We have updated this policy to reflect changes in data protection law. This policy is effective from 25 May 2018.
At Bridges Tees Valley CIO, we're committed to protecting and respecting your privacy.
This policy explains when and why we collect personal information about you, how we use it, the conditions under which we may disclose it to others, how we keep it safe and secure and your rights and choices in relation to your information.
Who we are:
Bridges Tees Valley are dedicated to provide support for those affected by family substance misuse and those in crisis.
How do we collect information from you?
We obtain information about you in the following ways:
Information you give us directly
For example, we may obtain information about you from you when you access our service for support and guidance.
Information given to us by third parties
Your information may be shared with us by third parties.
When you visit our website
We may automatically collect information about your visit to our website, for example we may collect information about pages you visit and how you navigate the website, i.e. length of visits to certain pages, products and services you viewed and searched for, referral sources (e.g. how you arrived at our website).
When you interact with us on social media platforms such as Facebook and Twitter we may obtain information about you.
What type of information is collected from you?
The personal information we collect, store and use might include:
Your name and contact details (including postal address, email address and telephone number);
Your date of birth;
Information about your family or acquaintances
Information about your activities on our website and about the device used to access it, for instance your IP address and geographical location;
Any other personal information shared with us.
We may collect sensitive data about you or persons known to you if there is a clear and valid reason for doing so and data protection laws allow us to for example any questions relating to your health or the health of a person know to you.
Where appropriate, we will make it clear why we are collecting this type of information and what it will be used for.
How and why is your information used?
We may use your information for a number of different purposes, which may include:
Providing you with the services, products or information you asked for.
Keeping a record of your relationship with us,
Conducting analysis and market research to better understand how we can improve our services, products or information,
Seeking your views or comments on the services we provide,
Notifying you of changes to our services,
Sending you communications which you have requested and that may be of interest to you. These may include information about activities and promotions of services.
How long is your information kept for?
We keep your information for no longer than is necessary for the purposes it was collected for. The length of time we retain your personal information is determined by operational and legal considerations.
We review our retention periods on a regular basis.
Who has access to your information?
Only persons employed by Bridges Tees Valley CIO and service commissioners. However, we may disclose your information to third parties in order to achieve the other purposes set out in this policy.
We may pass your information to our third party service providers and other associated organisations for the purposes of completing tasks and providing services to you. However, when we use these third parties, we disclose only the personal information that is necessary to deliver the services.
Data protection law requires us to rely on one or more lawful grounds to process your personal information. We consider the following grounds to be relevant.
Where you have provided specific consent to us using your personal information in a certain way, such as to send you email, text, contact you by telephone or contact you in person.
Where necessary so that we can comply with a legal or regulatory obligation to which we are subject, for example where we are ordered by a court or regulatory authority.
Where it is necessary to protect life or health (for example a safeguarding issue which requires us to share your information with the emergency services).
Where it is reasonably necessary to achieve our or others’ legitimate interests (as long as what the information is used for is fair and does not duly impact your rights).
We consider our legitimate interests to be running Bridges Tees Valley CIO as a charitable organisation in pursuit of our aims and ideals.
Under UK data protection law, you have certain rights over the personal information that we hold about you. Here is a summary of the rights that we think apply:
Right of access
You have a right to request access to the personal data that we
hold about you.
You also have the right to request a copy of the information we hold about you, and we will provide you with this unless legal exceptions apply.
Right to have your inaccurate personal information corrected
You have the right to have inaccurate or incomplete information we hold about you corrected. The accuracy of your information is important to us so if you believe any information we hold about you to be inaccurate then please let us know.
Right to restrict use
You have a right to ask us to restrict the processing of some or all of your personal information if there is a disagreement about its accuracy, or we're not lawfully allowed to use it. Please contact the project manager at Bridges if you wish to exercise this right.
Right of erasure
You may ask us to delete some or all of your personal information and in certain cases, and subject to certain exceptions; we will do so as far as we are required to. In some cases, we will anonymise that information rather than delete it. Please contact the project manager at Bridges if you want us to delete your personal information.
Right for your personal information to be portable
If we are processing your personal information (1) based on your consent, or in order to enter into or carry out a contract with you, and (2) the processing is being done by automated means, you may ask us to provide it to you or another service provider in a machine-readable format.
Right to object
You have the right to object to Bridges storing, recording or processing your personal information. Please contact the project manager at Bridges if you wish to object to this processing of data.
Keeping your information safe
When you give us personal information, we take steps to ensure that appropriate technical and organisational controls are in place to protect it.
Non-sensitive details (your email address etc.) are transmitted normally over the internet, and this can never be guaranteed to be 100% secure. As a result, while we strive to protect your personal information, we cannot guarantee the security of any information you transmit to us, and you do so at your own risk. Once we receive your information, we make our best effort to ensure its security on our systems.
Keeping your information up to date
We take reasonable steps to ensure your information is accurate and up to date. We would really appreciate it if you let us know when your contact details change.
Use of “cookies”
Links to other websites
Our website may contain links to other websites run by other organisations. This policy applies only to our website‚ so we encourage you to read the privacy statements on the other websites you visit. We cannot be responsible for the privacy policies and practices of other websites even if you access those using links from our website.
16 or under
We are concerned to protect the privacy of children aged 16 or under. If you are aged 16 or under‚ please get your parent/guardian's permission beforehand whenever you provide us with personal information.
We are committed to protecting vulnerable people and appreciate that additional care may be needed when we use their personal information. In recognition of this, we observe good practice guidelines in our interactions with vulnerable people.
Review of this policy
We keep this policy under regular review. This policy was last updated in June 2018.
*This is an abbreviated version of Bridges Privacy/ Confidentiality Policy.