Innate Evolution takes the privacy and security of your personal information very seriously.
personal data (that is, information by which an individual, or ‘data subject’,
can be identified) collected by us in the course of our lawful activities, in
accordance with the Data Protection Act 1998 and any subsequent
legislation (‘Data Protections laws’). This policy has been put in place to
protect your rights under the Data Protection laws, and it is important that
you understand what we will do with your data and are happy with this. If you
want to discuss any matter relating to how your data is used, please call us on
01787 267869 or email us at firstname.lastname@example.org
References to the processing of information includes the collection, use,
storage and protection of data. Innate Evolution is the ‘data
controller’ for the purposes of this policy, and the policy extends to its staff,
trustees, volunteers and anyone else processing data on our behalf from time
Innate Evolution is committed to ensuring that the privacy and security of data about everyone we engage with is protected. Children of any
age have the same rights over the data processed about them, although their
ability to understand and to exercise these rights may vary depending on their age and capacity. We therefore ask family members to understand that our obligations are to every individual data subject separately and to work with us accordingly.
Organisations are permitted to process data if they have a legal basis for doing so. The Principles of Innate Evolution processes data on the basis that:
Express and informed consent has been given by the person whose data is being processed; and/or
Innate Evolution has a legitimate interest in processing data; and/or
It is necessary in relation to a contract or agreement which the person has entered into or because the person has asked for something to be done so
they can enter into a contract or agreement; and/or
There is a legal obligation on Innate Evolution to process data.
Where Innate Evolution is relying on solely consent as the basis for processing data, we are required to obtain your explicit consent and you
can modify or withdraw this consent at any time by notifying us in writing,
although this may affect the extent to which Innate Evolution
is able to provide services to or interact with you in future.
Innate Evolution may change this policy from time to time and any such changes will be published on our website. Notwithstanding any
change to this policy, we will continue to process your personal data in
accordance with your rights and our obligations in law.
This policy is effective from 22 September 2018.
What data do we collect?
We collect the data necessary for Innate Evolution to pursue its objectives, together with fundraising and marketing, running events, keeping our supporters informed of our activities and the effective
running of Innate Evolution as an operation through its professional staff. Data collected and processed may include, but not be limited to:
Names and contact information such as telephone numbers, email and
Details relating to service users and their families (collectively referred to in
this policy as ‘service users’) necessary for Innate Evolution to be able to provide the support and assistance requested, including those of
a sensitive nature
Donor and volunteer records and preferences, including, where necessary,
bank or payment details and tax status in order to process payments from donors.
Administrative details including dietary requirements or preferences, and photos for participants in events or guests or participants at other fundraising or promotional events
Such other information that is relevant and necessary for Innate Evolution to carry out its activities, charitable purposes and legal obligations.
Such data may be collected, for example, when you provide it through our website, when you request assistance as a service user, when you fill in your details, when you tell us about yourself as a volunteer or employee or when you otherwise provide us with personal data in some other way.
What we do with the data we process?
Innate Evolution uses the data collected to maintain accurate internal records of our engagement with service users and their families, event participants and supporters, volunteers, staff and others. These records facilitate our activities including providing support and assistance to service users,
working with volunteers and raising awareness about our work through campaigns and events.
We may use your personal information to send you information about Innate Evolution and our activities which we think may be of interest to you.
We will only share data with trusted third parties where necessary for us to provide services to you or to communicate with you (such as mailing companies for postal communications or through email campaigns or newsletters), to process payments (if you make a donation online or purchase
Data will be retained only for as long as is permissible in law and is reasonable and necessary for us to engage with you as a service user, event participant or supporter, volunteer or member of staff. Accordingly, the length of time for which we will retain your data may vary depending on the purposes and legal basis for which we are or have been processing it. To find out what this means in relation to your personal data, please contact us using the contact details given above.
You, as the data subject, may request deletion of your data at any time in writing, subject to any overriding legal requirement for its retention, such as the need, where appropriate, to retain Gift Aid records for Her Majesty’s Revenue and Customs, for example.
Your rights in relation to your personal data
You may request details of personal information which we hold about you. Any such request must be submitted in writing and in order to protect the data we hold, we will need to be satisfied as to the identity of anyone seeking such information. We will provide this information within 30 days of receiving and verifying your written request. A small fee may be payable if an information request is particularly onerous.
You may choose to restrict the collection or use of your personal information, but this may inhibit or limit the way in which Innate Evolution is able to engage with you. You may, at any time, change your mind about what information we hold about you, or if we continue to hold it at all, subject to any legal obligation Innate Evolution has to retain the data.
You are responsible for the accuracy of data you have provided to Innate Evolution. If you believe that any information we are holding on you is incorrect or incomplete, please write to us as soon as possible. We will promptly correct any information found to be incorrect.
In the unlikely event that there is any kind of a breach of our duties and obligations under this policy or the Data Protections laws, we will take immediate steps to isolate and rectify the problem. Should the breach be serious one (where there is a risk of, for example, discrimination, damage to
reputation, financial loss or loss of confidential information) we have a duty to report that matter to the individuals affected and to the Office of the Information Commissioner.
You can obtain further information about Data Protection and privacy laws
by visiting the Information Commissioner’s website at: https://ico.org.uk/forthepublic.
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the data we process. Persons processing data on behalf of Innate Evolution do so in accordance with this policy and on the basis that The Principles of Innate Evolution is satisfied that they can and will adhere to our high standards for data protection and security. These include enhanced policies and protocols for the processing of particularly sensitive data.
Any sensitive information that does not otherwise need to be retained (such as credit or debit card details) are redacted or destroyed once used.
To signify when you are on a secure page, a lock icon will appear on the bottom of web browsers.
Please note that the transmission of information over the internet is inherently insecure, and we cannot guarantee the security of data sent over the internet. You are responsible for keeping any password you use for logging in to access services or our website (if applicable) confidential; we will not ask you for your password (except when you log in).
Web browsing and Cookies
A cookie is a small file which asks permission to be placed on your computer’s hard drive. Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering
information about your preferences.
We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website in order to tailor it to users’ needs. We only use this information for statistical analysis purposes and then the data is removed from the system.
Overall, cookies help us provide you with a better website, by enabling us to monitor which pages you find useful and which you do not. A cookie does not give us access to your computer or any information about you, other than the data you choose to share with us. Most cookies only last for the duration of your visit to our website and are deleted when you close your browser, but some may continue beyond the session until your next visit to enhance your use of the website. These might include, where applicable:
The option to “Remember my username” if signing-in to the website;
The use of Google Analytics to allow us to track how popular our site is and to record visitor trends over time. Google Analytics uses a cookie to help track which pages are accessed. The cookie contains no personally-identifiable information, but it does use your computer’s IP address to determine where in the world you are accessing the site from, and to track your page visits within the site.
You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of our website.
We may also collect and store information about your browsing device, including, where available, your IP address, operating system and browser type. This is anonymous statistical data about your browsing activities and patterns, and does not contain any personal data.
Links to other websites
Right to object
You have a right to opt out of your data being used for direct marketing. You can opt out by emailing email@example.com
Making a complaint
If you are unhappy with the way that we have processed or handled your data then you have a right to complain to the Information Commissioner’s Office (ICO). The ICO is the supervisory body authorised by the Data Protection Act 2018 to regulate the handling of personal data within the United Kingdom.
The contact details for the Information Commissioner’s Office are:
· Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, SK9 5AF
· Telephone: 0303 123 1113
· Website: https://ico.org.uk/concerns/