Privacy

Data Protection and Privacy
The RPS takes the privacy and security of your data seriously. We have published this data protection policy to ensure that members and third parties are informed about on what data we hold and how it is used. The Society operates within the requirements of the Data Protection Act 1998 and the General Data Protection Regulations (GDPR) which was introduced on 25 May 2018.

This Data Protection and Privacy Policy sets out how we collect and process any personal data that we collect from you, or that you provide to us, in connection with our website, our website services and any other pages from which we link to this Data Protection and Privacy Policy.

This Data Protection and Privacy Policy should be read alongside our website Terms and Conditions.

Personal data protection principles
The Society adheres to the principles relating to processing of personal data set out in the GDPR which require personal data to be:

  • processed lawfully, fairly and in a transparent manner (Lawfulness, Fairness and Transparency); 

  • collected only for specified, explicit and legitimate purposes (Purpose Limitation);

  • adequate, relevant and limited to what is necessary in relation to the purposes for which it is processed (Data Minimisation); 

  • accurate and where necessary kept up to date (Accuracy);

  • not kept in a form which permits identification of data subjects for longer than is necessary for the purposes for which the data is processed (Storage Limitation);

  • processed in a manner that ensures its security using appropriate technical and organisational measures to protect against unauthorised or unlawful processing and against accidental loss, destruction or damage (Security, Integrity and Confidentiality);

  • not transferred to another country without appropriate safeguards being in place (Transfer Limitation); 

  • and made available to data subjects and data subjects allowed to exercise certain rights in relation to their personal data (Data Subject's Rights and Requests).

Lawfulness and fairness
The GDPR restricts our actions regarding personal data to specified lawful purposes. These restrictions are not intended to prevent processing, but ensure that we process personal data fairly and without adversely affecting the data subject.  

The GDPR allows processing for specific purposes, some of which are set out below:

  • the data subject has given his or her consent;

  • the processing is necessary for the performance of a contract with the data subject;

  • to meet our legal compliance obligations; 

  • to protect the data subject's vital interests; or

  • to pursue our legitimate interests for purposes where they are not overridden because the processing prejudices the interests or fundamental rights and freedoms of data subjects. The purposes for which we process personal data for legitimate interests need to be set out in applicable privacy notices or fair processing notices. 

Your rights under GDPR
You as an individual have rights as follows:

  • The right to be informed about processing of your personal data.

  • The right to have your personal data corrected in case of inaccuracy and to have incomplete personal information completed.

  • The right to object to processing of your personal data.

  • The right to restrict processing of your personal data.

  • The right to erasure of your personal data.

  • The right to request access to your personal data and information about how we process it.

  • The right to move your personal data (Data Portability).

  • The right to withdraw consent.

If you wish to exercise any of the rights set out above, please contact us by clicking the link here or writing to the Society at: The Royal Photographic Society, Attn: the Data Controller, Fenton House, 122 Wells Road, Bath, BA2 3AH.

What information do we hold and how do we obtain it?
In general, we receive information directly from members.

For what purpose do we use your information?

  • To provide you with necessary communications

  • To provide you with information on joining

  • To administer your membership

  • To provide you with membership benefits

  • To provide you with details of relevant events & products

Caring for your data
Data is held securely on our central membership database and on a limited number of paper records.  

We will: 

  • Not hold information about you that is excessive in relation to the purpose(s) for which it is used.

  • Use only the very latest data provided by you. To help us do this, please keep us informed if any of your details change or update your own details via MyRPS.

  • Not keep information for any purpose longer than is necessary. We may retain your records (for example upon cancellation of membership) to enable us to deal with any subsequent queries and to comply with legislative requirements.

Changes to this Privacy Policy
The Society reserves the right to change or update this Privacy Policy from time to time without prior notice to Users by updating this page. You may wish to check it each time you submit any personal data to us.