Data Protection & Privacy Policy

Data Protection and Privacy Statement

This Data Protection and Privacy Policy sets out the standards you can expect when we ask for or record your personal information, and explains how we’ll use it.

Our Commitment

When we handle and store the personal information including photographs and video relating to our members as well as prospective members and individuals we will follow the law, including the Data Protection Act 1998.

When we ask you for personal information, we promise to:

  • Explain why we need it
  • Only ask for what we need
  • Treat it as confidential

When we record and use your personal information, we promise to:

  • Only access it when we have a valid reason to do so
  • Only share what is necessary and relevant
  • Protect it and make sure nobody has access to it who shouldn’t
  • Not sell it to commercial organisations

When we share your personal information with another organisation, we promise to:

  • Ensure that this is only done with your consent, or if we are required to do so by law
  • Follow the Information Commissioner’s Office’s Data Sharing Code of Practice to ensure the other organisation treats your information with the same level of care we do (www.ico.org.uk/media/for-organisations/documents/1068/data_sharing_code_of_practice.pdf)

If you are unhappy with how we record and use your information you should follow our complaints procedure.

Please let us know as soon as possible if anything relating to your contact details or issues changes, which may affect the information we hold.

Giving Your Consent

We must ask your consent to record, use or share personal information.

What you are agreeing to

If you give your consent you are saying data such as contact details, date of birth, medical history, membership history, details including payment information and queries and complaints will be held by NDDS and used for the following reasons:

  • to administer and manage your membership;
  • to provide access and participation in NDDS events;
  • to fulfil NDDS’s regulatory functions;
  • and to communicate with you.

Some of this information is provided by you when you make enquiries with us or with your application for membership. Other information will be obtained during the course of your membership from you or third parties, such as other members to enable us to carry out the purposes set out above.

We may also use your information for fundraising and marketing purposes if you have consented separately for this. This fundraising and marketing may be by mail, telephone, fax, social media or email.

How you give your consent

On contacting NDDS by telephone or electronically you will be sent a Data Protection Act: Consent Form.

How to withdraw your consent

If you have changed your mind about consent you have already given, please contact NDDS.

Sensitive Information

Some of the information we ask you for or which you provide may be sensitive personal data, such as information about medical conditions. We will not use such sensitive personal data except for the purposes of processing your membership, safeguarding and for making any reasonable adjustments where possible to enhance your travel.

Disclosure of information to third parties

We will never sell your personal data to third parties and we do not disclose your information to any third parties or bodies with which we are not associated unless we have your permission to do so or are required to do so by law.

How we will store your information

We will store your information on a secure server which is accessed by NDDS. Paper copies of your information are stored securely and are only accessed by staff of NDDS.

The Role of the Data Controller

A data controller is responsible for your data and must make sure that your data is processed in accordance with the law. They are responsible for making sure that the information held about you is accurate and is stored securely.

Obtaining the information we hold about you

You have a right to ask for a copy of your information and to correct any inaccuracies. Under the Data Protection Act 1998, NDDS is required to respond to your request within 40 days. If you would like a copy of the information we hold about you, please write to The Manager, Northampton Door-to-Door Service, Gladstone Close, Northampton, NN5 7AY. A fee of £10 is payable. Cheques should be made payable to “NDDS”.

By | 2018-07-06T13:18:19+01:00 July 6th, 2018|0 Comments