This statement outlines Open Door Adventure’s procedures for collecting, storing and processing personal data. Personal data means data which relates to a living individual who can be identified from the data or from other information from that data, in order to comply with the Data Protection Act (DPA) 2018.
This statement covers all the principles under the DPA. These are known as the ‘data protection principles’ and ensures information is:
- Used fairly and lawfully.
- Used for limited, specifically stated purposes.
- Used in a way that is adequate, relevant and not excessive.
- Kept for no longer than necessary.
- Kept safe and secure.
- Not transferred outside the European Economic Area (EEA) without adequate protection.
Contact details of the company responsible for taking the lead on compliance:
Open Door Adventure, www.opendooradventure.co.uk is responsible for personal data, information on procedures dealing with both internal and external access requests and how the information collection is used.
What is meant by informational privacy:
The ability of a person to control, edit, manage and delete information about themselves and to decide how and to what extent such information is communicated to others. Intrusion can come in the form of collection of excessive personal information, disclosure of personal information without consent and misuse of such information. It can include the collection of information through the surveillance or monitoring of how people act in public on private spaces and through the monitoring of communications whether by post, phone or online and extends to monitoring the records of sender and recipients as well as the content of messages.
Why we need the information we hold about an individual:
We need to request and store your details in order to administer and deliver the service you have requested, and to comply with any legal or professional body responsibilities that ensue in the delivering of that service.
What we are going to use it for:
To make contact with you, to record the relevant personal contact details you give consent for us to hold, and to record booking information. To send invoices where appropriate.
Where this information is stored:
We hold your hand written information, which is coded to ensure anonymity, in a lockable file, your contact details are held in a separate lockable file and at no point come together.
Your contact and booking information is held on our documents both electronically and physically where necessary.
When and how we delete the information we hold about you:
On request, or 3 years after our last contact, we delete by electronic means and destroy paper records by shredding.