• Professional Development
  • Medicine & Nursing
  • Arts & Crafts
  • Health & Wellbeing
  • Personal Development

11 Data Protection courses in West Kirby

General Data Protection Regulations

5.0(3)

By Magpie Training

This course covers the principles of GDPR.  Everyone responsible for using personal data has to follow strict rules called 'data protection principles'. 

General Data Protection Regulations
Delivered In-Person in Consett or UK WideFlexible Dates
£18

Confidentiality and Data Protection

By Prima Cura Training

This confidentially & effective record keeping training course is aimed at assisting staff to understand what is expected of them regarding confidentiality, maintaining accurate up to date records and documents.

Confidentiality and Data Protection
Delivered in person or OnlineFlexible Dates
Price on Enquiry

Essential Lawful Intercept

5.0(3)

By Systems & Network Training

Lawful Intercept training course description Packet based networks require a different approach to Lawful Intercept (LI) than that used in circuit switched networks. This course focuses on what Lawful Interception and Data Retention (DR) means to communications service providers in the IP and NGN areas. The course assumes a basic knowledge of IP networking (i.e. DNS, TCP/UDP, IP, RTP) and the building of services on an IP platform (e.g. SIP, SDP, FTP, HTTP). The course first looks at the regulatory context for LI and DR and how this is translated to a practical architecture. What will you learn Recognise the legal and regulatory obligations to provide LI and DR. Identify the components of the handover architecture for each of LI and DR. Identify the preferred location of points of interception and points of retention in the IP network. Map intercepted material to handover protocols. Understand the data mapping defined in the available standards for both LI and DR. Lawful Intercept training course details Who will benefit: Technical and managerial staff needing to implement public networks. Prerequisites: TCP/IP Foundation Duration 1 day Lawful Intercept training course contents What is meant by LI and DR? Review of regulation: Data protection Directive; Data Retention Directive; RIPA. LI architectures Handover and Interception: ETSI standards ES 201 671 and TS 102 232. LI handover protocol IRI and CC handover; correlation; manual interfaces. DR architectures Handover of query results; points of retention. DR query command set Retrieval of retained records. Security concerns Operation privacy; target privacy; storage and transmission integrity. Implementation Identifying PoI and PoR for provided services. LI and DR wrap up Interaction with other services, storage obligations (volume, time, availability).

Essential Lawful Intercept
Delivered in Internationally or OnlineFlexible Dates
£1,397

Credit control and debt recovery - legal issues (In-House)

By The In House Training Company

It is essential that those charged with responsibility for credit control and debt recovery have a full appreciation of the relevant law: no-one can negotiate effectively to recover a debt if they don't understand the ultimate sanctions they can apply. This programme is designed to give them a practical, up-to-date understanding of the law as it applies to your particular organisation. This course will help ensure that participants: Understand the relevant laws Know how and when to invoke legal processes Avoid legal pitfalls in debt collection negotiations Specific, practical learning points include: Definition of 'harassment' How to set up an in-house collection identity Whether cheques in 'full and final settlement' are binding The best steps to trace a 'gone away'... and many, many more. 1 Data protection and debt recovery There are a whole range of things which can be checked on members of the public and which are not affected by the restraints of the Data Protection Act. These will be explained in simple, clear terms so that staff can use this information immediately. 2 County Court suing The expert trainer will show how to sue for money owed, obtain judgment and commence enforcement action without leaving your desk. This module is aimed at showing how to make the Courts work for you instead of the other way around! 3 Enforcement of judgments There are many people who have a County Court Judgment (CCJ) against their debtor but who still remain unpaid. This session explains each of the enforcement methods and how to use them to best effect. Enforcement methods covered include: Warrant of Execution Using the sheriff (now known as High Court Enforcement Officers) Attachment of earnings Third Party Debt Orders Charging Orders (over property and goods) Winding-up companies and making individuals bankrupt 4 Office of Fair Trading rules on debt recovery Surprisingly few people are aware of the Office of Fair Trading rules on debt recovery and many of those that do know think they don't apply to them - but they do. Make sure you know what you need to! 5 New methods to trace elusive, absentee and 'gone away' debtors Why write the money off when you can trace the debtor and collect the money you are owed? 6 Credit checking of new and existing customers It makes sense to credit check would-be, new and existing customers to evaluate the likelihood of payment delays or perhaps not being paid at all. This session shows a range of credit checking steps, many of which can be done completely free of charge, including a sample credit application/ account opening form. 7 Late Payment of Commercial Debts Regulations Do your staff understand this legislation and how to use it to make people pay quicker than ever before? The trainer shows how. 8 The Enterprise Act The Enterprise Act made some startling changes to corporate and personal insolvency. What are the implications for credit control and debt recovery within your organisation?

Credit control and debt recovery - legal issues (In-House)
Delivered in Harpenden or UK Wide or OnlineFlexible Dates
Price on Enquiry

FAT DISOLVING | Aqualyx or Lemon Bottle

By Harley Elite Academy (HeLa)

ADVANCED 8 CPD POINTS 1 DAY INTENSIVE COURSE  ONLINE or IN-CLINIC NOTE! After booking we will contact you for scheduling the exact course date! Courses dates are subject to change due to mentors availability. We will inform you via email if a date becomes available! Lipolysis (Fat Disolving) achieves good results in the following body zones: – Chin (double chin) – Hips (love handles) – Stomach (abdominal area) – Thighs (saddlebags) – Upper arms (arm toning) – Pseudo gynecomastia (male breasts) – Back (bra fat or muffin top) The acids present in Aqualyx cause fat destruction in the body. Aqualyx main active ingredient is deoxycholic acid. Deoxycholic acid is a bile acid, synthesized in the human liver. The fatty acids are then released into the body, to be broken down by our usual metabolic processes in the liver. Naturally occurring bile acid is used by the body to emulsify fat. Aqualyx comes in a water based injection that dissolves fat cells that it comes into contact with. A single vial will be sufficient. Small are for larger areas, such as the abdomen or the inner thigh, anywhere between 5 to 10 vials One treatment of AQUALYX® usually includes only 1 or 2 injection sites, as well as a local anaesthetic solution of lidocaine which is used to irradicate any pain and make the procedure as comfortable as possible. Course Content Disinfection, Health & Safety. Consultation and timings including data protection, medical history and client consent Skin Types Skin analysis Pre and post treatment procedures Injection protocol and techniques Safe handling needles, before, during and after treatment Product knowledge Setting up Treatment procedure Results clients can expects and managing expectations Contractions and aftercare advice Treatment planning and pricing Post care instruction Fat dissolving products (Lemon Bottle), very safe. Lemon Bottle is a high-concentration fat dissolve solution that combines Riboflavin (vitamin B2) and other premium ingredients that create fat decomposition by accelerating metabolism of fat cells. Become a certified Lemon Bottle fat-dissolving treatments expert with our comprehensive and accredited courses designed specifically for UK practitioners. We have the perfect course to suit your needs, focusing on the Lemon Bottle system. Minimal swelling, minimal pain. Begins working immediately.   You need to be medically qualified as a doctor, dentist, nurse, pharmacist or paramedic with full governing body registration and have completed a Foundation Filler Course and to have administered a number of cases. Additional information ATTENDANCE ONLINE (Theory), IN CLINIC (Practice) COURSE LEVEL INTERMEDIATE | Advanced Course

FAT DISOLVING | Aqualyx or Lemon Bottle
Delivered in London or UK Wide or OnlineFlexible Dates
£690 to £1,090

GDPR Consultancy Services

By Ensurety

With over 140 clients, from FTSE 100 companies to small SMEs, from publishing to transport services, from central Government to Parish Council, we are well placed to provide GDPR consultancy services to all businesses, local authorities and charities.

GDPR Consultancy Services
Delivered in person or OnlineFlexible Dates
Price on Enquiry

Credit control and debt recovery - practical issues (In-House)

By The In House Training Company

This course is designed specifically to help improve your collection rates. The UK's leading trainer in the subject uses practical examples and case studies to show how to use debt collection techniques that really work. This programme will help participants to: Understand debtors and communicate with them effectively Improve their telephone and writing skills Appreciate the key legal issues Track down 'gone-aways' Improve their collection rates 1 Giving credit and collecting debts The benefits when you get it right The cost of getting it wrong 2 Analysing yourself The importance of making the right 'first impression' Assessing your own personal communication style and how this affects your results How do you (or might you) look in the debtor's eyes? What would you like to change? 3 Analysing your debtors Types of debtorThe delaying debtorThe genuine debtorThe cashflow or hardship problem debtorThe ones who never intended to pay Spot the most common reasons and excuses for non-payment - and learn how to deal with them 4 Understanding debt recovery and the law Data protection issues County Court suing enforcement methods Human rights and debt recovery Retention of title matters 5 Telephone skills for debt recovery A 7-point plan which works every time Learning by example: listening to and analysing some pre-recorded (or live) collection callsWhat was done well?What should have been done differently?Did the collector recognise opportunities?Did the collector create opportunities where seemingly none existed?Did the collector negotiate well or not at all? 6 Writing skills for debt recovery Key phrases to avoid What to include A sample letter which gets results in over 90% of cases 7 Tracking down the 'gone aways' A unique debtor-tracing plan Why spend money on external tracers when you can find those 'gone away' debtors for yourself? 8 Course review The traps to avoid Key personal learning points

Credit control and debt recovery - practical issues (In-House)
Delivered in Harpenden or UK Wide or OnlineFlexible Dates
Price on Enquiry

DESIGNATED SAFEGUARDING LEAD FOR SCHOOLS & COLLEGES IN HOUSE TRAINING

By Child Protection Training Uk

This In House Training for the designated safeguarding lead in your school or college, we can offer a 4 or 6 hour course for 1 - 50 people, this can be delivered in your organisation during the day or evening at a times to suit your needs. Carry out your statutory responsibilities as a Designated safeguarding lead (DSL) with the DSL training courses and protect the children and young people you work with in schools and colleges in England.

DESIGNATED SAFEGUARDING LEAD FOR SCHOOLS & COLLEGES IN HOUSE TRAINING
Delivered In-Person in London or UK WideFlexible Dates
Price on Enquiry

Credit control training 'menu' (In-House)

By The In House Training Company

This is not a single course but a set of menu options from which you can 'pick and mix' to create a draft programme yourself, as a discussion document which we can then fine-tune with you. For a day's training course, simply consider your objectives, select six hours' worth of modules and let us do the fine-tuning so that you get the best possible training result. Consider your objectives carefully for maximum benefit from the course. Is the training for new or experienced credit control staff? Are there specific issues to be addressed within your particular sector (eg, housing, education, utilities, etc)? Do your staff need to know more about the legal issues? Or would a practical demonstration of effective telephone tactics be more useful to them? Menu Rather than a generic course outline, the expert trainer has prepared a training 'menu' from which you can select those topics of most relevance to your organisation. We can then work with you to tailor a programme that will meet your specific objectives. Advanced credit control skills for supervisors - 1⁄2 day Basic legal overview: do's and don'ts of debt recovery - 2 hours Body language in the credit and debt sphere - 1⁄2 day County Court suing and enforcement - 1⁄2 day Credit checking and assessment - 1 hour Customer visits and 'face to face' debt recovery skills - 1⁄2 day Data Protection Act explained - 1⁄2 day Dealing with 'Caring Agencies' and third parties - 1 hour Debt counselling skills - 2 hours Elementary credit control skills for new staff - 1⁄2 day Granting credit and collecting debt in Europe - 1⁄2 day Identifying debtors by 'type' to handle them accurately - 1 hour Insolvency: Understanding bankruptcy / receivership / administration / winding-up / liquidation / CVAs and IVAs - 2 hours Late Payment of Commercial Debts Interest Act explained - 2 hours Liaison with sales and other departments for maximum credit effectiveness - 1 hour Suing in Scottish Courts (Small Claims and Summary Cause) - 1⁄2 day Telephone techniques for successful debt collection - 11⁄2 hours Terms and conditions of business with regard to credit and debt - 2 hours Tracing 'gone away' debtors (both corporate and individual) - 11⁄2 hours What to do if you/your organisation are sued - 1⁄2 day Other topics you might wish to consider could include: Assessment of new customers as debtor risks Attachment of Earnings Orders Bailiffs and how to make them work for you Benefit overpayments and how to recover them Cash flow problems (business) Charging Orders over property/assets Credit policy: how to write one Council and Local Authority debt recovery Consumer Credit Act debt issues Using debt collection agencies Director's or personal guarantees Domestic debt collection by telephone Exports (world-wide) and payment for Emergency debt recovery measures Education Sector debt recovery Forms used in credit control Factoring of sales invoices Finance Sector debt recovery needs Third Party Debt Orders (Enforcement) Government departments (collection from) Harassment (what it is - and what it is not) Health sector debt recovery skills Hardship (members of the public) Insolvency and the Insolvency Act In-house collection agency (how to set up) Instalments: getting offers which are kept Judgment (explanation of types) Keeping customers while collecting the debt Late payment penalties and sanctions Letter writing for debt recovery Major companies as debtors Members of the public as debtors Monitoring of major debtors and risks Negotiation skills for debt recovery Old debts and how to collect them Out of hours telephone calls and visits Office of Fair Trading and collections Oral Examination (Enforcement) Pro-active telephone collection Parents of young debtors Partnerships as debtors Positive language in debt recovery Pre-litigation checking skills Power listening skills Questions to solicit information Retention of title and 'Romalpa' clauses Sale of Goods Act explained Salesmen and debt recovery Sheriffs to enforce your judgment Students as debtors Statutory demands for payment Small companies (collection from) Sundry debts (collection of) Terms and Conditions of Contract Tracing 'gone away' debtors The telephone bureau and credit control Taking away reasons not to pay Train the trainer skills Utility collection needs Visits for collection and recovery Warrant of execution (enforcement)

Credit control training 'menu' (In-House)
Delivered in Harpenden or UK Wide or OnlineFlexible Dates
Price on Enquiry

Confidentiality & Record Keeping

By Prima Cura Training

This course aims to provide a more in depth understanding of confidentiality and record keeping. Providing information on the importance of accurate and true record keeping.

Confidentiality & Record Keeping
Delivered in person or OnlineFlexible Dates
Price on Enquiry

Educators matching "Data Protection"

Show all 5
Ellesmere Port Catholic High School

ellesmere port catholic high school

Ellesmere Port,

The UK General Data Protection Regulation (UK GDPR) is part of the data protection landscape that includes the Data Protection Act 2018 (the DPA 2018). The UK GDPR sets out requirements for how organisations need to handle personal data. What information does the UK GDPR apply to? The UK GDPR applies to ‘personal data’, which means any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier. What are the rules on security under the UK GDPR? The UK GDPR requires personal data to be processed in a manner that ensures its security. This includes protection against unauthorised or unlawful processing and against accidental loss, destruction or damage. It requires that appropriate technical or organisational measures are used. The Data Protection Act UK GDPR Everyone responsible for using personal data has to follow strict rules called ‘data protection principles’. They must make sure the information is: used fairly, lawfully and transparently used for specified, explicit purposes used in a way that is adequate, relevant and limited to only what is necessary accurate and, where necessary, kept up to date kept for no longer than is necessary handled in a way that ensures appropriate security, including protection against unlawful or unauthorised processing, access, loss, destruction or damage There is stronger legal protection for more sensitive information, such as: race ethnic background political opinions religious beliefs trade union membership genetics biometrics (where used for identification) health sex life or orientation There are separate safeguards for personal data relating to criminal convictions and offences. Your rights Under the Data Protection Act 2018, you have the right to find out what information the government and other organisations store about you. These include the right to: be informed about how your data is being used access personal data have incorrect data updated have data erased stop or restrict the processing of your data data portability (allowing you to get and reuse your data for different services) object to how your data is processed in certain circumstances You also have rights when an organisation is using your personal data for: automated decision-making processes (without human involvement) profiling, for example to predict your behaviour or interests

Amalfi Corporate Solutions Uk

amalfi corporate solutions uk

London

Based in Surrey we are Automated Penetration Testing specialists, cyber security advisors, GDPR consultants, virtual DPO’s, cyber security awareness trainers, password management guru's, email security kings and offer the most flexible and cost effective IT support for SME's Automated penetration testing from Pcysys, Cycognito and Neuralegion overcomes the limitations of traditional periodic human based penetration testing thus improving and maintaining your security posture. We offer solutions for automated penetration testing of your infrastructure with Pcysys Pentera, your applications with Neuralegion and your Web Attack Surface/Shadow IT with Cycognito . In response to questions related to automated penetration testing a research VP at Gartner is quoted “I think we can risk saying Pen testing as it is today will cease to exist” We work with customers large and small Image British Film Institute Image Image Image Image Data Protection Officer - DPO Services Innovative program - from one day per month - no long term contract - makes having your own DPO affordable. Support Services With no complex on-boarding process we simply take on what you have and run with it. We don’t do ‘packages’ or introduce complexity, our contract is two pages, our price is fixed and our service is top drawer. Automated Penetration Testing Automated Penetration Testing – the bad guys never sleep. It is no longer enough to test once a year or rely on outdated technologies to detect weaknesses and attacks. AI and ML with real-time detection are now must have technologies. Email Security Health Check - FREE 30 seconds is all it takes for this Email Security Health Check and it is FREE. Works for in-house/cloud hosted/O365/GSuite. Test to see which of 17 email bourne threats get through your defences. Security Services From fully managed security awareness training programs and managed email protection systems which automate removal of malicious content to simple endpoint malware we cover the whole spectrum. DMARC - FREE email protection recommended by City of London Police and Global Cyber Alliance It is FREE and just needs to be configured and enabled. It helps protect against phishing, Business Email Compromise, Whaling and Spoofing as well as reducing SPAM Get a Personal Service IT support contracts get a personal service rather than a helpdesk Our range of services, enterprise in class but delivered at an SME price point, are designed to help you protect your data whilst not breaking the bank. Why Amalfitech For SMB and Enterprise Our solutions are tailored to the size of the company whether small, medium or large. Our small and mid-size business solutions are designed with costs and sustainability in mind, so you won’t get offered a low entry point and then get hit with high cost professional services. Everything is upfront, open and above all we are honest. Run by Techies Our customer facing staff are techies. The company is owned by techies. We don’t do high pressure sales. We just offer great advice and service. No Weekend Rates Is your current support company taking you offline during the working day to fix problems, or charging out of hours/weekend rates for services? Our fixed price unlimited, all-inclusive remote support packages have no extra charge for problem solving out of hours or at weekends. . IT Security Specialists and IT Support We are a GDPR and Data protection consultancy, IT security specialists and IT support company for small businesses. We are run by techies for the benefit of techies. Virtual CISO and DPO GDPR, PECR and Compliance Managed Security Internal Fraud Prevention Automated Penetration Testing Security Awareness Training IT Support and Maintenance Cloud Cost and Performance Optimisation The 'IT Sanity Check' for CEO's Image Image IT Solutions We provide new and creative solutions to difficult problems. Our goal is to help you through the minefield of rhetoric and marketing to make the best choice you can make, within your budget and that above all it works. Automated Penetration Testing Attacker and Insider threat Detection Email Phishing Testing, Prevention and Training Email and File Encryption Email/File/SharePoint Backup and Archiving VOIP Unified Endpoint Management OS and Application Containerisation Anti-Malware

Wrexham Foyer

wrexham foyer

Denbighshire,

In this document the expression ‘we’ refers to, ClwydAlyn Housing Limited, Tir Tai Limited, PenArian Limited and Tai Elwy Limited, that provides housing and related services across North Wales. Each entity is the controller of its own personal data although data may be processed by other Group members on its behalf This privacy notice sets out how ClwydAlyn collects and uses information about you. Please read this privacy notice carefully to understand how we will use your personal information. If you have any questions or queries in relation to this privacy notice, you can contact our Data Protection Officer at: datacontroller@clwydalyn.co.uk 72 Ffordd William Morgan, St Asaph Business Park, St Asaph, Denbighshire, LL17 0JD 0800 1835757 (freephone from a landline) or 01745 536800 This privacy notice explains: What information we may collect about you How we use your information Contacting you Sharing your information Our legal basis for collecting, holding and using your information Security and storage of your information Your rights 1.What information we may collect about you The information we collect about you depends on why we are dealing with you. For example, if you make a housing application or become one of our tenants, we will need more information from you than if you are merely making an enquiry. We may collect the information about you in the following circumstances: If you call our Contact Centre When you call our contact centre we collect Calling Line Identification (CLI) information. We use this information to help improve its efficiency and effectiveness. We record calls for training and monitoring purposes. Additionally, our call handlers will make a record of your call in order to manage your query. We may need to share information with other organisations within or outside ClwydAlyn in order to respond to your call, for example so that we can organise maintenance or repairs or other support. We will usually tell you if it is necessary for us to pass information on to other organisations. If you email us Any email sent to us, including any attachments, may be monitored and used by us for reasons of security and for monitoring compliance with office policy. Email monitoring or blocking software may also be used. Please be aware that you have a responsibility to ensure that any email you send to us is within the bounds of the law. If you make a complaint to us When we receive a complaint from a person we make up a file containing the details of the complaint. This normally contains the identity of the complainant and any other individuals involved in the complaint. We will only use the personal information we collect to process the complaint and to check on the level of service we provide. If a complainant doesn’t want information identifying him or her to be disclosed to any person that the complaint is about, we will try to respect that. However, it may not be possible to handle a complaint on an anonymous basis. Similarly, where enquiries are submitted to us we will only use the information supplied to us to deal with the enquiry and any subsequent issues and to check on the level of service we provide. If you use our services We hold the details of the people who request and use our services so that we can provide these services and for other closely related purposes. For example, we use information about our service users to develop and improve our services and to make sure we are delivering services to different groups fairly. If you apply for housing or become a tenant, there is certain information that we require in order to process your application and manage your tenancy. If you do not provide us with this information, we will not be able to progress your application. When you visit our websites We automatically collect certain information when you visit one of our websites. Please see Use of Cookies below for more information about this. When you use our customer portal, you are able to view information held in our housing management system, including personal details, account statements, tenancy information, repair history and pay your rent / service charges. Please note that we use a third party provider, Verseone to support our customer portal. Information we receive from others We work closely with other organisations, such as local councils, police forces, voluntary sector organisations, other housing providers and our contractors, and we may receive information about you from them. If you visit our premises We may ask you to sign in and out if you visit staff or residents at our premises. Access is controlled for the purposes of building and occupant security. Access is recorded to assist with fire and other evacuation procedures. Furthermore, your image may be captured on CCTV to monitor and collect visual images for the purpose of security and the prevention and detection of crime. If you use our Wi-Fi or computer to access our IT systems, access and activity may be monitored to prevent misuse of Group property, according to our IS Corporate policies. Job applicants When individuals apply to work for us, we will only use the information they supply to us to process their application and to monitor recruitment statistics. Where we want to disclose information to a third party, for example where we want to take up a reference or obtain a ‘disclosure’ from the Criminal Records Bureau we will not do so without informing them beforehand unless the disclosure is required by law. Personal information about unsuccessful candidates will be held for 12 months after the recruitment exercise has been completed; it will then be destroyed or deleted. We retain de-personalised statistical information about applicants to help inform our recruitment activities, but no individuals are identifiable from that data. Once a person has taken up employment with us, we will compile a file relating to their employment. The information contained in this will be kept secure and will only be used for purposes directly relevant to that person’s employment. Once their employment with us has ended, we will retain the file in accordance with the requirements of our retention schedule and then delete it. If you are a member of one of our Boards, Committees or Panels We may ask for personal details for managing and statistical purposes. 2.How we use your information We process your personal information primarily in connection with managing our housing services. If you are a tenant, this includes managing your tenancy and dealing with any applications, queries or complaints that you make. Examples of how we use your information include: to confirm your identity to assess your suitability to access any of our services to manage your tenancy, care or support to ensure our properties are appropriately maintained and in accordance with legal obligations, such as periodic gas safety checks to notify you about important changes to our services to let you know about other relevant services, both ours and those of other parties whose products and services we have agreed should be made available to you (see the section below on 'Contacting you' for more information about this) to update and correct our records to carry out statistical and market analyses, including benchmarking exercises, to enable us to understand you better and improve our services, and in accordance with our operating Regulations to develop, test and improve our systems to ensure that content of our website is presented in the most effective manner for you and for your computer to administer our website and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes to comply with other legal obligations, such as Health and Safety laws or safeguarding vulnerable people We may combine information we receive from other sources with information you give to us for the purposes set out above (depending on the types of information we receive). 3.Contacting you We will use your contact information to send you important information via letters, emails, text messages, or otherwise to telephone you. We may record telephone calls for security and training purposes. We may use the information we hold about you in order to provide you with information about our services which we feel may interest you. You can opt out of receiving marketing communications at any time, although please note that we will continue to send you important messages about your tenancy. If you have changed your mind about being contacted for marketing purposes, please contact our Customer Services Team on 0800 1835757 (freephone from a landline) or 01745 536800 to update your preferences. 4.Sharing your information We do not sell your information to any third party, but in certain limited circumstances we may disclose your personal information to: any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 736 of the UK Companies Act 1985; and/or other third parties in the following circumstances: if we are under a duty to disclose or share your personal data in order to comply with any legal obligation; in order to enforce or apply our terms and conditions and other agreements; to protect the rights, property, or safety of ClwydAlyn, our customers, or others; to investigate or prevent a crime. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction; to obtain any professional advice; and/or with your consent. 5.Our legal basis for collecting, holding and using your information Data protection law sets out various lawful legal bases (or ‘conditions’) which allow us to collect, hold and use your personal information: Where you have entered into a contract or contracts with us, we may need to use your information to provide you with our services. An example of this is where you have a tenancy with us. Where we are under a legal obligation which requires us to process your personal information. For example, notifications of Health and Safety incidents. We will sometimes use your personal information based upon your consent. We will always tell you where this is the case and ask you to agree before we process your information. An example of using your personal information with your consent is publishing your image as part of a photograph on our website. Finally, sometimes it is necessary to process your personal information for the purposes of our own legitimate interests. We will only do so where these interests are not overridden by the interests and fundamental rights or the freedoms of the individuals concerned. An example of this is when we may contact you about your experience of contacting our Customer Services Team or a recent repair to your property. Data protection law recognises certain "special categories" of personal information, which is information revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic information, biometric information for uniquely identifying a person, information concerning health, and information concerning a person's sex life or sexual orientation. Information about criminal offences and records is placed in a similar category. These special categories of personal information are considered particularly sensitive and so we will only collect and use this information where you have given us your explicit consent or where we consider it necessary to do so. 6.Security and storage of your personal information The information about you that we collect may be transferred to, and stored at, a destination outside the European Economic Area (EEA). It may also be processed by staff operating outside the EEA who work for one of our suppliers. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this privacy policy. We will generally keep personal information about you no longer than is needed for as per our Retention Policy. 7.Your rights You have the right to request from us access to your own personal information. This is sometimes known as a 'subject access request'. You also have the right to ask us not to process your personal data for direct marketing purposes. We will tell you if we intend to use your data for this purpose or if we intend to disclose your information to any third party for this purpose. You can exercise your right to prevent such processing by checking certain boxes on the forms we use to collect your data or by contacting our Customer Services Team on 0800 1835757 (freephone from a landline) or 01745 536800. From 25 May 2018, you will have additional rights to request from us: That any inaccurate information we hold about you is corrected That your information is deleted That we stop using your personal information for certain purposes That your information is provided to you in a portable format That decisions about you are not made by wholly automated means Many of the rights listed above are limited to certain defined circumstances and we may not be able to comply with your request. We will tell you if this is the case. If you choose to make a request to us, we will aim to respond to you within one month. We will not charge a fee for dealing with your request.