Introductory remarks about how we deal with your data:
The General Data Protection Regulation (GDPR) is a new law which will update and replace the current Data Protection Act. We are sure that many, if not all of you, have received a deluge of emails from a variety of organisations about GDPR - we certainly have!
Sutton Carers Centre (SCC) has always taken care to gather, record and protect your personal and often sensitive information. To support us, we use a web-based database called 'Charitylog' which we feel is the best and most secure Management Information System for charities in the UK. The people at Charitylog have particular knowledge and experience with Carers' organisations and share the same commitment to you as we do.
We believe that our values and procedures have always met the standards set by GDPR but we welcome this opportunity to review our processes to make things even clearer. We want to doubly make sure that all Carers we serve are clear about we do, how we do it, and that you have given us informed consent to store, use, and if applicable, share information with our funders about you.
We never sell to, or share your data with any other third parties; we only use your data in order to provide you with the best service and support possible.
You are welcome to update, remove or otherwise change the information we hold about you, at any time.
So what have we done this month? Sutton Carers Centre (SCC) has updated our data protection policies and procedures in line with the new GDPR guidelines, which come into effect on Friday 25th May 2018.
What do we collect?
In the provision of our services, SCC needs to collect personal data from you. Personal data is any information that relates to a living, identifiable person. As a Carer registered with SCC, you have a right to know what data we collect and how it is used.
We collect the following information about you when you register with us:
Name, contact telephone number, postal address and email
Your age, date of birth, gender, ethnicity, religion (if any) and sexual orientation
Other information relating to the support and advice we provide, include details of your caring role and any health issues you may have and wish to share with us
What do we do with the information we collect?
SCC 'controls' and is responsible for how this data is processed, which includes collection, storage, use and destruction of that data.
The information we collect is essential to help us understand your needs, provide you with appropriate support and also to:
record the facts to aid the follow-up work required
undertake internal checks and audits on the accuracy, relevance and quality of advice and support provided
produce anonymous reports and statistics to evidence the demand of the service, the numbers of people we support and evaluate our service
send you information and advice newsletters and reminders by email or text regarding our events and activities and other relevant information
With your explicit and documented consent, we will share your personally identifiable information with our main funders, currently London Borough of Sutton and Sutton Clinical Commissioning Group. This helps them understand need and demand, and then plan and commission future services for Carers and their families.
This does not happen automatically; under no pressure or expectation, you must 'opt-in' for this information to be shared. If you do not want us to share your personally identifiable information, that is your right, and it will not affect the services you receive from us or them, now or in the future.
If you specifically wish to stop receiving our newsletter, or any other communications, please contact Chiara Borwick, Carers Communications and Outreach Coordinator by emailing firstname.lastname@example.org, calling her on 020 8296 5611, or by clicking the unsubscribe button on the bottom of the newsletter.
If you have any questions or concerns about GDPR, or your data, please do give us a call on 020 8296 5611, or pop into the Centre to speak to a member of staff. We also welcome your views and opinions regarding how we could improve communicating and working with you.
We do update this Policy from time to time so please do review this Policy regularly.
Information We Collect
In running and maintaining our website we may collect and process the following data about you:
Information about your use of our site including details of your visits such as pages viewed and the resources that you access. Such information may include traffic data, location data and other communication data.
Information provided voluntarily by you. For example, when you register or when you communicate with us by any means.
We may gather information about your general internet use by using the cookie. Where used, these cookies are downloaded to your computer and stored on the computer’s hard drive. Such information will not identify you personally. It is statistical data. This statistical data does not identify any personal details whatsoever.
You can adjust the settings on your computer to decline any cookies if you wish. This can easily be done by activating the reject cookies setting on your computer.
Use of Your Information
We use the information that we collect from you to provide our services to you. In addition to this we may use the information for one or more of the following purposes:
To provide information to you that you request from us relating to our services or events.
To inform you of any changes to our website, services or events calandar.
If you have previously used our services or attended an event, we may provide to you details of similar services or events, ones that we think you may be interested in.
Storing Your Personal Data
In operating our website it may become necessary to transfer data that we collect from you to locations outside of the European Union for processing and storing. By providing your personal data to us, you agree to this transfer, storing or processing. We do our upmost to ensure that all reasonable steps are taken to make sure that your data is treated and stored securely. We choose only to work with companies that we deem uphold the same standards and values that we have.
The sending of information via the internet is not totally secure and on occasion such information can be intercepted. We cannot guarantee the security of data that you choose to send us electronically. Sending such information is entirely at your own risk.
Disclosing Your Information
Where we are legally required by law to disclose your personal information e.g. when the personal safety of you or another is in immediate danger.
To further fraud protection and reduce the risk of fraud.
Third Party Links
Access to Information
In accordance with the Data Protection Act 1998 you have the right to access any information that we hold relating to you. Basic requests for information are free of charge but in the event of requests that use considerable or significant charitable resources, we may need to request that you cover any directly incurred costs.
A cookie consists of information sent by a web server to a web browser, and stored by the browser. The information is then sent back to the server each time the browser requests a page from the server. This enables the web server to identify and track the web browser.
Most browsers allow you to reject all cookies, whilst some browsers allow you to reject just third party cookies. For example, in Internet Explorer you can refuse all cookies by clicking “Tools”, “Internet Options”, “Privacy”, and selecting “Block all cookies” using the sliding selector. Blocking all cookies will, however, have a negative impact upon the usability of many websites.