Your personal data – what is it?
Personal data relates to a living individual who can be identified from that data. Identification can be by the information alone or in conjunction with any other information in the data controller’s possession or likely to come into such possession. The processing of personal data is governed by the General Data Protection Regulation 2016/679 (the “GDPR”).
Who are we?
The Friends of St Anne’s Hospital, Liuli, is the data controller (contact details below). This means it decides how your personal data is processed and for what purposes.
How do we process your personal data?
The Friends of St Anne’s Hospital, Liuli, complies with its obligations under the GDPR by keeping personal data up to date; by storing and destroying it securely; by not collecting or retaining excessive amounts of data; by protecting personal data from loss, misuse, unauthorised access and disclosure and by ensuring that appropriate technical measures are in place to protect personal data.
We use your personal data for the following purpose: -
To maintain our own records To process donations of goods and money To manage our volunteers, contacts, supporters and beneficiaries and to inform them of news, events and activities. To fundraise and promote the interests of the charity To handle gift aid applications
What is the legal basis for processing your personal data?
Processing of data relating to donors, volunteers, supporters and beneficiaries is necessary for the legitimate interests of the Friends of St Anne’s Hospital, Liuli, except where such interests are overridden by the interests, rights or freedoms of the data subject. A Legitimate Interests Assessment has been carried out, together with a Balancing Test. This exercise made clear that ‘Legitimate Interest’ is the most appropriate basis to use for holding and processing data relating to the management and functioning of The Friends of St Anne’s Hospital, Liuli.
Sharing your personal data
Your personal data will be treated as strictly confidential, and will be not be shared with third parties.
How long do we keep your personal data?
We keep the personal data relating to donors, supporters, volunteers and beneficiaries for no longer than reasonably necessary; in the case of donors, supporters and volunteers, for a period not exceeding 2 years after that person has ceased to have contact with the charity, unless a particular data subject has requested that their data be deleted.
Your rights and your personal data
Unless subject to an exemption under the GDPR, you have the following rights with respect to your personal data: - The right to request a copy of your personal data which the Friends of St Anne’s Hospital, Liuli, holds about you; The right to request that The Friends of St Anne’s Hospital, Liuli, corrects any personal data if it is found to be inaccurate or out of date; The right to request your personal data is erased where it is no longer necessary for The Friends of St Anne’s Hospital, Liuli, to retain such data; The right, where there is a dispute in relation to the accuracy or processing of your personal data, to request a restriction is placed on further processing; The right to object to the processing of personal data; The right to lodge a complaint with the Information Commissioners Office.
To exercise all relevant rights, queries or complaints please in the first instance contact the Chairman of The Friends of St Anne’s Hospital, Liuli, Mrs Judith James: 023 8061 8184
You can contact the Information Commissioners Office on 0303 123 1113 or via email https://ico.org.uk/global/contact-us/email/ or at the Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire. SK9 5AF.