Our website complies with the European Union's General Data Protection Regulation's (GDPR). This law is intentended to give EU citizens more control over their data and to create a uniformity of rules to enforce across the bloc.
The rules can be summarised as below. For each heading we have outlined what we do to comply.
The information we have, and why we have it
As an active Parent and Teacher's Association we organise events to raise money for our school. As such, when selling 'tickets', we collect information about the attendee (including name, email address, class and more where necessary). We collect this information so that we can effectively organise the event and administer who is attending (including related payments).
Also, to promote events and important information about our group, we collect names and email addresses. This information is only used to keep those who have expressly said so up-to-date.
How we store and handle data
Information that you transmit to us is done so securely, via Secure Socket Layer technology. This means that all data is encrypted by your computer before being transmitted to us. If anyone were to intercept the information, it would be useless to them.
Similarly, your data is held in a secure, encrypted and password protected database with multi-layer security. This is to ensure that if any illegal digital intrusions took place data would be protected.
What we store and why is expressly outlined BEFORE any data is transmitted.
What's more, we offer the opportunity to be 'forgotten' after the event. This means that once the data has been used for the purpose for which it was originally collected, it can be permanently deleted. We will still record non-identifiable information that holds details of the booking but, importantly, users can decide if if their personal information (including data which can be used to identify them) is removed.
Who is responsible for your data
When organising an event or request for information, the committee carefully discusses what information is required to achieve our objectives. We have a Data Protection Officer who scrutinises the information we collect, why and what we do with it. Our current Data Protection Officer is named on our About page