(Last reviewed 2nd May 2018)
Chiseldon Parish Council is registered as a data controller under the Data Protection Act (ICO registration Z1200446) as we collect and process personal information about you. This applies to Council staff and members of the public.
We process and hold your information in order to provide public services. This notice explains how we use and share your information. Information may be collected on a paper or online form, by telephone, email, CCTV or by a member of our staff, or one of our partners.
Why do we collect information about you?
We need to collect and hold information about you, in order to:
- deliver public services
- confirm your identity to provide some services
- contact you by post, email or telephone
- understand your needs to provide the services that you request
- understand what we can do for you and inform you of other relevant services and benefits
- update your customer records
- help us to build up a picture of how we are performing at delivering services to you and what services the residents need
- process financial transactions
- prevent and detect fraud and corruption in the use of public funds
- obtain your opinion about our services
- allow us to undertake statutory functions efficiently and effectively
- make sure we meet our statutory obligations including those related to diversity and equalities
We may not be able to provide you with a product or service unless we have enough information, or your permission to use that information.
How we use your information
We will use the information you provide in a manner that conforms to the Data Protection Act. We will endeavour to keep your information accurate and up to date and not keep it for longer than is necessary. In some instances, the law sets the length of time information has to be kept.
We will process your information for the following purposes:
- for the service you requested, and to monitor and improve the Council’s performance in responding to your request
- to allow us to be able to communicate and provide services and benefits appropriate to your needs
- to ensure that we meet our legal obligations
- where necessary for the law enforcement functions
- to prevent and detect fraud or crime
- to process financial transactions including grants, payments and benefits involving the Council, or where we are acting on behalf of other government bodies, e.g. HMRC, Department for Work and Pensions
- to collect monies owed to us
- where necessary to protect individuals from harm or injury
- to allow the statistical analysis of data so we can plan the provision of services
We will not pass any personal data on to third parties, other than those who either process information on our behalf, or because of a legal requirement, and we will only do so, where possible, after we have ensured that sufficient steps have been taken to protect the personal data by the recipient.
We will not disclose any information that you provide in confidence to us, to anyone else without your permission, except in the few situations where disclosure is required by law, or where we have good reason to believe that failing to share the information would put someone else at risk. You will be told about this.
We may process your information overseas using web services that are hosted outside the European Economic Area, but only with data processing agreements that meet our obligations under the Data Protection Act.
We may need to pass your information to other people and organisations that provide the service. These providers are obliged to keep your details securely, and use them only to fulfil your request. If we wish to pass your sensitive or confidential information onto a third party, we will only do so once we have obtained your consent, unless we are legally required to do so.
We may disclose information to other partners where it is necessary, either to comply with a legal obligation, or where permitted under the Data Protection Act, e.g. where the disclosure is necessary for the purposes of the prevention and/or detection of crime.
Where we need to disclose sensitive or confidential information such as medical details to other partners, we will do so only with your prior explicit consent or where we are legally required to.
We may disclose information when necessary to prevent risk of harm to an individual.
At no time will your information be passed to organisations external to us and our partners, for marketing or sales purposes or for any commercial use without your prior express consent.
Improving customer records
We are working to make our record keeping more efficient and be able to provide relevant services in a timelier fashion.
Basic customer records will comprise of your name, address, date of birth, gender, contact details (telephone/email), information which can be used to confirm your identity, a brief summary of your contact with the Council, an indicator of the services used, and where necessary a customer reference number. This will not contain extensive details of the services you have received however, this will also enable us to amend any other database held with changes to your address and contact information.
Detect and prevent fraud or crime
Chiseldon Parish Council is required by law to protect the public funds it administers. We may use any of the information you provide to us for the prevention and detection of fraud. We may also share this information with other bodies responsible for auditing, administering public funds, or where undertaking a public function, in order to prevent and detect fraud. This includes all or any central government departments, other Local Authorities, HM Revenue and Customs and the Police.
Section 68 of the Serious Crime Act 2007 enables public authorities to disclose information for the purposes of preventing fraud, as a member of a specified anti-fraud organisation or otherwise in accordance with any arrangements made with such an organisation.
In limited situations we may monitor and record electronic transactions (website, email and telephone conversations). This will only be used to prevent or detect a crime, or investigate or detect the unauthorised use of the telecommunications system and only as permitted by the Telecommunications (Lawful Business Practice) (Interception of Communications) Regulations 2000.
Emergency response management
Data matching may also be used to assist the Council in responding to emergencies or major accidents, by allowing the Council, in conjunction with the emergency services, to identify individuals who may need additional support in the event of e.g. an emergency evacuation.
We will inform you if we record or monitor any telephone calls you make to us. If any recording takes place this will be used, to increase your security, for our record keeping of the transaction and for our staff training purposes.
If you email us we may keep a record of your contact and your email address and the email for our record keeping of the transaction. For security reasons we will not include any confidential information about you in any email we send to you, unless you consent to this.
We suggest that you keep the amount of confidential information you send to us via email to a minimum and use our secure online form.
Using our website
If you are a user with general public access, the Chiseldon Parish Council website (https://www.chiseldon.pc.gov.uk) does not store or capture personal information, but merely logs a number called your IP address which is automatically recognised by the system.
The system will record personal information if you:
- subscribe to or apply for services that require personal information;
- report a fault and give your contact details for us to respond;
- contact us and leave your details for us to respond.
The cookies placed on your computer or device are as follows:
|Google analytics||_gat||Google Analytics – This cookie enables us to Estimate our audience size and usage pattern.||https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage|
|Google analytics||_ga||Google Analytics – This cookie enables us to Estimate our audience size and usage pattern.||https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage|
|Google analytics||_gid||Google Analytics – This cookie enables us to Estimate our audience size and usage pattern.||https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage|
|Cookie acceptance||cc_cookie_accept||Record that the user has consented to cookies||http://cookiecuttr.com/|
This statement only covers the Council website maintained by us, and does not cover other websites linked from our site.
CCTV is installed on the outside of some of our buildings for the purposes of monitoring building security and crime prevention and detection.
In all locations, signs will be displayed notifying you that CCTV is in operation and providing details of who to contact for further information about the scheme. Images captured by CCTV will not be kept for longer than necessary. However, on occasions there may be a need to keep images for longer, for example where a crime is being investigated.
You have the right to see images/audio recording of yourself in accordance with the Data Protection Act and be provided with a copy of the images.
We will only disclose images and audio to other authorised bodies who intend to use it for the purposes stated above. Images and audio will not be released to the media for entertainment purposes or placed on the internet for public viewing.
We operate CCTV and disclose in accordance with the codes of practice issued by the Information Commissioner and the Home Office.
How we protect your information
Our aim is not to be intrusive, and we won’t ask irrelevant or unnecessary questions. The information you provide will be subject to rigorous measures and procedures to make sure it can’t be seen, accessed or disclosed to anyone who shouldn’t see it.
We provide training to staff who handle personal information and treat it as a disciplinary matter if they misuse or do not look after your personal information properly.
We will not keep your information longer than it is needed or where the law states how long this should be kept. We will dispose of paper records or delete any electronic personal information in a secure way.
You have the right to request that Chiseldon Parish Council stop processing your personal data in relation to any Council service. However, this may cause delays or prevent us delivering a service to you. Where possible we will seek to comply with your request but we may be required to hold or process information to comply with a legal requirement.
We try to ensure that any information we hold about you is correct. There may be situations where you find the information we hold is no longer accurate and you have the right to have this corrected. Please contact the Council should you have a request for this to happen.
You are legally entitled to request access to any information about you that we hold, and a copy.
If you would like to know more please contact the Clerk & Responsible Financial Officer on 01793 740744, email email@example.com or write to us at:
Clerk & Responsible Financial Officer
Chiseldon Parish Council
The Old Chapel
Changes to this privacy notice
We will continually review and update this privacy notice to reflect changes in our services and feedback from service users as well as to comply with changes in the law. When such changes occur, we will revise the last updated date at the top of this notice.
C Wilkinson Clerk & Responsible Financial Officer 7th May 2018