Carnegie Community Trust CIO
The General Data Protection Regulation introduces six principles concerning the management of data (information about you).
The principles are that data must be:
“(a) processed lawfully, fairly and in a transparent manner in relation to individuals (‘lawfulness, fairness and transparency’);
(b) collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes; further processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes shall not be considered to be incompatible with the initial purposes (‘purpose limitation’);
(c) adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed (‘data minimisation’);
(d) accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay (‘accuracy’);
(e) kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes subject to implementation of the appropriate technical and organisational measures required by the GDPR in order to safeguard the rights and freedoms of individuals (‘storage limitation’);
(f) processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures (‘integrity and confidentiality’).”
Here is how CCT will look after your data in accordance with the six principles:
- Who is responsible for managing my information?
- What information do we collect?
The personal information we collect is your email address, and/or your postal address and/or your telephone number. We also collect website usage information. We do this using cookies (see section 7 below).
- How do we use your information?
The information you provide may be used in a number of ways, for example:
- to enable us to send you information about our work
- to provide you with the information, products and services you ask for, and honour any contract you may have with us;
- for statistical purposes when we evaluate our range of services;
- to tell you about products and services we think may be of interest to you
- to manage customer service queries.
- Who will we share your information with?
We will not share your information with any third parties other than our automatic mailing platform MailChimp.
- When can we contact you in the future?
We would like to send you information about our own products and services, as well as those of selected third parties. We may do this by post, telephone, email or SMS, unless you have told us that you do not wish to be contacted in this way. We will always ask you to confirm in advance that you are happy for us to allow third parties to contact you by email.
If you would like to change any of your preferences relating to the way in which we may use your information for direct marketing, then please update your user preferences or send an email to email@example.com
- How long will we hold your information for?
We have a system of retention periods in place to ensure that your information is only stored whilst it is required for the relevant purposes or to meet legal requirements. Where your information is no longer required, we will ensure it is disposed of in a secure manner.
- How can you access and update your information?
You have the right to request a copy of the information that we hold about you. If you would like a copy of some or all of your personal information, please email us at firstname.lastname@example.org
We want to make sure that your personal information is accurate and up to date. You may ask us to correct or remove information you think is inaccurate.
- Does the policy apply to linked websites?
By email to email@example.com
Or write to us at Carnegie Community Trust CIO, 192 Herne Hill Rd, London, SE24 OAG.