Agenda item

Report of the Comptroller and City Solicitor.

This report was approved by the Policy and Resources Committee on 21 September 2017 and the Establishment Committee on 17October 2017.

Members received a report of the Comptroller and City Solicitor in respect of the requirements of the General Data Protection Regulation (GDPR) and the work required to secure compliance by 25th May 2018, including the appointment of a Data Protection Officer.  The GDPR strengthened privacy and other rights and increased penalties for breaches.

Members noted that the report had been approved by the Policy and Resources and Establishment Committees; the Comptroller and City Solicitor had been appointed as the Data Protection Officer (DPO) and the project plan for compliance had been audited by Mazars, showing that the City Corporation was in a good place and noting that further detail would emerge in guidance from the Information Commissioner. 

The Comptroller and City Solicitor advised that he would be running 2 training sessions for Members in January 2018 and it was likely that compulsory on-line sessions would be introduced for staff and possibly Members.  Furthermore, it was likely that use of non-City of London Corporation email addresses would cease. 

RESOLVED, that – the report be noted.