The Information Commissioner’s Office (ICO) upheld complaints made about the way Dartington Trust had acted with regard to the handling of private data last year.
A document was compiled by a previous member of staff during a handover and saved on our shared drive. To our knowledge it was only seen by two members of staff as part of meeting preparation. It was immediately removed from the shared drive after a director was alerted to its existence. Both members of staff who prepared the meeting notes have since left. There were lots of meetings with local groups at the time, and the member of staff listed the interests of those who might attend those meetings to help ensure they were as productive as possible for all in attendance.
As both a large employer and events space, Dartington Trust takes data protection very seriously. The Trust has been weathering the pandemic and making great progress with a new team leading change over the last 18 months. We apologise that an individual’s action inadvertently infringed on the data protection framework and for any distress to individuals involved. We commit to good practice and are abiding by the ICO’s advice and guidance, which includes continued staff training in data protection.