Privacy Policy

Privacy Policy

PRIVACY POLICY

  1. INTRODUCTION

This Privacy Notice explains what we do with information that we may hold about you (your “personal data”).

It describes how we collect, use and process your personal data, and how, in doing so, we comply with our legal obligations to you. Your privacy is important to us, and we are committed to protecting and safeguarding your rights.

For the purpose of applicable data protection legislation, the company responsible for your personal data (the “data controller”) is the Ministry of Housing, Communities and Local Government.

Your privacy is important to us. If you are dissatisfied with any aspect of this Privacy Notice or our handling of your personal data, please contact us using the details set out in section 8 below.

We may amend this Privacy Notice from time to time. Please visit this page if you want to stay up-to-date as we will post any changes here.

  1. WHAT KIND OF PERSONAL INFORMATION DO WE COLLECT?

You are receiving this Privacy Notice because, for example, you:

  • have signed up to receive our email communications;
  • have emailed us directly;

During the course of our business, we collect and use certain personal data, including:

  • your name;
  • your email address or other contact details (including your social media handle);
  • your address and postcode; and
  1. HOW WE COLLECT YOUR PERSONAL DATA

We collect personal data from you directly when you register to subscribe for our email communications or contact us directly.

  1. HOW WE USE YOUR PERSONAL DATA

The main reason for us to use your personal data is in order to satisfy your request to subscribe to our email communications via the Building Safety Charter. These communications will provide you with information about The Building Safety Charter and any news related to The Building Safety Charter.

  1. WHO DO WE SHARE YOUR PERSONAL DATA WITH?

We may need to share limited personal data with our service providers who help us to prepare and send you our communications. However, we do not authorise these organisations to use your personal data for their own purposes and take care to ensure that they keep your personal data secure, and delete it when it is no longer needed.

  1. HOW DO WE PROTECT YOUR PERSONAL DATA?

We care about protecting your personal data. That’s why we put in place appropriate security measures, including encryption techniques, which are designed to prevent any misuse of the data that you provide to us.

If you suspect any misuse, loss, or unauthorised access to your personal data please let us know immediately using the contact details set out in section 9 below. We will investigate the matter and update you as soon as possible on next steps.

  1. HOW LONG DO WE KEEP YOUR PERSONAL DATA FOR?

We will not keep your personal data for longer than is necessary for the purpose of providing you with the email updates you have requested or responding to any questions or comments that you send us directly. That means that we will keep your personal data for the length of time for which we are providing you with email communications.

If you contact us to unsubscribe from our email communications or to ask us to remove your personal data from our signatory database, we will delete your personal data unless we believe that we are required by law to keep the data (for example, because of a request by a tax authority or in connection with any anticipated litigation).

  1. YOUR RIGHTS

The law provides that you have various rights in relation to the personal data that we hold about you. We have described these rights below.

Right to object

This right enables you to object to us processing your personal data.  If you object then we will not be able to continue to send you relevant communications.

Right to withdraw consent

Where you have consented to us processing your personal data (for example, to send you email updates), you may withdraw this consent at any time by contacting us using the contact details set out in section 8 below. If you withdraw your consent then we will not be able to continue to send you our email updates unless we consider that there is an alternative legal basis to justify our continued processing of your data for this purpose, in which case we will inform you of this condition.

Right of access

You may ask us to confirm what personal data we hold about you at any time, and request us to modify, update or delete such information. If we provide you with access to the personal data we hold about you, we will not charge you for this unless your request is “manifestly unfounded or excessive”. If you request further copies from us, we may charge you a reasonable administrative cost. Where we are legally permitted to do so, we may refuse your request. If we refuse your request we will always tell you the reasons for doing so.

Right to be forgotten

You have the right to request that we “erase” your personal data in certain circumstances. For example, where you have withdrawn your consent to us processing your personal data, and there is no other valid reason for us to continue processing.

We would only be entitled to refuse to comply with your request in certain limited circumstances. For example, to enable us to exercise or defend a legal claim.

Right to restrict processing

You have the right to request that we restrict our processing of your personal data in certain circumstances. If you exercise this right, we will be able to continue to store your data on our database but we will not be able to do anything else with it until either the issue is resolved, you consent, or further processing is necessary for either the establishment, exercise or defence of legal claims, the protection of the rights of another individual, or reasons of important EU or Member State public interest.

We will, of course, notify you before lifting any restriction on processing your personal data.

Right to rectification

You also have the right to request that we rectify any inaccurate or incomplete personal data that we hold about you.

If you have any questions regarding how the Ministry of Housing, Communities and Local Government is processing your personal data, you can contact the Data Protection Officer at: dataprotection@communities.gov.uk

You also have the right to make a complaint to the data protection supervisory authority which is the Information Commissioner’s Office. You can contact them in the following ways:

Phone: 0303 123 1113

Email: casework@ico.org.uk

Post: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF

If you would like to exercise any of these rights, please contact us using the details set out above. Please note that we may keep a record of your communications to help us resolve any issues which you raise.

  1. INTERNATIONAL DATA TRANSFERS?

We want to make sure that your personal data is stored and transferred in a way which is secure. We will therefore only transfer data outside of the European Economic Area or EEA (i.e. the Member States of the European Union, together with Norway, Iceland and Liechtenstein) where it is compliant with data protection legislation and the means of transfer provides adequate safeguards in relation to your data, for example:

By way of a data transfer agreement with a third party, incorporating the current standard contractual clauses adopted by the European Commission; or

By transferring your data to an entity which has signed up to the EU-U.S. Privacy Shield Framework; or

By transferring your data to a country that has been found to provide adequate protection by the European Commission; or

Where you have consented to the data transfer.

  1. LEGAL BASES FOR US PROCESSING YOUR DATA

The lawful basis that we are relying on to process your personal data is that you have given us your consent.  In order to be valid:

You have to give us your consent freely, without us putting you under any type of pressure;

You have to know what you are consenting to – so we’ll make sure we give you enough information;

You should only be asked to consent to one processing activity at a time – we therefore avoid “bundling” consents together so that you don’t know exactly what you’re agreeing to; and

You need to take positive and affirmative action in giving us your consent – as part of our sign-on process, we ask you to tick a box giving consent. We also use a so-called “double opt-in” procedure whereby, after registering your details with us, we send you an email asking you to confirm that you wanted to subscribe. If you do not respond to this verification email, we will delete your personal data from our systems.

You have the right to withdraw your consent to our processing of your personal data at any time. Details of how to do so can be found in section 8 above.