Privacy Policy and GDPR
This Privacy Policy explains how we use and protect any information that you give to us when you use our services.
We are committed to ensuring that your privacy is protected. Should we ask you to provide certain information by which you can be identified when using our services, this will only be used in accordance with this privacy statement.
This policy may change from time to time. You are requested to please check this page to ensure that you continue to be comfortable with the measures that we take to protect your privacy. This policy is effective from 25th May 2018.
By visiting this webiste you are accepting and consenting to the practices described in this policy.
By continuing to use this site, you are agreeing to the use of cookies as described below.
For the purpose of the Data Protection Act 1998 (the Act) and GDPR, the data controller is : Dr Helen Startup
What is GDPR?
On the 25th May 2018 General Data Protection Regulation (GDRP) legislation came into effect. GDPR replaces current data protection legislation, the Data Protection Act 1998.
It is designed to give individuals control back over personal information and to simplify regulation for business.
The 6 Principles of GDPR
Information is:
a) processed lawfully, fairly and in a transparent manner in relation to individuals;
b) collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes; further processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes shall not be considered to be incompatible with the initial purposes;
c) adequate, relevant and limited to what is necessary in relation to the purposes for which processed;
d) accurate and, where necessary, kept up to date; every reasonable step must be taken to
ensure that personal data that are inaccurate, having regard to the purposes for which they are
processed, are erased or rectified without delay;
e) kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes subject to implementation of the appropriate technical and organisational measures required by the GDPR in order to safeguard the rights and freedoms of individuals; and
f) processed in a manner that ensures appropriate security of the personal data, including
protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.
The controller shall be responsible for and be able to demonstrate compliance with all of these principles.
Information we may collect
You may give us information about you such as name, address and phone number, by corresponding by phone, e-mail or otherwise. We may receive information about you from other sources, such as Google Analytics,
With regard to each of your visits to our site, we may automatically collect the following information:
- Technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform;
- Information about your visit, including the full Uniform Resource Locators (URL) through and from our site (including date and time); services you viewed or searched for; page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page.
- Any personal information such as name, postal address, telephone number, and email address given will only be used to provide a requested service, and will not be disclosed to any other third party without your prior permission, or unless required to do so by law, such as terrorism, money laundering, drug trafficking, radicalisation or safeguarding concerns.
How we use your information
We may use your information:
- To carry out our obligations arising from any contracts entered into between you and us and to provide you with the information and services that you request from us.
- To notify you about changes to our services;
- To administer our site and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes;
- To operate our business efficiently including financial records
Links
The website may have links to third party sites we have no control over. If you visit those sites you should check you are happy with their own privacy policies and terms of use before providing any personal information. In addition, if you are linked to our website from a third party, we cannot be responsible for the privacy policies and practices of that third party site.
Where your data is stored
The data collected will be stored securely online, presently hosted by EU and UK based servers.
We use Transport Layer Security (TLS) to encrypt and protect email traffic. If your email service does not support TLS, you should be aware that any emails we send or receive may not be protected in transit.
We will also monitor any emails sent to us, including file attachments, for viruses or malicious software. Please be aware that you have a responsibility to ensure that any email you send is within the bounds of the law.
Should you choose to contact us using an email link, or our contact form none of the data that you supply will be stored by this website or passed to / be processed by any of the third party data processors.
Instead the data will be collated into an email and sent to us over the Transport Layer Security (TLS).
This website is hosted by 3rd party servers located in the UK and EU which are compliant with EU legislation.
Website Legal Disclaimer
The information contained in this website is for general information purposes only. Whilst we endeavour to keep the information up to date and correct, we make no representations or warranties of any kind, express or implied, about the completeness, accuracy, reliability, suitability or availability with respect to the website or the information, products, services, or related graphics contained on the website for any purpose. Any reliance you place on such information is therefore strictly at your own risk.
In no event will we be liable for any loss or damage including without limitation, indirect or consequential loss or damage, or any loss or damage whatsoever arising from loss of data or profits arising out of, or in connection with, the use of this website.
Access to information
You can request access to the personal information that we hold about you.
You may request amendments to the personal information we hold about you that is inaccurate or out-of-date. If you request that we delete your personal information, we will take all reasonable steps to do so unless we need to keep it for legal, auditing or internal business purposes.
Your acceptance
By using the website, you consent to the collection and use of the information by us in accordance with our privacy policy.
Your rights
Any personal information submitted via our website is treated in accordance with the data protection Act 1998, including compliance with GDPR 2018. To find out more about your entitlements under this legislation, visit the Information Commissioner’s website at https://ico.org.uk/
