Freedom Church, Mill Road, Great Barton, Suffolk, IP31 2RU
Previously: Best Before Project BSE
Privacy Notice Personal Information – General Data Protection Regulations (GDPR 2018)
The General Data Protection Regulations brought in new legal protection for your personal information from 25th May 2018. We take the privacy of our customers’ and volunteers’ information very seriously. This privacy document has been written to provide you with information about what personal data Still Good Food collects about you when you contact us, how we process your data and what your rights and choices are.
Customers and volunteers contact Still Good Food in a variety of ways: by email, by messaging our Facebook page, by telephone and by visiting the shop. Most of the enquiries that we receive from customers are about the shop such as its opening times and location. Most of the enquiries that we receive from volunteers are about volunteer opportunities. In order to deal with these enquiries in the most efficient manner, we may process some or all of the following data/information about you - your full name, email address and telephone number. This may be in electronic or written form.
In legal terms our legitimate reason for processing your data is in order to provide a service for you or to inform you about volunteer opportunities – this is done with your permission/consent. We assure you that your personal data is not shared with anyone outside Still Good Food and is processed only for the specific purpose that you have contacted us for. If you are a customer, after we have processed your enquiry, we do not retain your personal data for any reason. With regard to volunteers, we keep your personal data for as long as you are a volunteer with us, otherwise we will keep your information for three months. At Still Good Food access to this information is restricted to the core members of the project who only access it if they have a legitimate reason to do so and we do not share your personal data with any third parties at any point during your contact with us.
We are committed to ensuring that your personal data is secure. In order to prevent unauthorised access or disclosure, we have put in place appropriate technical, physical and managerial procedures in order to safeguard and secure the information we collect from you.
You have the right to have your data/information removed or erased at any point that you wish to by contacting us by email or in writing. In the event that we are requested by the police or any other regulatory government agency investigating any suspected illegal activity, we are under a legal obligation to provide your personal information to them.
Your rights under GDPR: The right to be informed The right to know how your information will be held and used (this privacy notice). The right of access defined as the right to see what information/data is held about you so you can verify it. The right to rectification - the right to make changes to your personal information if it is incorrect or incomplete. The right to erasure - the right to request that your personal information is deleted – also called ‘the right to be forgotten’. The right to restrict processing of your personal data, which means that you have the right to request limits on how your personal information is used. The right to data portability: under certain circumstances you can request a copy of your information held electronically so you can reuse it in other systems. The right to object - to be able to state that you do not want certain parts of your information recorded or for it to be only used for certain purposes.