The ICO has updated its guide on how to deal with data protection complaints. It is written with businesses in mind, but applies equally well to non-profits.
The stages include:
- Acknowledge
- Investigate
- Regular updates
- Keep a record
- Respond
- Review
It includes top tips and links to other helpful resources, and you can read it at https://ico.org.uk/for-organisations/sme-web-hub/how-to-deal-with-data-protection-complaints-you-receive-as-a-small-business/
This should align with your own internal processes, but if not then we recommend you consider a Data Protection Review and you can find out more by getting in touch in any of the normal ways, using https://zorva.info/about-us/contact-us/ or by booking a 20-minute insight call at https://zorva.info/free-insight-call/ (for TinoPai members, but it’s free to join, and you get lots of other benefits including free live and on-demand webinars).