Privacy Notice and Security Policy
This policy applies to our website, use of emails, phone and text messages for marketing purposes, and any other methods we use for collecting information. It covers what we collect and why, what we do with the information, what we will not do with the information, and what rights you have.
What is personal data?
Personal data is information that can be used to help identify an individual, such as name, address, phone number or email address.
The policy in brief
It is important that you read the full policy to understand what information we hold, how we may use it, and what your rights are – but if you do not have time to read it all now, here is a brief summary:
What information do we collect and why?
We will only ever collect the information we need – including data that will be useful to help improve our services. We collect two kinds of information:
We collect this information in connection with specific activities, such as newsletter requests, feedback, donations, competition entries etc. The information is either needed to fulfil your request or to enable us to provide you with a more personalised service.
What do we do with the information?
We will use the information you provide to:
Sensitive Personal Information
Sensitive personal information is sometimes referred to as ‘special categories of personal data’ or ‘sensitive personal data’. The Hospice may from time to time need to process sensitive personal information. We will only process sensitive personal information if we have a lawful basis for doing so, e.g. it is necessary for the performance of the employment contract, to comply with the Hospice’s legal obligations or for the purposes of the organisation’s legitimate interests; and one of the special conditions for processing sensitive personal information applies, e.g.:
Using your information for marketing
If we are holding your details on our Fundraising database in May 2018 we will write to tell you that we are doing so and give you the option to opt out. If we do not hear from you, we will continue to hold your details. We may write to you to keep you informed of the valuable work we are doing. If you do not wish to receive communications in this way you can opt out by phoning 01527 871051, emailing email@example.com or writing to The Data Protection Officer, Primrose Hospice, St Godwald’s Road, Bromsgrove, B60 3BW.
We will only send you marketing information by phone, text or email if you have given us specific ‘opt-in’ consent to do so and have agreed that we can communicate with you in this way. If you do not wish to receive communications in this way you can opt out by phoning 01527 871051, emailing firstname.lastname@example.org or writing to The Data Protection Officer, Primrose Hospice, St Godwald’s Road, Bromsgrove, B60 3BW.
As of 25 May 2018, only those people who have opted in will receive these electronic communications. If you want to receive this information but have not opted in, you can do so by phoning 01527 871051, emailing email@example.com or writing to The Data Protection Officer, Primrose Hospice, St Godwald’s Road, Bromsgrove, B60 3BW.
Sharing your information
We will only share your information if:
We are working with carefully-selected partners that carry out work on our behalf. These partners may include NHS services and related support services, mailing houses, marketing agencies and IT specialists. The kind of work we may ask them to do includes sending postal mail, emails and text messages and processing card payments. We only choose partners we can trust. We will only pass personal data to them if they have agreed to:
Storing your information
Information is stored by us on computers located in the UK. We may transfer the information to other offices and to other reputable third party organisations as explained above – they may be situated inside or outside the European Economic Area. We may also store information in paper files.
We place a great importance on the security of all personally identifiable information associated with our patients, clients, staff, supporters, customers and users. We have security measures in place to attempt to protect against the loss, misuse and alteration of personal data under our control. For example, only authorised personnel are authorised to access user information and we use secure methods to encrypt financial and personal information. While we cannot ensure or guarantee that loss, misuse or alteration of data will not occur while it is under our control, we use our best efforts to try to prevent this.
Unfortunately, the transmission of data across the internet is not completely secure and whilst we do our best to try to protect the security of your information we cannot ensure or guarantee that loss, misuse or alteration of data will not occur whilst data is being transferred.
We will keep your information only for as long as we need it to: meet statutory requirements, provide you with the services or information you have required, to administer your relationship with us, or to ensure we do not communicate with people that have asked us not to. When we no longer need information we will always dispose of it securely, using specialist companies if necessary to do this work for us.
What we don’t do with your information
We never sell or share your information to other organisations to use for their own purposes.
The Data Protection Act gives you certain rights over your data and how we use it. These include:
If you wish to exercise any of these rights please The Data Protection Officer, Primrose Hospice, St Godwald’s Road, Bromsgrove, B60 3BW.
For more information about your rights under the Data Protection Act go to the website of the Information Commissioner’s Office at ico.org.uk.
What are ‘cookies’?
Do I have to agree to cookies?
If you prefer not to accept a cookie, you can navigate the website like a normal user. You can switch off cookies in your web browser if they do not want to be tracked.
Where can I get more information?
Further information about cookies can be found at on the ICO website www.ico.org.uk
Some of the services we offer are aimed specifically at children (for example our Bereavement Support Services) and to deliver these services safely it is necessary for us to collect data and store it on our database. Before we collect data from anyone under 18 we will always obtain the permission of a parent or guardian before registering with us.
It is our policy not to request donations from children under 18.
If you have any questions about this policy or how We use data please contact the Data Protection Officer at firstname.lastname@example.org or writing to The Data Protection Officer, Primrose Hospice, St Godwald’s Road, Bromsgrove, B60 3BW.