Project:
467 - Restore Britain (Doing Politics Differently)
Description:
Restore Britain’s privacy documentation describes use of NationBuilder for membership management and sharing with payment processors and other service providers. This creates a governance requirement for a controlled data map, consent/lawful basis handling, processor agreements, DSAR workflows, and a single operational owner. (Source: Restore Britain Privacy Policy)
Desired Outcome:
Clear, compliant data handling across all systems with documented lawful basis, consent capture where needed, and audit-ready records.
What Could Go Wrong:
Unclear data flows or missing consents lead to GDPR breaches, complaints, and operational disruption.
Current Situation:
High-level commitments exist in the published policy; internal operational controls and evidence (registers, owners, checks) must be established.
Action Strategy:
Produce a data processing map (systems, fields, purposes, lawful basis); assign a data owner; implement DSAR/erasure workflows and periodic supplier compliance checks.
Concern Category:
M2 Project Organisation
Location:
Analysis: Not available
| Snapshot History |
|---|
| C497_260227.pdf |