Data Protection Policy & GDPR
Privacy Notice (How we use data information)
Blue Sewing Club will ensure that data is collected within the boundaries defined under the Data Protection Act 1998 and the updates coming into force on 25 May 2018. This applies to data that is collected in person, or through the online website form. Information will be stored for only as long as it is needed and will be disposed of appropriately. It is Blue Sewing Club’s responsibility to ensure all data is
non-recoverable from any computer system previously used within the organisation, which has been passed on/sold to a third party.
Data Controller: Blue Sewing Club
Cookies and Google Analytics
THE CATEGORIES OF MEMBER DATA INFORMATION THAT WE COLLECT, PROCESS, HOLD AND SHARE INCLUDE: Personal information (such as name, mobile/phone number, email address, work address, Twitter, Facebook, LinkedIn)
WHY WE COLLECT AND USE THIS INFORMATION
We use data to:
- inform the development of member profiles on our Salesforce CRM database
- enable members to receive our ebulletins through our Mailchimp account and WIX newsletters
- enable the development of a comprehensive organisation directory on our organisation directory on our website
- enable us to fulfil our social enterprise mission of enabling those communities where have the ability and opportunity to fulfil the potential of our activities and networks events
THE LAWFUL BASIS ON WHICH WE PROCESS THIS INFORMATION
Blue Sewing Club collect data under the lawful basis that it is within our legitimate interest.
Our legitimate interest for collecting and processing member data is that it is within our Social Enterprise activities/objectives. It is our aim that Blue Sewing Club and the communities that have
the ability and opportunities to fulfil exceed their potential. We are determined to achieve this by creating strong foundations to work together to improve practice, shape futures and change lives.
We would not be able to achieve our social enterprise objectives without collecting the data of our members.
COLLECTING THIS INFORMATION
Whilst the majority of information members provide to us is mandatory as a part of the membership application process, some of it is provided to us on a voluntary basis. In order to comply with data protection legislation, we will inform members whether they are required to provide any other information to us or if you have a choice in this.
STORING THIS INFORMATION
Individual membership can be removed on request and both Individual and organisation members can request to update their details at any time. We review the details for Individual membership, or individual’s data attached to an organisation, on our Salesforce database every 3 years to ensure data is up to date.
Third party data processors
We use a number of 3rd party providers to process your data e.g. for booking training and sending out our eNews, most of whom will store your data on our behalf. Who we share this information with:
- We routinely share this information with:
- Third party companies or organizations who do we request their services to be able offer the best services providers to achieve our objectives.
WHY WE SHARE MEMBER INFORMATION
We do not share information about our members with anyone else without consent unless the law and our policies allow us to do so. We never share information with third parties for them to use for marketing purposes. The general Public.
Our website is accessible to the general public. As part of our purpose is to promote the company services for the benefit of public. With your express consent, we will share images/content in our Social Channels which can be shared by third party without our express consent, for which we assume not responsibility. On occasion we may receive requests from members of the public or colleagues in the voluntary sector for contact details of specific organisations and we will direct them to the appropriate page of our website.
Data collection requirements
We collect and process member data relating to members.
This is in the form of statistical data on a quarterly basis. This data provides us with regular monitoring reporting so that we can see the number of members who actively engage with our social media string.
REQUESTING ACCESS TO YOUR PERSONAL DATA
Under data protection legislation, you have the right to request access to information about you that we hold. To make a
request for your personal information, contact:
YOU ALSO HAVE THE RIGHT TO:
- Object to processing of personal data that is likely to cause, or is causing, damage or distress
- Prevent processing for the purpose of direct marketing Object to decisions being taken by automated means in certain circumstances, have inaccurate personal data rectified, blocked, erased or destroyed.
- Protection regulations
If you have a concern about the way we are collecting or using your personal data, we ask that you raise your concern with us
in the first instance by Email Alternatively, you can contact the Information Commissioner’s
Office at where you have the right to lodge a complaint.
If you would like to discuss anything in this privacy notice, please contact:
Signed: Xosefa Costas Bernardez
Position: General Manage