GDPR: Compliance Statement

The new EU General Data Protection Regulation (GDPR) comes into force on the 25th May 2018 and will impact every organisation which holds or processes personal data.

YAA takes data protection very seriously. We are required to adhere to the requirements of the Data Protection Act 1998, the General Data Protection Regulations 2018 (GDPR), all other related privacy laws and any codes of practice issued by the Fundraising Regulator (FR) or the Information Commissioners Office (ICO). YAA’s intention is to be compliant, user friendly and to ensure its supporters only receive information in which they are interested. Unless stated otherwise, YAA is the data controller in respect of all data it collects on this Website or otherwise. This means that YAA is responsible for full legal compliance.

The YAA has always had a strong stance on how we operate our fundraising activities.  We are clear that amongst various protocols we do not door-knock, ‘chugg’ and more importantly mail-shot our supporters.

We will never intentionally send our staff, donors and supporters or third parties information they are not interested in, and instead will share information online for people to choose whether they wish to review any Charity news/ information etc.

A full copy of our Privacy Policy, which includes GDPR adherence, is available to view on our website It can be found at the bottom of the homepage.