Skip to main content

Privacy Policy

Privacy Policy

PRIVACY POLICY

We value your privacy and safeguard your data

Your personal data is data, which, by itself or with other data can be used to identify you.

We are Edinburgh Open Workshop Ltd, an open access, multi-discipline workshop space. This data protection statement sets out how we use your personal data. If you have any questions about any part of this statement, please contact us to discuss them.

Your rights under applicable data protection law

  • The right to be informed about the processing of your personal data
  • The right to have your personal data corrected if it’s inaccurate and competed if it’s incomplete
  • The right to object to the processing of your personal data
  • The right to restrict processing of your personal data
  • The right to ‘be forgotten’ and have your personal data erased
  • The right to request access to your personal data and information about how we process it
  • The right to move, copy or transfer your personal data
  • Rights in relation to automated decision-making, including profiling

The rights do not apply in all circumstances. For more information or to make a complaint about the way we handle data you can contact the Information Commissioners Office. It has enforcement powers and can investigate compliance with data protection law: ico.org.uk

The types of personal data we collect and use

  1. Full Name
  2. Contact address
  3. Contact email
  4. Contact phone number
  5. Mobile phone number
  6. Membership start date
  7. Membership end date

Why that personal data is held: In order to comply with HMRC & UK law.

In addition, we hold the data:

  1. In case you exercise your rights under data protection law and make requests
  2. For compliance with legal and regulatory requirements

Sharing of your personal data:

Subject to applicable data protection law and only if necessary, we may share the data we hold with:-

  • Our legal and professional advisors, including auditors.
  • Fraud prevention officers.
  • Credit reference agencies and debt collection agencies.
  • HMRC or other government bodies.
  • Courts, to comply with legal requirements bodies, and for the administration of justice or;
  • for use in an emergency.

In Summary

  • We do: hold your personal data as required by law
  • We do: hold your personal data to help us run our business efficiently
  • We do: respect your privacy and work hard to ensure we meet strict the GDPR requirements
  • We don’t: use automated ‘decision-making systems’ (profiling)
  • We don’t: sell your personal data to third parties

This statement is subject to periodic review. All members will receive updates by their preferred contact method as they are made. Large text and hard copies of this statement are available from the office.

Last Updated: November 2020