How To Directory
- 1. How to Use Groups Hub
- 2. How to Manage Health & Safety
- 3. How to Make Your Society Inclusive
- 4. How to Book Facilities and Transport
- 5. How to Manage Your Money
- 6. How to Manage Equipment
- 7. How to Manage Communications
- 8. How to Run a Sports Club
- 9. How to Handover and Democratic Processes
- 10. How to Organise Events
- Involving Alumni
- Running an internal or external event
- Considering Health & Safety for your event
- Involving external speakers
- Adding an Event the the SUSU Calendar
- Requesting Box Office Tickets
- Promotion from SUSU
- Running an event outside SUSU premises
- Running your own charity event through RAG
- Creating a balanced programme of events
- Running an event on SUSU premises
- 11. How to Start a New Club or Society
- 12. Adopt a Society
How to Comply with Data Protection Policy
Information held by the Student Group, which may be held on paper or on a computer or other media, is subject to certain legal safeguards specified in the Data Protection Act 2018 and GDPR.
The key principles of GDPR are that personal data should be:
a) processed lawfully, fairly and in a transparent manner in relation to individuals
b) collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes; further processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes shall not be considered to be incompatible with the initial purposes
c) adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed
d) accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay
e) kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes subject to implementation of the appropriate technical and organisational measures required by the GDPR in order to safeguard the rights and freedoms of individuals
f) processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.
To ensure GDPR regulations are met, your group must complete a privacy policy which should be uploaded on your groups hub page. Those wishing to become a member will have to read and agree to your policy before they can obtain membership.
SUSU will also employ the same safeguards when dealing with information provided to them by a student group.