The Lakes Care Centre is the trading name of Blackcliffe Limited. Our services build strong, lasting relationships with its customers, partners, service users and associates, based on mutual trust: making sure that their personal data is safe and remains confidential is an absolute priority.
The Lakes complies with all European regulatory and legal provisions on the protection of personal data.
Users remain in control of their own data. The data is processed in a transparent, confidential and secure manner.
The Lakes is committed to a continuing the ‘quest’ to protect its users’ personal data in accordance with the General (EU) Data Protection Regulation of April 27, 2016 (hereinafter the “GDPR”).
This organisation aims to protect people’s privacy by ensuring that unauthorised or inappropriate access to or use of personal data is prevented.
Purpose of this Policy
The Lakes takes the protection of your personal data very seriously.
We developed this policy to inform you of the conditions under which we collect, process, use and protect your personal data. Please read it carefully to familiarize yourself with the categories of personal data that are subject to collection and processing, how we use these data and with whom we are likely to share it. This policy also describes your rights and how you can get in touch with us to exercise these rights or to ask us any questions you might have concerning the protection of your personal data.
This policy may be amended, supplemented or updated, in particular to comply with any legal, regulatory, case law or technical developments that may arise. However, your personal data will always be processed in accordance with the policy in force at the time of the data collection, unless a compulsory legal prescription determines otherwise and must be enforced retroactively.
This policy relates to the management, storage, use, processing, sharing and destruction of data held or processed by the organisation in its delivery of care services for service users and in its employment of staff. The organisation will do all that it can to ensure high standards in this important area, ensuring particularly that information about people is only collected where necessary and with the consent of the individual and is kept securely.
It is important to keep personal data safe – the news has carried many stories in recent years of thefts or losses of laptops and storage devices containing personal information which can also be threatened by unsecure computer networks.
Identity and Contact Details of the Controller
The personal data controller is:
Blackcliffe Ltd t/a The Lakes Care Centre, Lakes Road, Dukinfield, Cheshire, SK16 4TX, UK
Means any information relating to an identified natural person or one that can be directly or indirectly identified by reference to an identification number or to one or more factors specific to this person.
“us” or “our”
The Lakes Care Centre (hereinafter “The Lakes”),
any service user/website visitor.
the website of The Lakes available at the address: http://lakescare.co.uk/
Collection and Source of Personal Data
We will most likely collect your personal data directly (in particular via data collection forms on our website) or indirectly (in particular via the commissioners of our services and other related parties).
We undertake to obtain your consent and/or to allow you to refuse the use of your data for certain purposes whenever necessary.
You will in any event be informed of the purposes for which your data is collected via the various data collection forms and our employees at the time of collecting this data.
Types of Personal Data Collected and Used By Us
We may specifically collect and process the following types of personal data:-
The information that you provide when requesting a service from The Lakes (for example, when we have been asked to provide you with a service under a contract with your Local Authority Social Care Services or the NHS/CCG in your area), in participating in surveys, for marketing purposes, etc.)
The information that you provide for authentication purposes;
The information that you provide for contract fulfilment or to provide a service;
Via “posts”, comments or other content that you post on the website.
Personal data identified by an asterisk in the data collection forms are compulsory as these are necessary to fulfil any orders/contracts placed with our service. In the absence of this compulsory information, it may be difficult to safely deliver the services being requested.
Personal Data That We Automatically Collect
We collect some information automatically when you visit the website in order to personalize and enhance your experience. We collect this information using various methods such as:
However, you may prefer to disable cookies on this site and on others. The most effective way to do this is to disable cookies in your browser.
We suggest consulting the Help section of your browser or taking a look at the About Cookies website http://www.aboutcookies.org which offers guidance for all modern browsers and cookies.
An IP address is a unique identifier used by some electronic devices to identify and communicate with each other on the internet. When you consult our website, we can use the IP address of the device used by you to connect you to the website. We use this information to determine the general physical location of the device and to know in which geographical areas visitors are located.
The website uses Google Analytics to generate statistical reports. These reports tell us, for example, how many users consulted the website, which pages were visited and in which geographical areas website users are located. The information gathered via the statistics may include, for example, your IP address, the website from which you arrived at our site and the type of device that you used. Your IP address is hidden on our systems and will only be used if necessary to resolve a technical problem, for website administration and to gain insight into our users’ preferences. Website traffic information is only accessible to authorized staff. We do not use any of this information to identify visitors and we do not share this information with third parties.
The Lakes does not use social networking in connection with its work.
Purposes for Which We Use Personal Data
We use your personal data specifically for the following purposes:-
To provide the services requested under the contracts or request for servcies;
To conduct surveys and gather statistics;
Any other purpose of which we will inform you, if applicable, when we collect your data.
Legal Basis for the Processing of Personal Data
We process your personal data as part of the performance and management of our contractual relationship with you, in our legitimate interest to improve the quality and operational excellence of the services we offer to you or in compliance with certain regulatory obligations.
Your personal data may also be processed based on your prior consent in the event that under certain circumstances, your consent would be requested.
Disclosure of Personal Data
The security and confidentiality of your personal data are of great importance to us. This is why we restrict access to your personal data only to members of our staff who need to have this information in order to process your requests or to provide the requested service.
We will not disclose your personal data to any unauthorized third parties. We may, however, share your personal data with authorized service providers (for example: technical service providers [hosting, maintenance], consultants, etc.) whom we may call upon for the purpose of providing our services. We do not authorize our service providers to use or disclose your data, except to the extent necessary to deliver the services on our behalf or to comply with legal obligations. Furthermore, we may share personal data concerning you (i) if the law or a legal procedure requires us to do so, (ii) in response to a request by public authorities or other officials or (iii) if we are of the opinion that transferring these data is necessary or appropriate to prevent any physical harm or financial loss or in respect of an investigation concerning a suspected or proven unlawful activity.
We have a duty under the Health and Social Care Act to share your information under special category data with relevant third parties i.e. Care Quality Commission.
Storage Period of Your Personal Data
We will store your data only for as long as necessary to fulfill the purposes for which it was collected and processed. This period may be extended, if applicable, for any amount of time prescribed by any legal or regulatory provisions that may apply.
Sensitive Personal Data
“Sensitive personal data” refers to any information concerning a person’s racial or ethnic origins, political opinions, religious or philosophical beliefs, union membership, health data or data relating to the sexual life or the sexual orientation of a natural person. This definition also includes personal data relating to criminal convictions and offenses.
In the event that it would be strictly necessary to collect such data to achieve the purpose for which the processing is performed, we will do so in accordance with local legal requirements for the protection of personal data and, in particular, with your explicit prior consent and under the conditions described in this Confidentiality Policy.
Personal Information and Lack of Capacity
For service users without legal capacity, we will obtain permission to use and store their personal data from their next of kin/power of attorney where appropriate prior to storing and using their data.
Transfer of Personal Data
The Lakes will not share your personal data with anyone or any entity outside of the UK.
The Lakes will only share your personal data in order to safely and effectively deliver the services it has been requested to do so under contractual agreements. Where possible we will ask for permission each time this occurs but there may be occasions where we need to share it urgently and hence not get permission on every occasion.
To guarantee the security and confidentiality of personal data thus transmitted; we will take all necessary measures to ensure that this data receives adequate protection, such as signing standard European Commission contractual clauses or other equivalent measures.
In accordance with the applicable law, you have certain rights relating to the processing of your personal data.
Right of access
You have the right to request access to your personal data. You may also request rectification of inaccurate personal data or request that incomplete data be completed. You also have the right to know the source of the personal data.
Right of erasure
Your right to be forgotten entitles you to request the erasure of your personal data when:
The data is no longer necessary to achieve the purposes for which they were collected and processed;
You choose to withdraw your consent (if your consent was obtained as the legal basis for processing), without such a withdrawal affecting the lawfulness of any processing carried out prior to the withdrawal;
You object to the processing;
Your data was processed unlawfully;
Your data must be erased to comply with a legal obligation; or
Erasure of the data is required to ensure compliance with current legislation.
Right to restriction
You may also request restriction of processing of your personal data if:
You dispute the accuracy of your data;
We no longer need these data for processing purposes; and
You are opposed to the processing of the data.
Right to refuse direct marketing messages
The Lakes does not undertake any direct marketing activities hence you will not receive such messages directly from The Lakes.
Right of portability
You may request that we provide your personal data in a structured, commonly used, machine-readable format or you may request that it be transmitted directly to another controller on condition that:
The processing is based on your consent or necessary to fulfil a contract with you;
That it is done via automated means.
Right to issue advanced instructions about the processing of your personal data after your death
In application of the Data Protection Act, you may also formulate instructions on exercising your rights as set out in this section, after your death (in particular with regard to the storage period or the erasure and/or disclosure of the data) as well as appoint a person tasked with exercising these rights.
Right to lodge a complaint with a supervisory authority
If you have any concerns or complaints with regard to the protection of your personal data, you have the right to lodge a complaint with the UK Information Commissioner’s Office using the following link: https://ico.org.uk
However, please address any requests to us beforehand by contacting us at the address given below so that we can deal with your request and find an amicable solution.
To exercise your rights, you can contact us by writing to us at the following address: firstname.lastname@example.org your surname, first name and the reason for your request. We will most likely ask you for additional information in order to identify you and to enable us to deal with your request.
We implement all possible technical and organizational security measures to ensure security and confidentiality in processing your personal data.
To this end, we take all necessary precautions given the nature of the personal data and the risks related to its processing, in order to maintain data security and in particular to prevent distortion, damage or unauthorized third-party access (physical protection of the premises, authentication procedures with personal, secured access via confidential passwords, encryption of certain data, etc.).
Customer Relationship Management Database (“CRM Database”)
The Lakes does not hold such a data base.
We do hold a data base of information of our service users and other related parties in order to fulfil our obligations under contractual obligations.
Links to Other Sites
The Lakes does not provide links to other websites.
Updates of Our Confidentiality Policy
This policy will become effective on May 25, 2018. We may update or amend this confidentiality policy as and when needed. In this case, amendments will only become applicable after a period of 30 business days from the date of the amendment. We will notify you of any amendments directly and publish this on our website.
How to Contact Us
If you have any questions or comments with regard to this policy, please do not hesitate to contact us at the following address: email@example.com with the words ‘PRIVACY’ in the subject line.
Last updated: 25th May 2018