Burma Star Association
Burma Star Association

Data Security Breach Policy

  1. In order to function, The Burma Star Association (BSA) processes personal data, including that of its employees, volunteers and those whom it helps. It is registered with the ICO (ZA123451).
     
  2. The BSA is committed to maintaining the highest standards of Data Protection; view the full Privacy Policy and Data Handling Policy. This includes taking appropriate measures against unauthorised or unlawful processing and against accidental loss, destruction or damage to personal data. Nonetheless, a breach may occur through, for example:
    • Loss or theft of data or equipment on which data is stored.
    • Weakness in access controls allowing unauthorised use.
    • Equipment failure.
    • Human error.
    • Unforeseen circumstances such as a fire/flood.
    • Hacking attack.
    • ‘Blagging’ offences where information is obtained by deceit.
       
  3. This policy and procedure will be reviewed regularly to comply with current best practice and advice offered by the Information Commissioner’s Office (ICO). In the event of a breach, the BSA will co-operate, as appropriate, with the ICO and other authorities to minimise the risk to data subjects and to reduce the risk of a breach re-occurring.
     
  4. The following procedure will vary in practice according to the nature and amount of data lost, but consists of 4 elements:
    • Containment and recovery.
    • Assessment of ongoing risk.
    • Notification of breach.
    • Evaluation and response.
       
  5. This procedure is designed to comply with the GDPR requirement that, breaches resulting in a risk to the rights and freedoms of individuals, should be reported to the ICO within 72 hours and that in a breach resulting in a high risk to the rights and freedoms of individuals the individuals must be informed.
     
  6. The BSA considers data breaches and potential data breaches as a senior management responsibility to be dealt with in accordance with ICO guidelines.
     
  7. All staff members are required to comply with this policy and accompanying procedures.
     
  8. If you suspect a data breach has occurred which may affect you, please contact the BSA Administrator as soon as possible at admin@burmastar.org.uk or 020 7823 4273.

When you go home

tell them of us and say,

For your tomorrow,

we gave our today

Lt Gen Slim at Fort Dufferin, Mandalay, in March 1945 Lt Gen Slim at Fort Dufferin, Mandalay, in March 1945
Print Print | Sitemap
© Burma Star Association