Your Personal Data
When you first use the People’s Pantry, we will need to collect some data about you, this is your "personal data". The processing of personal data in the UK is governed by the General Data Protection Regulation (the "GDPR") and Data Protection Act 2018.
What Personal Data do we hold?
Repton Community Trust will be the controller of the personal data you provide to us. We only collect basic personal data about you, this includes your name, mailing address, telephone number and email address. Repton Community Trust complies with its obligations under the GDPR by keeping personal data up to date, by storing it securely; by not collecting or retaining excessive amounts of data; by protecting personal data from loss, misuse, unauthorised access and disclosure and by ensuring that appropriate technical measures are in place to protect personal data.
Why do we need it?
We need to know basic personal data in order to monitor the amount of users of the People’s Pantry, why they’re using us and which area they are from. We will not collect any personal data from you that we do not need in order to provide this service to you.
The legal basis for processing your personal data
Your data is processed under the conditions of Article 6, 1(f) whereby processing is ‘necessary for the legitimate interests of the data controller or a third party, except where such interests are overridden by the interests, rights or freedoms of the data subject’. Repton Community Trust processes data for the purposes of monitoring the people whose lives are positively impacted by using the service.
What we do with your data
Your personal data will be treated as strictly confidential, and all the personal data we process is processed by our staff. No third parties have access to your personal data unless the law allows them to do so. We will only share your data with third parties with your consent. We have a Data Protection regime in place to oversee the effective and secure processing of your personal data. Your data is kept in a secure database that can only be accessed by an appropriate user with a login and password, of which have to sign a "data protection statement"
How long do we keep it?
Your data will be kept with us until you notify us that you no longer wish to use us. You can notify us at any time via phone or email.
What are your rights?
If at any point you believe the information we process on you is incorrect you can request to see this information and have it corrected or deleted. You have the right to object to the processing of your personal data. If you wish to raise a complaint on how we have handled your personal data, you can contact our Data Protection Officers who will investigate the matter. Our Data Protection Officers are Beth Rice and Charlie Lloyd who you can contact on 01233 80 80 23.
If you are not satisfied with our response or believe we are not processing your personal data in accordance with the law you can complain to the Information Commissioner’s Office (ICO).
If we wish to use your personal data for a new purpose, not covered by this Data Protection Notice, then we will provide you with a new notice explaining this new use prior to commencing the processing and setting out the relevant purposes and processing conditions. Where and whenever necessary, we will seek your prior consent to the new processing.