Synopsis

All managing agents have legal obligations under the General Data Protection Regulation (GDPR) and
must adhere to the general principles set down by the GDPR.

You will have to notify the Information Commissioner (ICO) of your data processing activity.

Managing agents must maintain records of their processing activities.

Managing agents must have a purpose for processing personal data and a valid lawful basis for processing
personal data.

Covering Topics

  • Overview
  • General Principles Of The GDPR
  • Obligations Of Managing Agents Under The GDPR
  • Registration With The ICO
  • What Happens If You Fail To Notify?
  • Lawful Bases For Processing Personal Data
  • Communicating information To Leaseholders
  • Right Of Access
  • Rectification And Accuracy
  • Right To Be Forgotten
  • Security Principle
  • Personal Data Breaches
  • A Landlord’s Legal Obligation To Disclose information
  • Can I Provide Names And Addresses Of Leaseholders To Other Leaseholders In The Block
  • Can A Landlord Put Up A List Of Leaseholders Who Are In Arrears?
  • Can Landlords Disclose Details Of A Leaseholder Who Left Without Paying The Rent Or Service Charge?
  • What About Handing Over Records WhenTransfers Of Management Occur?
  • What About Pitching For New Management Business?
  • Data Destruction And Shredding
  • Encryption
  • Requirement For Residential Management Companies To Notify
  • Further Information
  • Appendix I - Glossary
  • Appendix II - Data Breach Reporting Flowchart
  • Appendix III - Privacy Notice Template
  • Appendix IV - Privacy Notice Guidance

This article is for Company members only

Become a member today to access exclusive insight from The Property Institute.

Become a Member today

Becoming a member of The Property Institute opens doors for your personal development and your career.
Shutterstock 2200214153