General Data Protection Regulation (GDPR)
membermojo provides online membership services for organisations.
In data protection terms we are the data processor for your organisation member
data, and your organisation is the data controller.
(ICO key definitions)
We provide the tools and controls that help implement
managing personal member data.
- What personal data is stored -
you define the personal data (membership form)
that needs to be held for your organisation.
- Gaining consent -
your form can include 'accept terms' fields that must be ticked before the
We store the date that the application, and therefore the consent,
- Where data is stored -
all servers and backups are hosted in secure UK facilities.
- How data is protected -
we provide security and access controls for your member data.
- How long data is kept for -
you define how long personal data is retained and we automate the deletion.
We also provide functions that assist members and administrators to
exercise individual rights under GDPR.
- Right to access - members can sign in to view their own personal data.
- Right to rectification - members can sign in and amend their
own personal data.
- Right to Erasure - administrators can securely delete personal data
for members requesting their data be erased.
Erasing a member will remove their member record and anonymise any
activity, attendance and (optionally) payment records.
More details on data protection principles and GDPR can be found on the
Information Commissioners Office (ICO) website.