Note that the views about GDPR on this page are those
of Neil Stevens who takes a lead role for GDPR on
the regional committee. There is probably no single
“correct” approach and you will find differing opinions
The paper below provides some background
to the new data protection regulations
that come in to force in May 2018.
There are several legal basis for processing of members’ data.
The two that concern U3As are Legitimate Interest and Consent.
You don’t need consent for everything you do with members’ data.
For some things it is better to rely on Legitimate Interest.
Here are three links to articles on the internet which explain this:-
1) This is a link to the Information Commissioner’s blog entitled:-
“Consent is not the ‘silver bullet’ for GDPR compliance”