GDPR – CCTV Guidelines

You may have heard about the new General Data Protection Regulation (“GDPR”), that comes into effect May 25, 2018.

Because CCTV recording is governed by the Data Protection Act, businesses can be liable for fines of up to £500,000 if it is misused. So it’s important to make sure guidelines are closely followed. As the person responsible for CCTV in your business, it is your duty to make sure the CCTV system is installed correctly and the company complies with CCTV legislation guidelines.If you have a Maintenance and Support agreement with us, we can do all this for you. If you want a Maintenance and Support agreement with us, please contact me on 07977177775 or email me to discuss what you exactly need. Otherwise, please follow the below Guidelines to comply with the GDPR regulations.

Guidelines

1. Register with the Information Commissioner’s Office as a CCTV operator
2. Have a stated purpose for your CCTV system and review this regularly 3. Carry out a Privacy Impact Assessment and publish this if appropriate (You can find out more about Privacy Impact Assessments here.) 4. Put up clear signage, warning there is CCTV surveillance on the property 5. Publish the name of someone in your business that people can raise queries and complaints with 6. Appoint a person responsible for your CCTV system 7. Implement clear rules, policies, and procedures around CCTV surveillance for your business 8. Make sure your staff are fully aware of their responsibilities and any policies and procedures 9. Make sure CCTV recordings are captured and stored securely 10. Don’t keep recordings for longer than you need (31 days is standard) 11. Delete older CCTV recordings regularly and in a secure way 12. Restrict staff access to CCTV recordings and implement a disclosure policy 14. Don’t record conversations between members of the public 15. Follow recognised technical and operational standards as appropriate 16. Do not install CCTV in private spaces such as changing rooms and toilets 17. Make sure recordings you capture can be used by the police and courts if necessary, e.g. by ensuring the date and time are set correctly 18. Audit your CCTV operation regularly to check legal requirements, policies and standards are complied with 19. Publish your audit findings in a document 20. If you are using your CCTV system to cross-reference against a database (for example, if you are checking car number plates), then make sure your reference database is accurate and up to date. To help comply with GDPR consent requirements, I need to confirm that you would like to receive email content from me. I hope that my emails and content is interesting and useful to you. If you’d like to continue hearing from me please update your subscription settings. Regards and Thanks Eoin Clarke Managing Director 07977177775 eoin@cctvcamera.london cctvcamera.london