HAMPSTEAD CHAMBER CHOIR DATA PRIVACY NOTICE
Welcome to HCC’s privacy notice. HCC respects your privacy and is committed to protecting your personal data. This privacy notice will inform you as to how we look after your personal data when you visit our website or otherwise engage with us and tell you about your privacy rights and how the law protects you.
1. IMPORTANT INFORMATION AND WHO WE ARE
PURPOSE OF THIS PRIVACY NOTICE
This privacy notice aims to give you information on how HCC collects and processes your personal data, including any data you may provide through this website when you sign up to our mailing list, purchase tickets online or make an online enquiry.
HCC is the controller and responsible for your personal data (referred to as “HCC”, “we”, “us” or “our” in this privacy notice). We have appointed a Data Officer who is responsible for overseeing questions in relation to this privacy notice. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact the Data Officer using the details set out below.
Our full details are:
Hampstead Chamber Choir (Registered Charity 283634)
Data Officer: John Whitehead
Email address: firstname.lastname@example.org
Postal address: 41 Parliament Hill, London NW3 2TA
You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.
CHANGES TO THE PRIVACY NOTICE AND YOUR DUTY TO INFORM US OF CHANGES
This version was last updated in May 2018. We may update this notice from time to time.
It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.
2. THE DATA WE COLLECT ABOUT YOU
Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).
We may collect, use, store and transfer different kinds of personal data about you, as follows:
- Email address
- Postal address
- Phone number
3. HOW IS YOUR PERSONAL DATA COLLECTED?
We only use the following methods to collect data from and about you:
- Direct interactions.You may give us your personal data (e.g. name and email address) if you ask to be added to our mailing list, or you make a general enquiry about HCC or a particular concert or event, or you fill in the contact form on the HCC website.
4. HOW/PURPOSES FOR WHICH WE USE YOUR PERSONAL DATA
We will only use your personal data when the law allows us to, i.e. where there is a lawful basis for processing such data. We have identified HCC’s lawful bases in paragraphs 4.1 to 4.3 below. We will only use your personal data for the purposes for which we collected it and we will not share it with/disclose it to any third parties (unless required by law).
4.1 Our legitimate interests
Typically, we will only use your personal data for the purposes of responding to a specific request or question you have asked us (e.g. by email or on the website contact form), or to send you information about HCC concerts and events. Our lawful basis for processing your personal data in these circumstances is our legitimate interests in the efficient running of the choir and HCC events.
4.2 Performance of a contract
Occasionally we may need to use your personal data where we need to perform a contract we are about to enter into/have entered with you (e.g. if you are a professional musician). Our lawful basis for processing your personal data in these circumstances is the performance of a contract.
We will not send you marketing emails unless you have consented. In these circumstances, our lawful basis for processing your personal data is consent. Note that you have the right to withdraw your consent to marketing at any time and you may also “opt out” of receiving marketing emails, by contacting us at email@example.com
4.4 Third party marketing
We will not use your personal data to market third party products to you, and we will not share your personal data with third parties so that they may market products to you.
6. INTERNATIONAL TRANSFERS
We do not transfer your personal data outside the European Economic Area (EEA).
7. DATA SECURITY
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those members of the choir (e.g. committee members), employees and contractors who have an operational need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
8. DATA RETENTION
HOW LONG WILL YOU USE MY PERSONAL DATA FOR?
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
9. YOUR LEGAL RIGHTS
Under certain circumstances, you have rights under data protection laws in relation to your personal data. For example, you may have the right to request access to your personal data, request erasure of your personal data, object to processing of your personal data and/or withdraw consent.
If you wish to exercise any of the rights set out above, please contact our Data Officer (firstname.lastname@example.org).