Library of Change ("we" or "us") is committed to protecting your personal information and using it responsibly. This policy explains how and what we do with your data and why we use and store it.
We will use the information that we collect about you in accordance with:
The Data Protection Act 1998 as amended by the Data Protection Bill
The Privacy and Electronic Communications (EC Directive) Regulations 2003
The EU General Data Protection Regulation (Regulation EU 2016/679), (‘GDPR’) which becomes effective from 25 May 2018
Under the Data Protection Legislation, all organisations which handle personal information must comply with a number of important principles regarding the privacy and disclosure of this information.
By providing us with your data, you warrant to us that you are over 13 years of age.
1. Your personal data
"Personal data" is information relating to a living individual who can be identified from that data. Identification can be by the information alone or in conjunction with any other information in the data controller’s possession or likely to come into such possession.
2. What information do we collect or keep?
Your email address will remain within the Wix 'Shout Out' database on the Library of Change website for as long as we continue to use the Wix platform for email marketing, or until you request to be removed from the list. You can do this by unsubscribing using the link contained in the newsletter, or by requesting removal by emailing firstname.lastname@example.org.
When you contact us via email (email@example.com), your email address and any contact details listed in your email signature is stored in our Gmail contacts folder. This is a private database, accessible only by Library of Change project directors, Sholeh Johnston and Line Langebek. Your contact information will only be used for consentual correspondence, and you can request for us to delete your data manually by emailing us at firstname.lastname@example.org.
If you attend on of our events, we will collect your name, email address and basic feedback information on the quality of the event. This information is stored in our Gmail contacts folder.
You can request a copy of the data we hold on your by emailing email@example.com.
3. When do we collect data?
We collect data, which may include personal information, when you:
visit our website
contact us via email, telephone, post, live chat or contact forms
attend one of our events
4. How will we use the information about you?
We will process your personal data as necessary for our own legitimate interests; to provide you with a better service and to promote our work as a charity, and in particular for the following reasons:
Internal record keeping – this may include the secure holding of data with third-party organisations who provide us with services.
To provide you with relevant and timely information about the work we do.
We may aggregate information anonymously to provide statistics to evaluate our work and to feedback to our funders about our performance. We will ensure our own legitimate interests do not override your own interests and fundamental rights.
5. Disclosures of your personal data
We require all third parties to whom we transfer your data to respect the security of your personal data and to treat it in accordance with the law. We only allow such third parties to process your personal data for specified purposes and in accordance with our instructions. We do not transfer your personal data outside the European Economic Area (EEA). We will not sell, distribute or lease your personal information to third parties unless we are required by law to do so.
6. Change of purpose
We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose.
7. How will we keep your personal information secure?
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so. We comply with our obligations under the “GDPR” by:
keeping personal data up to date
storing and destroying it securely
not collecting or retaining excessive amounts of data
protecting personal data from loss, misuse, unauthorised access and disclosure
ensuring that appropriate technical measures are in place to protect personal data
8. How will we communicate with you?
If you have elected to receive them, we may periodically send emails to tell you about our activities. You can unsubscribe from these communications at any time at the footer of the email.
9. Links to other websites
10. Your rights and your personal data
Unless subject to an exemption under the GDPR, you have the following rights with respect to your personal data:
The right to request a copy of your personal data which we hold about you.
The right to request that we correct any personal data if it is found to be inaccurate or out of date.
If you believe that any information we are holding on you is incorrect or incomplete, please contact us at firstname.lastname@example.org and we will promptly correct any information found to be incorrect. The right to request that your personal data is erased where it is no longer necessary.
You can see more about these rights at: ico.org.uk
11. How long will we keep your information?
We will keep your information only for as long as is reasonably necessary for the purposes set out in this privacy notice and to fulfil our legal obligations. We will not keep more information than we need.
By email: email@example.com
12. Updates or Changes to the Privacy Notice and Further Information