Author Topic: Privacy Policy and General Data Protection Regulation (GDPR) Statement  (Read 7042 times)

0 Members and 2 Guests are viewing this topic.

Offline CGJ

  • Vice Chancellor
  • Basically New Zealand
  • **
  • Posts: 201
    • View Profile
  • Your Nation: Dartfordia
As our service provider is based in the UK we are bound by the General Data Protection Regulations insofar as it applies in the UK (UK GDPR). The UK GDPR applies to the Independent Order as a Data Controller.

A copy of the privacy policy can be found here.

Children

The UK GDPR contains provisions intended to enhance the protection of children’s personal data. As we do not identify individual's beyond their IP address, username and email address, we do not believe any action is required.

Order Law

No amendment to TIO law is required to enforce UK GDPR, as it is contained within the Chancellory's responsibility for forum administration.

Discord

The Independent Order is not the data controller for our Discord server, as we are not responsible for the processing of personal data. However Discord maintains the same privacy policy for all users which is (to the best of our understanding) GDPR compliant. You can read their privacy policy here.

Brexit

The transition period ended on 31 December 2020, meaning the UK is no longer bound by EU rules. However, the UK has decided to continue to apply GDPR in accordance with the Data Protection, Privacy and Electronic Communications (Amendments etc) (EU Exit) Regulations 2019. This means we will continue to apply the same principles and follow the same rules as prior to Brexit. It also means that, in our privacy policy, it is referred to as 'UK GDPR'. The UK Government has provided a consolidated UK GDPR and Data Protection Act 2018 here.

Misc

As our data processing does not possess a high risk to the rights and freedoms of individuals, we are not required to undertake a Data Protection Impact Assessment (DPIA), nor are we required to appoint a Data Protection Officer (DPO). We reserve the right to reveal information we hold about you (or any other related information collected on this service) in the event of a formal complaint or legal action arising from any situation caused by your use of this forum, in accordance with the laws of the United Kingdom. We also reserve the right to make changes to this privacy policy.

We will consider on an ongoing basis all other requirements.
« Last Edit: March 14, 2021, 08:14:30 PM by CGJ »
The Most Honourable Marquess CGJ
Vice Chancellor


Dartfordia: TIOwiki - Politics - Flags - Armed Forces

Offline Orioni

  • Microstate
  • *
  • Posts: 24
    • View Profile
    • Europa NS
  • Your Nation: Orioni_2 & Noobia
Re: General Data Protection Regulation (GDPR) Statement
« Reply #1 on: January 03, 2018, 08:00:58 PM »
Very happy to read this update. I will be taking note, and move to bring into effect the same rights and regulations on other platforms. Thank you for this.
🇪🇹 The United Republic of Noobia
Nation · Factbook · News · Posts

Offline CGJ

  • Vice Chancellor
  • Basically New Zealand
  • **
  • Posts: 201
    • View Profile
  • Your Nation: Dartfordia
Re: General Data Protection Regulation (GDPR) Statement
« Reply #2 on: March 30, 2018, 06:24:03 PM »
We have now updated our terms and conditions to implement GDPR provisions. We have decided that no amendment to TIO law is required to enforce GDPR, as it is contained within the Chancellory's responsibility for forum administration, and that Aa we do not identify individual's beyond their IP address, username and email address, we do not believe any action is required in terms of provisions relating to children.

We are now requiring all members to agree to the new terms and conditions.
The Most Honourable Marquess CGJ
Vice Chancellor


Dartfordia: TIOwiki - Politics - Flags - Armed Forces

Offline CGJ

  • Vice Chancellor
  • Basically New Zealand
  • **
  • Posts: 201
    • View Profile
  • Your Nation: Dartfordia
Re: General Data Protection Regulation (GDPR) Statement
« Reply #3 on: May 15, 2018, 04:17:37 AM »
Having reviewed a few other privacy policies, I have made a number of changes to this statement, including:
- New 'Data we collect' section to set out clearly what type of data we collect
- 'Basis for processing' to detail our two bases for processing: consent and legitimate interest
- Application to Discord
- A note that data is processed inside the UK
The Most Honourable Marquess CGJ
Vice Chancellor


Dartfordia: TIOwiki - Politics - Flags - Armed Forces

Offline CGJ

  • Vice Chancellor
  • Basically New Zealand
  • **
  • Posts: 201
    • View Profile
  • Your Nation: Dartfordia
I have made a small amendment to the privacy policy following the end of the Brexit transition period (thanks Nova for pointing it out).

The transition period ended on 31 December 2020, meaning the UK is no longer bound by EU rules. However, the UK has decided to continue to apply GDPR in accordance with the Data Protection, Privacy and Electronic Communications (Amendments etc) (EU Exit) Regulations 2019. This means we will continue to apply the same principles and follow the same rules as prior to Brexit. It also means that, in our privacy policy, it is referred to as 'UK GDPR'. The UK Government has provided a consolidated UK GDPR and Data Protection Act 2018 here.

Therefore I have made a minor change to the Privacy Policy to reflect that it is UK GDPR that applies to the forum, with a link to the appropriate web source. This does not affect your rights in any way and there are no other changes to the policy.
The Most Honourable Marquess CGJ
Vice Chancellor


Dartfordia: TIOwiki - Politics - Flags - Armed Forces