Brighton & Hove Community Housing
Community Interest Company
Privacy and Data Policy
Brighton and Hove Community Housing CIC
------
Personal Privacy, Data and Cookie Policy
for
Public and Members
------
V3.0 Effective 16th October 2021
Brighton and Hove Community Housing CIC
8 Holmstead
166 Upper Lewes Road
Brighton
BN2 3FB
01273 628505
https://bhchousing.org.uk/
office@bhchousing.org.uk
Principles
BHCH endeavours to securely hold and process your personal data, and only data that we need to hold or function.
Collection
- We only want to use your personal data that is collected directly from you.
- We will not seek to collect your personal data from other sources. The exception to this is if you require us to collect your personal information from elsewhere, or when we are obliged by law.
- We will only collect personal data that is necessary to achieve what is required.
- We will only collect personal information with your consent, or for an otherwise appropriate lawful basis.
Using
- We will only use your personal data when necessary.
- We will only use such personal data as is required and relevant.
- Only those authorised by BHCH shall use your personal data.
- We will only use your personal data as you have consented, or for an otherwise appropriate lawful basis.
Holding
- We will securely hold your personal data, internally, or externally with trusted suppliers.
- Access to your personal data will be restricted to only those authorised by BHCH, and only if appropriate.
- We will only continue to hold your personal data so long as you continue to consent, or for an otherwise appropriate lawful basis.
Specifics
Use
BHCH uses personal data by BHCH for the following purposes.
- Newsletter administration
- Membership/company administration
- Responding to your requests, queries or publicity
- Obligations under law
- Dealing with complaints
- Conversion to anonymous non-personal data
- Personal safety
- Fundraising
- Community engagement and consultation
- Security and legal defence
Storage
- Your personal data information will fall into 1 or both of our storage categories of information we hold:
Category 1: Company History
Category 2: Legal Liability
- Category 1: Company History
Core company records form the official history of BHCH. Some records may be legally required to be kept for at least the existence of BHCH as a company or project. Even if not, some are so important to the history of the company/project, they should be kept.
These records will include company accounts, minutes etc.
- Category 2: Legal Liability
Individual records of your personal information will be securely deleted, or converted to anonymous non-personal information, within 1 year of all the following conditions being met.
a. BHCH no longer has any possible legal liability concerning or involving the records of your personal information concerned.
b. A financial transaction has not taken place between you and BHCH in the last 7 years.
Website
- Cookies are small files that are stored on your computer that help with the functioning of BHCH's website.
You can block and delete cookies through your browser settings. BHCH strongly advises that browsers are set to delete cookies automatically when closed. We also advise to delete cookies between the accessing of different websites. This helps prevent spying, tracking, and improve security.
The BHCH website will operate with cookies prevented but services and performance may be impaired.
- Suppliers' domains providing services to bhchousing.org.uk:
Suppliers
- The following suppliers to BHCH process personal information.
Information
Review and Amendments
- We will review the policy annually.
- We will advise changes at least 1 month in advance.
Information Commissioner's Office
- You can find more information about the rules and your rights at https://ico.org.uk/your-data-matter
- Contact or complain to the ICO:
0303 123 1113 or 01625 545700
casework@ico.org.uk
https://ico.org.uk
Privacy and Security Measures
The following measures are available to increase security and privacy for your personal information.
- Restrict website scripts to only trusted domains and only temporarily so, clearing regularly
- Restrict cookies to only trusted domains and clear regularly and upon exiting
- Use encrypted communication methods
- Install anti-virus, anti-malware, anti-spyware
- Signout when finished using an online service
- Download emails to email management software
- Install anti-spam software to tackle spam emails
- Check your firewall settings on all devices, including smartphones and internet connected devices
- Passwords to be made up of capital letters, lower case letters, number and symbols
- Don't share your passwords