- Your personal information.
Personal information is anything that directly or indirectly identifies and relates to a living person, such as a name, address, telephone number, etc.
- Why do we need your personal information?
We may need to use some information about you to:
- support and promote PUNO
- contact you about our services to get your views, which helps us to manage them
- help investigate any concerns or complaints you have about our services
- check the quality of services
- to help with research and planning of new services.
- How the law allows us to use your personal information?
There are a number of legal reasons why we will need to collect and use your personal information in different circumstances. Generally, we collect and use personal information where:
- you, or your legal representative, have given consent
- you have entered into any sort of agreement or contract with us
- it is necessary to perform our statutory duties or other legitimate purposes
- it is necessary to protect someone in an emergency
- it is required by law
- it is necessary for employment purposes
- it is necessary for any possible legal cases
- it is necessary for archiving, research, or statistical purposes
If we have consent to use your personal information for any particular reason, you have the right to remove your consent at any time. If you want to remove your consent, please contact firstname.lastname@example.org to let us deal with your request.
- Your rights regarding your personal information.
The law gives you a number of rights in relation to what personal information is used by PUNO, and how it is used. These rights are listed below. You can ask us to:
- provide you with a copy of the personal information that we hold about you
- correct personal information about you which you find as necessary
- delete personal information about you if you think we no longer should be using it
- stop using your personal information if you think it is wrong, until it is corrected
- transfer your personal information to another provider
- not use automated decision-making processes to make decisions about your data.
- With whom do we share your personal information?
In some circumstances, we can use other organisations to either store personal information or use it to help deliver our services to you. Where we have these arrangements, there is always an agreement in in place to make sure that the organisation complies with data protection law.
We can have a legal duty to provide personal information to other organisations to prevent any crime or fraud. For all these reasons, the risk must be serious before we can override your right to privacy.
If this is the case, we will make sure that we record what information we share and our reasons for doing so. We will let you know what we have done and why, if we think it is safe to do so.
- How do we protect your personal information?
We have a legal duty to make sure we hold your personal information (on paper or / and electronically) in a secure way, and to only make it available to those who have a right to see them. Examples of our security include:
- Encryption, meaning that information is hidden so that it cannot be read without special knowledge (such as a password)
- Pseudonymisation, meaning that we can use a different name or identifier to hide parts of your personal information from view. This means that someone outside of PUNO could work on your information for us without ever knowing it was yours
- Controlling access to systems and networks allows us to stop people who are not allowed to view your personal information from getting access to it
- Training for our staff allows us to make them aware of how to handle personal information, and how and when to report when something goes wrong
- Regular testing of our technology and ways of working, including keeping up to date on the latest security updates (commonly called patches)
- Information outside of the European Union.
The majority of personal information is stored on systems in the UK or EU. However, there are some occasions where your information may leave the UK/EU either to get to another organisation, or where it is stored in a system outside of the EU. It relates to our relations with the UK and the fact Brexit is a fact.
- How long do we keep your personal information?
We will only hold your personal information for as long as it is necessary to fulfill our legal duties or statutory purposes.
- Further advice?
For all the independent advice about data protection, privacy and data sharing issues, you can contact the Information Commissioner’s Office in the United Kingdom at: www.ico.org.uk
LAST UPDATE: 21 May 2018