Ferring Country Centre (FCC) take the privacy of your personal information very seriously and is committed to ensuring compliance with the requirements of the Data Protection Act 2018.

     

    The Data Protection Act 2018 is the United Kingdom’s implementation of the General Data Protection Regulation (GDPR).

     

    This legislation relates to the personal information you supply to be an employee, volunteer, client, customer of FCC and on the FCC website.

     

    Your Personal Data

    The types of information FCC collect from you, is dependent on your relationship with us, by becoming an employee, volunteer, client, customer of FCC you consent to the collection and use of any personal information in the manner described here after.

     

    When subscriptions are renewed re-consent may be sought to ensure legislative compliance. 

     

    • The information gathered (‘Information’) may include your name, address, email address, date of birth and any other personal information you submit to FCC.

     

    • As part of your relationship with us you will be on our mailing list and FCC will send you newsletters and correspondence. The organisation may from time to time offer you the opportunity to sign up for any other products and services which are provided.  You may opt out by notifying us of this wish at: [email protected]

     

    • FCC use the Information collected from you to keep you informed about events and activities, which the organisation believe may be of interest to you. Should you not wish to receive this information you can opt out by informing us of this wish at: [email protected]

     

    • As part of your relationship with us, FCC may use the Information held to draw up and circulate lists of names towards fulfilment of the key Objects of the Organisation relevant to your specific relationship with the organisation.  Should you wish for your name not to be disclosed on these lists, please contact us at: [email protected]

     

    • FCC will not sell, distribute, or disclose your Information, including sensitive personal information that is held by the organisation, without your consent or unless required or permitted to do so by law.

     

    Updating your Information and Retention

    If any of your information is inaccurate or if it changes, please notify us by email: [email protected]

    FCC will retain personal information for the legally required period, for example, 7 years for Charity Commission requirements and HM Revenue and Customs (HMRC) and otherwise only whilst it serves to support your relationship with us.


    On termination of your relationship with us or death, the information will be retained for two years for demographic and statistical purposes.

     

    Subject Access

    Under the Data Protection Act 2018, data subjects have the right to find out what information an organisation stores about you. These include the right to:

    • be informed about how your data is being used.
    • access personal data.
    • have incorrect data updated.
    • have data erased.
    • stop or restrict the processing of your data.
    • data portability (allowing you to get and reuse your data for different services)
    • object to how your data is processed in certain circumstances.

     

    they also have rights when an organisation is using your personal data for:

    • automated decision-making processes (without human involvement)
    • profiling, for example to predict your behaviour or interests.

     

    Legislation requires that Data Subject requests are dealt with in a timely manner, The Data Controller will need to respond to any request within a timescale of one month, for complex requests this can be extended to three months. Information will be provided free of charge except where excessive, repeated, or duplicate requests are made. IN such cases a fee to cover administration costs will be made.

     

    FCC will ensure that Data Subject Requests are dealt with in line with the legislative  guidelines.

     

    FCC will log all Data Subject Requests on the Data Protection Compliance Record.

     

    Links to Third Parties’ Sites

    FCC may provide links to other websites. Before you supply any personal information to any other website, we recommend that you check the website’s Privacy Policy.


    FCC do not accept responsibility for the protection of any data supplied to other sites.

     

    Cookies

    Cookies provide information regarding the computer used by a visitor. We may use cookies to give you a better experience and to monitor how you are using the website, as this will help us make improvements for the future.

    You may decline to accept cookies by activating the setting on your browser which allows you to decline the setting of cookies, but if you do so, parts of the website may not work correctly.


    For more information and to find out more about cookies and Google Analytics read information and advice for members of the public regarding Cookie Laws on the UK Government’s Information Commissioner’s Office website.

     

    Internet and Data Storage

    The FCC website uses a security system that protects your Information from unauthorised use. However, as no data transmissions over the Internet can be guaranteed to be 100% secure, we cannot take responsibility for any unauthorised access or loss of personal information that is beyond our control, for example, whilst in transit, any data you send is at your own risk.              

    FCC have procedures and security features in place to keep your data secure once we receive it. Your data is held in the UK only and only shared with the third parties mentioned in sections 2 and 3 above.

    Please remember that other methods of Internet communication, such as emails and messages sent via a website, are not secure, unless they are encrypted.


    FCC take no responsibility for any unauthorised access or loss of personal information that is beyond our control.

    In visiting our website, we may collect and process the following data about you:

    • Information provided voluntarily by you.  For example, when you make a purchase or register to receive our newsletter.
    • Information that you provide when you communicate with us by any means.

     

    Complaints about a data breach

    When a complaint is received from a person a file containing the details of the complaint will be started. This normally contains the identity of the complainant and any other individuals involved in the complaint. The complaint will be allocated to an appropriate employee of FCC to investigate.

     

    The Organisation will use the personal information collected to process the complaint and to check the level of service provided. Usually, the organisation will have to disclose the complainant’s identity to whoever the complaint is about. This is inevitable where, for example, the accuracy of a person’s record is in dispute. If a complainant does not want information identifying him or her to be disclosed, FCC will try to respect that. However, it may not be possible to manage a complaint on an anonymous basis.

     

    FCC will keep personal information contained in complaint files in line with our retention policy. It will be retained in a secure environment and access to it will be restricted according to the ‘need to know’ principle.

     

    Data breach

    In case of a personal data breach that is likely to result in a risk to people’s rights and freedoms, FCC will adhere to the mandatory regulation to report it to the Information Commissioner’s Office (ICO) within 72 hours.

     

    High risk situations would be where there is the potential of people suffering significant detrimental effect such as discrimination, damage to reputation, financial loss, or any other significant economic or social disadvantage.  We will need to notify the relevant supervisory authority about a loss of personal details where the breach leaves individuals open to identity theft.     

    A breach notification must contain the nature of the personal data breach including, where possible:

    • The categories and approximate number of individuals concerned.
    • The categories and approximate number of personal data records concerned.
    • The name and contact details of the data protection officer (if relevant) or other contact point where more information can be obtained.
    • A description of the likely consequences of the personal data breach
    • A description of the measures taken, or proposed to be taken, to deal with the personal data breach and, where appropriate, of the measures taken to mitigate any possible adverse effects.

     

    Organisational Details

    Ferring Country Centre is a Register Charity – 297286

    Ferring Country Centre is a Company limited by guarantee – 2086358

     

    Registered Office

    Ferring Country Centre

    Rife Way

    Ferring

    West Sussex

    BN12 5JZ

     

    Telephone Number 01903 245078

     

    Website www.ferringcountrycentre.org      

     

    1. Changes to Privacy Policy

    Our Privacy Policy may change from time to time. In this case, the amended version will be published on the Ferring Country Centre website.

     

    Further information can be found on the ICO’s website or through the link:

    https://ico.org.uk/for-organisations/data-protection-reform/overview-of-the-gdpr/

     

    Last Updated: 28th July 2023