You have the right to ask if HFRS are using your personal information and/or why, and/or for a copy of this information. You are only entitled to information about yourself except where you are acting as an appointed agent by the data subject. Once HFRS have received the information above you will receive a letter of acknowledgement and an indication of when HFRS will respond to your request; which will be within a month.

Where your request cannot be actioned, we will always provide a written response explaining our decision. We regularly review our privacy notice and encourage you to check it from time to time. Such a request would be a service that could be delivered jointly by Adult Social Care as well as the National Health Service. Our Access to Information Policy [653KB]  explains more about how we handle your data, or you can visit our list of Privacy Notices explaining how we do so for each activity. If you are not happy with how we deal with your request, please let us know and we will try to resolve your complaint.

What Is Gdpr, The Eu’s New Data Protection Law?

Any calls where there is a threat to either a child or an adult at risk will be forwarded on to the police. More information can be found in our Child Protection and Adults at Risk Policies, respectively. Any calls relating to a threat or information of a terrorism act will be forwarded on to the police. London Nightline is not a service designed for use by those under the age of 18 (“Children”). If you wish to withdraw the information that you have shared with us or discuss this further, please email us at and we will get back to you ASAP. Processing your data enables us to understand you better, communicate with you and others in the most appropriate way and adhere to best practices whereby your data and preferences are kept up to date.

Disclosure Of Information For Crime, Taxation, Or Legal Purposes

After the prescribed period has elapsed, the personal data is destroyed appropriately, for example, by shredding or, in the case of digital records, secure deletion. Following the issuance of the finalized European Data Protection Board (EDPB) guidance on June 21, 2021, we recognize that our customers may have additional questions about how Box safeguards customer personal data. This is provided by Click4Assistance, a third-party UK-based software company. If you have any concerns about the way we are collecting or using your personal data, you should raise your concern with us in the first instance or directly to the Information Commissioner’s Office.

This means that they cannot do anything with your personal information unless we have instructed them to do it. They will not share your personal information with any organisation apart from the Council or approved sub-contractors. Data processors are required to hold any personal information securely and to retain it for the period we instruct. In line with clause 6) of our Privacy policy, the GDPR gives you the right to request access to the personal data we hold about you. If you have any questions regarding the form or need help completing it, please contact  our data protection lead who is our Deputy CEO, Matt Harrison.

Prioritize And Meet Your Compliance Challenges

We maintain a retention schedule as directed by the code, which details the minimum retention period for the personal information we use and how we safely dispose of it. We aim to comply with the UK GDPR by meeting our organisational responsibilities and by responding to requests promptly and correctly. However, if you have an issue or would like to make a complaint, please see our Information Complaints page. Although every care is taken to protect information, our Information Security Incident and Data Breach Policy explains what we would do if we were to have a breach of security. Personal information – is any information relating to a natural person who can be identified, directly or indirectly, such as by name, an identification number, location data, an online identifier or genetic information. If information is no longer needed, then paper files will be either securely disposed of by using a cross-cutting (confetti) shredder or through confidential waste collection and all electronic records will be deleted.

At the same time, US laws have given intelligence and law-enforcement services broad powers to access data. We engage with regulators, advise on breach response, assist and advise on impact assessments, and participate in industry advocacy activities. However, our focus is always supporting our clients in navigating and mitigating the many risks to privacy and fundamental rights in today’s commercial and data-hungry world.

The Service stores all personal information on systems in the UK and does not send any personal information to countries that are not considered as “safe” by UK or EU Governments. The use of personal information is mainly governed by the General Data Protection Regulation 2018 and the Data Protection Act 2018. At the moment, UK GDPR requires certain organisations to have a Data Protection Officer (DPO) by law.

GDPR obligations are something all cloud service providers must contend with in light of the EU’s desire to harmonize Europe’s regulatory atmosphere. There are also situations where people can object to your use of their personal data, especially if you’re using it for marketing. itservice-datenschutz have the right to challenge the accuracy of information you hold about them and can ask you to delete it. These rights don’t always apply, but you still need to take requests seriously and respond within a month.

High levels of data protection are necessary for such applications, and you should check your contract or service level agreement carefully to find out what security measures your provider takes to protect your data. The Information Governance Manager provides advice on data protection, arranges for the provision of training to Elected Members and staff and arranges for Subject Access Requests to be replied to. Under the Act every organisation which uses or processes information relating to a living individual must formally register with the Information Commissioner’s Office at regular intervals.