Hucclecote Community Association complies with the General Data Protection Regulation that came into force in May 2018.  This protects your personal data, which is defined as any information by which you can be identified.

We undertake to store your personal data securely, to hold only data that is necessary for the purposes below, to protect your data from loss, misuse, and unauthorised access or disclosure, to keep your data up to date, and only to hold it for as long as is relevant or necessary.

We hold your personal data for the following purposes:

  1. To inform you of the Association’s news, events and activities;
  2. To promote the Association’s aims and objectives;
  3. To administer membership records;
  4. To manage our trustees, employees, and volunteers;
  5. To manage records regarding room hire bookings, whether regular or occasional;
  6. To manage records pertaining to bookings and ticket sales for individual events and activities.

The basis for holding your data is that yu have given your permission (in the case of a and b above), or that it is necessary in order to operate the Association’s administration and activities (in the case if c to f above).

Your personal data is held securely on computers that are password-protected, and in the case of membership and booking forms in physical files, all of which are retained in an office that is kept locked at times when not occupied.  The only people with access to the data are the office staff and the HCA officers and trustees.  A copy of the data is held on a portable hard disk that is retained securely at all times by one individual among the office staff and officers.  Your data will not be made available to any other individual or organisation for any purpose (other than in the rare situation where there is a legal obligation to do so).

The specific data that we hold is normally limited to your title, name, address, telephone number, and e-mail address (plus, in the case of members, your join date, membership category, and renewal record).

The General Data Protection Regulation is administered by the Information Commissioner’s Office and further information may be found at