Data Protection Policy (GDPR 2018)

Our main form of communication with members and contacts is by email. If you agree to use of your email for this purpose, please open this email link and request to remain.

admin@brixtonneighbourhoodforum.org

You can unsubscribe at any time. Our membership and meeting attendance forms also give the option for you to provide us with your postal address and a telephone number. The purpose of these are to provide an alternative means of contact to email, and to enable us to map the geographical distribution of members and contacts.

We promise that we will keep your data secure. Access to the data is strictly limited to the Officers of the Forum, and the data is used only for the purposes of the direct administration of the Brixton Neighbourhood Forum. We will not pass your data to others without your consent. For more information on our privacy policy, including how some data is held on secure third party services that we use for administering the organisation (Google Analytics, MailChimp and PayPal) please see our website here.

Privacy statement

Brixton Neighbourhood respects your privacy. Our policy below is designed to comply with the requirements of the General Data Protection Regulation 2018 and explains what information we collect and how we use it and protect it.

Website

Like most websites, this site uses Google Analytics (GA) to let us know how many people access the site and which pages they view. Google is a third party data processor whose service we use, that records data such as your geographical location, device, internet browser and operating system and IP address, but none of this information personally identifies you to us.

GA makes use of cookies, which are short text files stored on a user’s device (such as a computer, tablet or phone) by a website. Cookies are used for the technical functioning of a website or for gathering statistics. They are also typically used to provide a more personalised experience for a user – for example, when an online service remembers your user profile without you having to login. Disabling cookies on your internet browser will stop GA from tracking any part of your visit to pages within this website.

Newsletter and membership and voluteering

If you choose to join our email newsletter or sign up as a member or volunteer, the email address that you submit to us will be forwarded to MailChimp, a third party data processor which we use to provide us with email distribution services. The email address that you submit will not be stored within this website’s own database or in any of our internal computer address books. As a backup in case of loss of service, a list of paid members is kept by the treasurer on a password protected computer, separate from that computer’s internal address books.

Your email address will remain within MailChimp’s database for as long as we continue to use MailChimp’s services for email distribution, or until you specifically request removal from the list. You can do this by unsubscribing using the unsubscribe links contained in any email newsletters that we send you or by requesting removal via email. When requesting removal via email, please send your email to us using the email account that is subscribed to the mailing list.

If you are under 16 years of age you must obtain parental consent before joining our email newsletter.

While your email address remains within the MailChimp database, we will use their service to send you regular (usually monthly) newsletter-style bulletins and notice of forthcoming meetings.

Making payments with PayPal

If you join or renew your membership online using PayPal, your personal information, including credit or debit card details, will be processed by PayPal, which is a third party data processor whose service we use for secure online payments.

PayPal processes payments for any payments made through our website, including membership. The personal data (address data, telephone number, etc)  is forwarded to us, which we transfer to the MailChimp mailing list. Neither we nor PayPal retains any financial information you may submit as part of the purchasing process. PayPal monitors every transaction to prevent fraud, email phishing and identity theft. Every transaction is heavily guarded by PayPal’s encryption. If something appears suspicious, its dedicated team of security specialists will identify suspicious activity and help protect you from fraudulent transactions.

Your data as mentioned below is encrypted before transmission to prevent misuse of the transmitted data by third parties. SSL (Secure Socket Layer) is a security technology which guarantees that your personal data, including credit card information, login data and payment method, are securely transferred via the Internet. The data is encrypted so that is only readable by the PayPal payment system.

Your data, which is encrypted, is as follows:

  • personal data (address data, telephone number, etc)

  • login data (username and password)

  • all methods of payment selected, credit card and bank account

Third party processors

These third parties that we have mentioned are based in the United States and comply with the EU General Data Protection Regulation 2018 (GDPR) and are EU-U.S Privacy Shield compliant. [check]

Google (Privacy policy)

MailChimp (Privacy policy)

PayPal (Privacy policy)

Accuracy and retention of data

We do our best to keep your data accurate and up to date, assuming you provide us with the information we need to do so. If your data changes (for example, if you have a new email address), then you are responsible for notifying us of those changes. Upon request, we will provide you with information about whether we hold, or process on behalf of a third party, any of your personal information. We will retain your information for as long as your account is active or as long as needed to provide you with our services. Unless it is prohibited by law, we will remove any personal information about you from our records at your request. 

Data breaches

We will report any unlawful data breach of this website’s database or the database(s) of any of our third party data processors to any and all relevant persons and authorities within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen.

Data controller

The data controller of this website is: The elected officers of the Brixton Neighbourhood Forum

Data protection officer

Nicholas Weedon

Treasurer

Changes to our privacy policy

This privacy policy may change from time to time in line with legislation or industry developments. We will not explicitly inform our clients or website users of these changes. Instead, we recommend that you check this page occasionally for any policy changes.

The forum for community groups and individuals around Brixton