We ask that you read this policy carefully so that you are fully aware of how and why we are using your data. If you have any questions, or would like to exercise your privacy rights, please contact us directly.
We hold data on suppliers of equipment and services, those who have given financial or other support to Stevenage Community Trust, those who might do, and those who apply or may wish to apply to Stevenage Community Trust for grants, advice or volunteer assistance, whether on behalf of an organisation or personally. We also collect basic data when you follow us on social media or sign up for notifications.
The majority of the information we hold about you has been provided directly to us by you. In some cases we may collect data from someone else. Examples include where existing supporters feel you may be interested in supporting our work and suggest your name to us, or data collected via a service provider like JustGiving or Virgin Money Giving. We also collect data from publicly available sources. Examples include information gathered from a website, news article or on-line media, including social media like LinkedIn or Twitter.
What we do with your data and why
Supporters and Volunteers
The core purposes of our data processing are to:
We may use data obtained other than from you to ensure that your contact details are up to date, to plan our fundraising, and to ensure that appropriate due diligence is carried out to safeguard the assets and reputation of Stevenage Community Trust.
We collect the following classes of information:
We collect the information described below in order to solicit and process applications for grants from Stevenage Community Trust. Some of the information may also be processed in the ways described above under “Supporters and Volunteers.”
We collect the following classes of information for grant applicants:
We may need to collect the following sensitive data about you in order to assess your application for a grant:
We require your explicit consent for processing sensitive data and we will request your signature for this consent.
We have appropriate security measures in place to prevent personal data from being accidentally lost, or used or accessed in an unauthorised way. We limit access to your personal data to those who have a genuine business need to know it. Those processing your data will do so only in an authorised manner and are subject to a duty of confidentiality. We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so. When communicating with us by email you should ensure that you take all reasonable precautions to protect any sensitive personal data.
We do not share your data with anyone else or any other organisation unless it is necessary for the purpose for which you have given us the data. Examples are given below:
Some of our suppliers run their operations outside of the European Economic Area (EEA). Although they may not be subject to the same data protection laws as companies based in the UK, we will take steps to make sure they provide an adequate level of protection in accordance with UK data protection law. By submitting your personal information to us you agree to this transfer, storing or processing at a location outside of the EEA.
We will only retain your personal data for as long as is necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
By law we have to keep basic information about our customers (including Contact, Identity, Financial and Transaction Data) for six years after they cease being customers for tax purposes.
In some circumstances you can ask us to delete your data: see below for further information.
In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
Google Analytics records visitor trends and uses a cookie to track which pages are accessed. The cookie contains no personally-identifiable information, but it does use your computer’s IP address to determine where in the world you are accessing the site from, and to track your page visits within the site.
You have the ability to accept or decline cookies by modifying the settings in your browser. However, our website may not function correctly if cookies are disabled.
The law requires us to tell you the basis on which we process your data.
When it is no longer needed, all personal data will be destroyed securely.
The law requires us to tell you that you have a variety of rights about the way we process your data. These are as follows:
If you have any questions about this privacy notice, about the way in which we process your data, or if you wish to change the way we use your data, including how we communicate with you, please contact us:
Stevenage Community Trust, Follett House, Primett Road, Stevenage, Hertfordshire, SG1 3EE
T: 01438 525390
In our first 25 years, we gave out more than £1 million in grants to help local people and organisations.
We could not have realised this without the generosity of our supporters and our aim is to build on the these rock solid foundations and be even more impactful for our community over the next 25 years. Robert Stewart - Chairman