Privacy matters to us
YMCA WEST KENT PRIVACY STATEMENT
We only gather and process data we believe is genuinely required for efficient, cost-effective and safe running of the charity; to improve our services and support to beneficiaries, and meet our duty of care [including safeguarding, protection from harm, health & safety and crime prevention & detection] to all our beneficiaries, potential clients, past clients, staff, volunteers, trustees and supporters.
Notwithstanding our legal obligations under the Data Protection Act, ICO guidance and from 25 May 18 the General Data Protection Regulation [GDPR]; we respect the right to privacy and confidentiality of all our beneficiaries, trustees, staff [employees, self-employed, agency], volunteers, supporters, donors & all partner organisations in referrals and delivery.
We NEVER sell or share donor / supporter data with other organisations unless expressly requested by the data subject. Where permitted by law and good employment practice, we respect the request of any individual who wishes their support to remain anonymous or who wishes us to remove their personal data from our records.
We share specific data confidentially, on a strictly need to know basis, with statutory bodies such as Social Services, Police, Education, Housing and NHS where required to meet our Safeguarding Policy and legal duty of care to cooperate in keeping children, young people and vulnerable adults safe from harm. We fully cooperate with Police, HMRC, charity commission, regulators, auditors, CEOP, NCA or others to prevent & detect fraud or other criminal activity including cyber-crime. We share specific donor data confidentially with HMRC purely for reclaiming gift aid & maintaining audit records. We share specific staff & volunteer data confidentially with those providing references, DBS disclosures or any other aspect of safer recruiting, safeguarding and meeting our legal obligations under employment law and good practice such as the DBS and LADO. We share anonymous or aggregated client data, with funders where it is a contractual or funding requirement to collect data on ethnicity, gender, sexuality or similar sensitive data. We abide by the Kent & Medway Information Sharing Protocols which further safeguard how data is shared, protected & handled. Even if we agree to disclose on a strictly need to know basis the recipient must treat it as confidential and secure it. We routinely use a range of encryption systems to protect data and data that is shared.
In all other circumstances, we would usually only disclose personal data if required by a legally binding court order.
Where we believe data might be relevant to a future safeguarding enquiry we reserve the right to retain data securely for at least 50 years to comply with our insurance and safeguarding guidance.
Please contact us - below with any enquiries about data protection / GDPR or email data.protection@WestKentYMCA.org.uk
UNHAPPY? please contact us or email complaints@WestKentYMCA.org.uk