NRNE Partnership Privacy Statement
Overview: What you need to know in brief
nrnepartnership.org is the website of the No Recourse North East Partnership (NRNE). This means that NRNE are the “Data Controllers” of this website. We operate this website to communicate with our members and share information which may support people living with a status of NRPF in the UK. We use the lawful basis of consent, legitimate interests and compliance with a legal obligation for processing personal data. We use a limited amount of third parties that process personal data either directly on our website or indirectly through external lines to the service providers own webpage.
Preservation of your privacy is important to us and we are committed to letting you know how we use your personal information, keeping personal data safe and secure and to making only responsible use of your data. We ask you to read this Privacy Notice and Cookie Notice in full prior to your engagement and if you have any questions or concerns to contact us at [email protected].
This notice may be updated from time to time: Last updated November 2023
1.Who we are
www.nrnepartnership.org is the website of the No Recourse North East Partnership (NRNE). This means that NRNE are the “Data Controllers” of this website. References to “we”, “us”, “you” or “our” in this privacy statement are references to the No Recourse North East Partnership.
NRNE is hosted by GREC which is a company limited by guarantee registered in Scotland and , registered company number: SC396286; and a charity registered in Scotland, registered charity number: SC001823.
This statement relates to the various contact types associated with the No Recourse North East Partnership, including members, individual contacts of members, supporters, mentors and mentees.
2. Why we have a website
We have two main purposes for operating this website: Communication and Awareness Raising
We use this website to communicate information about our organisation, services, events and about information that may be of interest to our members and the wider public. We also operate this website to enable our users to communicate with us. In addition, we maintain a presence on social media platforms such as Twitter.
We use this website to further our mission to support people with NRPF with the relevant information and advice.
3.What personal data we collect
In order to operate our services and this website, we must process personal data. In all instances, we endeavour to collect the minimal amount of information necessary to achieve our purposes. We use the lawful basis of consent, legitimate interests and compliance with a legal obligation for processing personal data.
We will collect personal data when you access the services we offer. Depending on the service you use, the way we collect data is including but not limited to the following:
Downloadable resources – name and email address.
Support line – name, email address, organisation, job title and query details.
Events sign up – name, email address, job title, organisation, location, photograph consent for all events and payment details for paid events only.
Online feedback or research surveys – name, organisation and email address.
In all instances where we collect personal data from individuals it is to deliver our charitable services.
4. How we use your personal data
Sharing personal data
We never share your information with third parties, unless it is necessary to deliver the service you have requested from us. Primary examples of this include, but are not limited, to:
Sharing data with our event venues for security and safety purposes, or to ensure our accessibility obligations are met.
Sharing data with our external event staff or volunteers, including our trainers.
Sharing your data with an expert referral partner if you have contacted our support line.
5. Your Data Subject Rights
NRNE as an organisation is committed to ensuring the rights and freedoms of our website users and members are respected and that you as a data subject are enabled to exercise your rights. Under data protection law, you have specific rights including:
To update your data
If you wish to access or rectify personal data that has been collected (see section 3 for examples) or if you wish to receive any personal data we hold on you, please contact us and we will respond to your request within one calendar month.
To delete your data
If you wish to have your data removed entirely from our records, please contact us and we will respond to your request within one calendar month.
To withdraw your consent
If you wish to withdraw your consent from receiving our email communications, this can be done by clicking ‘update your preferences’ or ‘unsubscribe’ at the bottom of an email you receive from us.
To object to, or restrict data processing
If you object to the processing of your personal data, or wish to restrict the way in which it is processed by us, please contact us and we will respond as soon as possible. Please note that this may affect our ability to deliver our services to you.
6. How long we retain your data
We retain your personal data for as long as is considered necessary for the purpose for which it was collected (including as required by applicable law or regulation, typically 6 years). In addition, personal data may be securely archived with restricted access (and other appropriate safeguards) where there is a need to continue to retain it.
7. How we keep personal data safe
The nrnepartnership.org website processes a small amount of personal data. However, we take our duty to protect this data very seriously and have in place technical and organisational safeguards to do this.
Examples of technical safeguards include: regular security testing; website backups; disaster recovery systems, cryptography hash functions, autolocking, lock-outs and data restoration
Examples of organisational safeguards include: access controls to personal data; staff training; organisational policies, procedures, and handbooks.
To the best of our ability, we will keep any personal data safe. However, no system or transmission over the Internet is 100% secure. This means that we are unable to absolutely guarantee the security of personal data.
If you become aware of something that gives your concern about the security of your personal data, please contact [email protected]