Purpose of the processing and the legal basis for the processing
In order for HDARC to fulfil its contractual, members and visitor obligations, there is a requirement to collect specific personally identifiable information relating to our members and visitors. There are a couple of legal bases for the processing of such personally identifiable information; primarily personal information is processed on the basis of consent. We retain evidence of the details of consent which has been provided by our members and visitors in order to process their information. Where consent cannot be obtained for various reasons, we may legally process the information you provide to us because we have a legitimate interest in doing so, e.g. direct marketing, on a lawful basis or for employment requirements.
Information we may collect from you and how it could be used
We may collect and process the following data about you:
– Information that you provide by filling in forms on our website.
– Name, address and postcode – without this we won’t know where to send your hardcopy journal.
– Email address, we will send send you a weekly update, informational messages as well as occasional offers which may interest you.
– Telephone number, we may ask for this on occasion to ensure that we can contact you, for example should an event be cancelled at short notice.
– Details of your visits to our site and the resources that you access.
– If you contact us, we may keep a record of that correspondence.
Personal data and security
HDARC is required to transfer the personal information provided by its members and visitors to third parties in order to fulfil contractual obligations. The following are categories of recipients that members and visitors information could be transferred to:
– Data Centres
– The Radio Society of Great Britain (RSGB)
– External IT Providers
All information you provide to us is stored on our secure servers. We will not disclose your information to any of the relevant third parties listed above for marketing purposes.
HDARC retain all member and visitor information for 2 years after they last interacted with us. Where there has been a period of 2 years and there has been no interaction between the organisation and the member or visitor, their information is erased and securely disposed of.
Rights of data subjects
As a Data Subject (individual) which HDARC process information on behalf of, you have the right to withdraw consent from our processing at any given time. You can do this by contacting us on firstname.lastname@example.org. You also have a right to lodge a complaint with the Supervisory Authority (Information Commissioners Office in the UK), should you feel that we have not handled your information in line with legislative and regulatory requirements. You have the right to make a Subject Access Request to us in the event that you wish to determine what information we hold on you. We welcome these requests and aim to respond within 72 working hours of receipt. To make such requests, please contact us on email@example.com. Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies.
We may collect information about your computer, including where available your IP address, geographic location (if you allow when prompted by your browser), operating system and browser type, for system administration. This is statistical data about our users’ browsing actions and patterns.
– Remember when you visit this website to keep track of your browsing patterns and to build up a profile of how you and others use the website – We make use of Google Analytics for statistical analysis.
– Make our website work as efficiently as possible
Most browsers allow you to turn off cookies. To do this look at the “help” menu on your browser. Switching off cookies may restrict your use of the website and/or delay or affect the way in which it operates.
We regularly send out email communication to keep you up to date with all the latest news and offers from HDARC. If you wish to unsubscribe from these emails you can do so at any time by emailing the sender. Please note that even if you decide to unsubscribe from promotional email messages, we may still need to contact you with important transactional information related to your membership.
The EU General Data Protection Regulation (GDPR) replaced the existing 1995 EU Data Protection Directive (European Directive 95/46/EC) on 25 May 2018. As a result of this, EU residents now have greater say over what, how, why, where, and when their personal data is used, processed, or disposed. This rule clarifies how the EU personal data laws apply. Any organization that works with EU residents’ personal data in any manner, irrespective of location, has obligations to protect the data.
How has HDARC prepared for GDPR?
We have reviewed (and updated where necessary) all our internal processes, procedures, data systems and documentation to ensure that we are GDPR compliant. Our GDPR principles are:
– Data is processed fairly and lawfully
– Data is processed only for specified and lawful purposes
– Processed data is adequate, relevant and not excessive
– Processed data is accurate and, where necessary, kept up to date
– Data is not kept longer than necessary
– Data is processed in accordance with an individual’s consent and rights
– Data is kept secure
– Data is not transferred to countries outside of the European Economic Area (‘EEA’) without adequate protection