Keeping us updated
In order to make sure we can contact you and keep our details up to date, we would ask you to please make sure you inform us if you change your address, email address and/or telephone number. If your situation changes while you are on our waiting list and you no longer require our support please let us know.
Data protection statement
Any personal information you give to us will be processed in accordance with GDPR regulations. Personal data (eg address, phone number, DOB, medical information, information about disability) will be stored in lockable paper-based systems for 5 years (after last contact with any individual/cessation of support) and any data held on a computer will be stored for 10 years from last contact (personal data as outlined above will be removed from database after 5 years). We will treat all your personal information as private and confidential, except where disclosure is made at your request or with your consent or where we are required by law to disclose.
Confidentiality
Whilst being supported by the Centre, our professional relationship with our client is based on trust. In practice, this means that what the client says will be treated as confidential, although other organisations/people may be informed of progress (for example, parents who are actively involved with us will be invited to reviews etc). In addition we work alongside some other organisations who may also need to be kept up to date on progress (information such as details of disability, medical conditions, name, address, ethnicity, email may be shared with SCC and Big Ambitions. Some basic information such as name and details of medical conditions/disability may be shared with employers as necessary for the purpose of providing the correct level of support). Very occasionally it may be necessary to inform other people of things you have discussed or disclosed to Centre staff; if, for example, if we consider the client or another person may be at risk of harm. This reason for sharing with come under specific sections of lawfulness of processing.
Who do I tell if things go wrong?
If a breach of data is suspected, this needs to be notified to Glynis Beck, Centre Manager (or Jayne Hurdley, Support Coordinator in her absence).
What is a personal data breach?
'A breach of security leading to the accident or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed'.
Once an organisation becomes aware of a personal data breach the 72 hour clock to report a reportable personal data breach to the ICO starts. The GDPR introduced a new duty on organisations to notify the ICO of any reportable data breach without undue delay and no later than within 72 hours of becoming aware of the personal data breach.