update their privacy notice in line with the new requirements setting out, among other things, why certain data is held, the reason for processing the data, who they share the data with and the period for which the data will be retained. Within the notice, members will also be provided with additional information about their rights under the legislation.<\/p>\n<h2>Why do LGPS funds hold personal data?<\/h2>\n<p>LGPS funds require various pieces of personal data provided by both the individual member and their employer in order to administer the pension scheme. This data includes, but is not limited to, names, addresses, National Insurance numbers and salary details which are required to maintain scheme records and calculate member benefits.<\/p>\n<h2>Who do LGPS funds share personal data with?<\/h2>\n<p>On occasion, LGPS funds are required to share personal data with third parties in order to meet regulatory and government requirements, to gather necessary information for the accurate payment of member benefits and to ensure scheme liabilities are met. Each fund\u2019s privacy notice will set out who they share data with; this is likely to include bodies such as scheme employers, fund actuaries, auditors and HMRC.<\/p>\n<h2>Can LGPS members ask for their data to be deleted?<\/h2>\n<p>The GDPR provides individuals with the \u2018right to be forgotten\u2019 in certain limited circumstances. However, in practical terms the exercise of this right in relation to LGPS funds is limited as the deletion of data can prevent the fund from carrying out its duties. LGPS funds are required to process personal data to comply with legal obligations under pension legislation, therefore, the \u2018right to be forgotten\u2019 is unlikely to apply to data held by LGPS funds.<\/p>\n<h2>What happens if there is a data breach?<\/h2>\n<p>Data breaches are a rare occurrence within LGPS funds. However, should a security breach concerning a member\u2019s personal data occur that is likely to result in a risk to that member\u2019s rights and freedoms, there will be a direct obligation under the GDPR for the fund to inform the Information Commissioners Office within 72 hours of the breach taking place.<\/p>\n<h2>Contacting us<\/h2>\n<p>Please contact the Fund administrator Cardiff and Vale of Glamorgan Pension Fund for further information:<\/p>\n<p>Tel: 029 2087 2334<br \/>\nEmail: <a href=\"mailto:pensions@cardiff.gov.uk\">pensions@cardiff.gov.uk<\/a><\/p>\n<p>Cardiff County Hall<br \/>\nRoom 345<br \/>\nAtlantic Wharf<br \/>\nCardiff<br \/>\nCF10 4UW<\/p>\n<p><strong>Data Protection Officer<\/strong><br \/>\nYou may also contact our Data Protection Officer <a href=\"mailto:dataprotection@cardiff.gov.uk\">dataprotection@cardiff.gov.uk<\/a>[\/vc_column_text][\/vc_column][\/vc_row]<\/p>\n<\/div>","protected":false},"excerpt":{"rendered":"<p>[vc_row][vc_column][vc_column_text] Data Protection The General Data Protection Regulation (GDPR) is a new set of European Union (EU) regulations which came into force on 25 May 2018. These new regulations will change how organisations process and handle data, with the key aim of giving greater protection and rights to individuals. Privacy Notice Summary Notice Will the GDPR still apply to the UK after Brexit? The UK is in the process of implementing a new Data Protection Bill which largely includes all the provisions of the GDPR. There are some small differences, but once the Bill has passed through Parliament and become an Act, UK law on data protection will largely be the same as that of the GDPR. So what\u2019s new? There are new and extended rights for individuals in relation to the personal data an organisation holds about them, for example, an extended right to access and a new right of data portability. You can obtain further information about these rights from the Information Commissioner\u2019s Office or via their telephone helpline 0303 123 1113. In addition, organisations will have an obligation for better data management and a new regime of fines will be introduced for use when an organisation is [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":146,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.6 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Data Protection (GDPR) - Cardiff and Vale Pension Fund<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/data-protection-gdpr\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Data Protection (GDPR) - Cardiff and Vale Pension Fund\" \/>\n<meta property=\"og:description\" content=\"[vc_row][vc_column][vc_column_text] Data Protection The General Data Protection Regulation (GDPR) is a new set of European Union (EU) regulations which came into force on 25 May 2018. These new regulations will change how organisations process and handle data, with the key aim of giving greater protection and rights to individuals. Privacy Notice Summary Notice Will the GDPR still apply to the UK after Brexit? The UK is in the process of implementing a new Data Protection Bill which largely includes all the provisions of the GDPR. There are some small differences, but once the Bill has passed through Parliament and become an Act, UK law on data protection will largely be the same as that of the GDPR. So what\u2019s new? There are new and extended rights for individuals in relation to the personal data an organisation holds about them, for example, an extended right to access and a new right of data portability. You can obtain further information about these rights from the Information Commissioner\u2019s Office or via their telephone helpline 0303 123 1113. In addition, organisations will have an obligation for better data management and a new regime of fines will be introduced for use when an organisation is [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/data-protection-gdpr\/\" \/>\n<meta property=\"og:site_name\" content=\"Cardiff and Vale Pension Fund\" \/>\n<meta property=\"article:modified_time\" content=\"2023-06-06T07:04:54+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/data-protection-gdpr\/\",\"url\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/data-protection-gdpr\/\",\"name\":\"Data Protection (GDPR) - Cardiff and Vale Pension Fund\",\"isPartOf\":{\"@id\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/#website\"},\"datePublished\":\"2018-07-12T08:50:31+00:00\",\"dateModified\":\"2023-06-06T07:04:54+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/data-protection-gdpr\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/data-protection-gdpr\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/data-protection-gdpr\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"About the fund\",\"item\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Data Protection (GDPR)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/#website\",\"url\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/\",\"name\":\"Cardiff and Vale Pension Fund\",\"description\":\"Looking after your future\",\"publisher\":{\"@id\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/#organization\",\"name\":\"Cardiff and Vale of Glamorgan Pension Fund\",\"url\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/wp-content\/uploads\/Logox2.png\",\"contentUrl\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/wp-content\/uploads\/Logox2.png\",\"width\":511,\"height\":300,\"caption\":\"Cardiff and Vale of Glamorgan Pension Fund\"},\"image\":{\"@id\":\"https:\/\/www.cardiffandvalepensionfund.org.uk\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Data Protection (GDPR) - Cardiff and Vale Pension Fund","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/data-protection-gdpr\/","og_locale":"en_US","og_type":"article","og_title":"Data Protection (GDPR) - Cardiff and Vale Pension Fund","og_description":"[vc_row][vc_column][vc_column_text] Data Protection The General Data Protection Regulation (GDPR) is a new set of European Union (EU) regulations which came into force on 25 May 2018. These new regulations will change how organisations process and handle data, with the key aim of giving greater protection and rights to individuals. Privacy Notice Summary Notice Will the GDPR still apply to the UK after Brexit? The UK is in the process of implementing a new Data Protection Bill which largely includes all the provisions of the GDPR. There are some small differences, but once the Bill has passed through Parliament and become an Act, UK law on data protection will largely be the same as that of the GDPR. So what\u2019s new? There are new and extended rights for individuals in relation to the personal data an organisation holds about them, for example, an extended right to access and a new right of data portability. You can obtain further information about these rights from the Information Commissioner\u2019s Office or via their telephone helpline 0303 123 1113. In addition, organisations will have an obligation for better data management and a new regime of fines will be introduced for use when an organisation is [&hellip;]","og_url":"https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/data-protection-gdpr\/","og_site_name":"Cardiff and Vale Pension Fund","article_modified_time":"2023-06-06T07:04:54+00:00","twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/data-protection-gdpr\/","url":"https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/data-protection-gdpr\/","name":"Data Protection (GDPR) - Cardiff and Vale Pension Fund","isPartOf":{"@id":"https:\/\/www.cardiffandvalepensionfund.org.uk\/#website"},"datePublished":"2018-07-12T08:50:31+00:00","dateModified":"2023-06-06T07:04:54+00:00","breadcrumb":{"@id":"https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/data-protection-gdpr\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/data-protection-gdpr\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/data-protection-gdpr\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.cardiffandvalepensionfund.org.uk\/"},{"@type":"ListItem","position":2,"name":"About the fund","item":"https:\/\/www.cardiffandvalepensionfund.org.uk\/about-the-fund\/"},{"@type":"ListItem","position":3,"name":"Data Protection (GDPR)"}]},{"@type":"WebSite","@id":"https:\/\/www.cardiffandvalepensionfund.org.uk\/#website","url":"https:\/\/www.cardiffandvalepensionfund.org.uk\/","name":"Cardiff and Vale Pension Fund","description":"Looking after your future","publisher":{"@id":"https:\/\/www.cardiffandvalepensionfund.org.uk\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.cardiffandvalepensionfund.org.uk\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.cardiffandvalepensionfund.org.uk\/#organization","name":"Cardiff and Vale of Glamorgan Pension Fund","url":"https:\/\/www.cardiffandvalepensionfund.org.uk\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.cardiffandvalepensionfund.org.uk\/#\/schema\/logo\/image\/","url":"https:\/\/www.cardiffandvalepensionfund.org.uk\/wp-content\/uploads\/Logox2.png","contentUrl":"https:\/\/www.cardiffandvalepensionfund.org.uk\/wp-content\/uploads\/Logox2.png","width":511,"height":300,"caption":"Cardiff and Vale of Glamorgan Pension Fund"},"image":{"@id":"https:\/\/www.cardiffandvalepensionfund.org.uk\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/www.cardiffandvalepensionfund.org.uk\/wp-json\/wp\/v2\/pages\/271"}],"collection":[{"href":"https:\/\/www.cardiffandvalepensionfund.org.uk\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.cardiffandvalepensionfund.org.uk\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.cardiffandvalepensionfund.org.uk\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cardiffandvalepensionfund.org.uk\/wp-json\/wp\/v2\/comments?post=271"}],"version-history":[{"count":6,"href":"https:\/\/www.cardiffandvalepensionfund.org.uk\/wp-json\/wp\/v2\/pages\/271\/revisions"}],"predecessor-version":[{"id":4165,"href":"https:\/\/www.cardiffandvalepensionfund.org.uk\/wp-json\/wp\/v2\/pages\/271\/revisions\/4165"}],"up":[{"embeddable":true,"href":"https:\/\/www.cardiffandvalepensionfund.org.uk\/wp-json\/wp\/v2\/pages\/146"}],"wp:attachment":[{"href":"https:\/\/www.cardiffandvalepensionfund.org.uk\/wp-json\/wp\/v2\/media?parent=271"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}