General Data Protection Regulation

Positive Futures and the General Data Protection Regulation (GDPR)

What we’re doing to prepare for the new data protection law, to make sure your personal and sensitive data is always collected, stored, analysed and shared securely and legally.

The GDPR comes into effect on 25 May 2018 and this affects any organisation which holds personal data. As we store and use a variety of personal information from the people we support, our staff and volunteers as well as others, we are working to make sure that we will be prepared for the changes. This means that your personal data will carry on being handled securely and in line with the latest regulations.

Official guidance

The Information Commissioner’s Office ( has published guidance on the GDPR which we will be following to facilitate Positive Futures’ compliance:

Implementing GDPR within Positive Futures

We have established an internal working group, which is supported by a dedicated project team, and this group will work together to implement the GDPR before it comes into effect.

Impact on the people we support, staff and other stakeholders

Our systems and services will not be changing and we expect any impact will be small.
Our duty to safeguard all personal data has not changed. The GDPR creates some new rights for individuals and also it strengthens some of the rights that currently exist under the Data Protection Act. We will work to make sure that these rights are properly implemented, and any changes in the ways we collect, store or share your data are communicated to you.

Contact us

We are keen to be as open and transparent as possible. If you would like any further information on how we are responding to the changes introduced by the GDPR, please contact us.