The General Data Protection Regulation (GDPR) takes effect from 25 May 2018. The GDPR is a standardized user data protection framework which operates across Europe and imposes obligations on organizations, like BPOS, that handle the personal data of people in the European Economic Area.
This page briefly explains what BPOS is doing to work towards GDPR compliance.
First, we are improving our transparency by developing our Privacy Policy to identify the information that we collect about our users, how we use that information and keep it safe. If you continue to be a member of BPOS after we introduce these updates, it means you agree to this new policy.
Second, we recognize that it’s important for you to control your information so we are considering how to develop features that will help you to easily manage and access some of your information held by BPOS. We will provide more information on these features as they become available.
Third, since we use some third-party suppliers to make our website available, we are reviewing these contracts with a view to ensuring that they comply with applicable laws, including GDPR. Where amendments to these agreements are required we will enter into Data Processing Agreements with our suppliers.
Fourth, we recognize that we have a responsibility to protect your data so we are improving our internal controls around committee access to data.
None of these steps are likely to impact your BPOS membership day to day.
For support on anything related to GDPR, including how to access, inspect, update and remove your personal information with respect to BPOS, please email us at secretary@bpos.org.