We ask that you read this privacy notice carefully as it contains important information on who we are, how and why we collect, store, use and share personal information, your rights in relation to your personal information and on how to contact us and supervisory authorities in the event you have a complaint.
Who we are
We the Trustees for the time being of the WPH Charitable Trust (Charity Number 507325) (the Charity) collect, use and are responsible for certain personal information about you. When we do so we are regulated under the General Data Protection Regulation (GDPR) which applies across the European Union (including in the United Kingdom) and we are responsible as ‘controllers’ of that personal information for the purposes of those laws.
Personal data we collect about you
Personal data is any information relating to an identified or identifiable individual.
The table below sets out the personal data we will or may collect about you in the course of acting as trustees of the Charity.
Personal data we will collect
Personal data we may collect
This personal data is required to enable us to administer the Charity and process any application that has been made for support or assistance (Application). If you do not provide personal data we ask for, it may delay or prevent us from exercising our discretion in relation to the Charity and may delay or prevent us from complying with our legal obligations regarding tax and anti-money laundering compliance.
Information collected from other sources
We also obtain personal information from other sources as follows:
How we use your personal information
We use your personal information to:
Who we share your personal information with
We share your personal data with our website providers and administrators through your use of our website to submit your Application for financial support
With your express consent we may share your personal data with our PR consultants and our website providers to publicise the work of the Charity
We routinely share personal data about beneficiaries and other individuals connected to the Charity, including the personal data included with your Application, with our accountants, and other advisers. This data sharing enables us to continue to administer the Charity in a compliant manner and to ensure our duties as trustees are discharged lawfully.
We will share personal information with law enforcement or other authorities if required by applicable law.
We will not share your personal information with any other third party.
Whether information has to be provided by you, and if so why
The provision of your person data as referred to above is required from you to enable us to administer the Charity correctly and in accordance with the law and to process your Application. [We will inform you at the point of collecting information from you, whether you are required to provide the information to us].
How long your personal information will be kept
Reasons we can collect and use your personal information
We rely on:
as the lawful basis on which we collect and use your personal data.
In the case of beneficiaries or potential beneficiaries our legitimate interests are that we need your personal data to process your Application and ensure that it falls within the purposes of the Charity
In the case of third parties assisting with your Application (such as medical practitioners or other advisers) other our legitimate interests are that we need their personal data to verify and process your Application
Consequences of our use of your personal information
We do not believe that there are likely to be any serious adverse consequences to you of our use of your personal data.
Transfer of your information out of the EEA
We will not transfer your personal data outside of the UK.
Under the GDPR you have a number of important rights free of charge. In summary, those include rights to:
For further information on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals rights under the GDPR.
If you would like to exercise any of those rights, please:
Keeping your personal information secure
We have appropriate security measures in place to prevent personal information from being accidentally lost or used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine trust-related need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.
If you want detailed information from Get Safe Online on how to protect your information and your computers and devices against fraud, identity theft, viruses and many other online problems, please visit www.getsafeonline.org. Get Safe Online is supported by HM Government and leading businesses.
How to complain
We hope that we can resolve any query or concern you raise about our use of your information.
The GDPR also gives you right to lodge a complaint with a supervisory authority. The supervisory authority in the UK is the Information Commissioner who may be contacted at https://ico.org.uk/concerns/ or telephone: [0303 123 1113].
Changes to this privacy notice
This privacy notice was published on [ 9 July 2019].
We may change this privacy notice from time to time, when we do we will inform you via our website.
How to contact us
Please contact us if you have any questions about this privacy notice or the information we hold about you.
If you wish to contact us please send an email to [email@example.com], write to [Edmund House, Rugby Road Leamington Spa CV32 6EL] or call [(01926) 831231].