The Data Protection Act 1998 governs the way that the Council and other organisations hold and deal with your personal data. It also gives you the right to access data held about you. You can find out further information about the Council's responsibilities in our Data Protection Policy:
Subject access request
You can request your personal information by making a Data Subject Access Request using the:
The application incurs a cost of £10 which should be paid by a cheque made payable to: The Forest of Dean District Council. You will also need to provide photographic evidence to enable us to process your request.
Your request will be acknowledged within 7 days, we will normally respond to your request in full within 40 days of receiving your fee and the receipt of any further details or evidence we may require.
The Act requires that we notify the Information Commissioner about what personal information we hold, what purposes we use it for, who we get it from and who we give it to. This notification can help you find out what information we hold about you and therefore what you can ask for. For further details visit:
- the Information Commissioner website.
If you require further information on our Data Protection Policy or on making a Subject Access Request:
- email the Legal Team
New legislation coming 2018
The General Data Protection Regulation (GDPR) is a European Union regulation that will replace the current Data Protection Act on 25 May 2018.
GDPR has been in development since 2012 by the European Union Parliament and Council to harmonise and strengthen the rights of data subjects across Europe, including when data is transferred to third party countries.
The GDPR enhances some of the rights of individuals that currently exist under the DPA and creates new rights such as the right to be forgotten and the right to erasure.
It also provides for increased accountability and processes to demonstrate compliance. For example, a Data Protection Officer will be compulsory for public authorities and the requirements for consent are now much higher.
All breaches will have to be reported to the Information Commissioners Office within 72 hours and the potential fines for breaches are up to €20 million.
We are working to ensure compliance by May 2018. For further information visit the: