top of page
GDPR

GDPR STATEMENT

Hells Fells takes your privacy seriously.

Hells Fells would like to inform you that by contacting the event organiser Birks Farm, Birks Lane, Sedbergh, Cumbria, LA10 5HQ or carrying out work on behalf of Hells Fells this may result in you providing personal information which you consent to the event.

Your personal data will be kept in compliance with the new General Data Protection Regulation (GDPR)  Hells Fells will not pass your personal data to any other individual or organisation.

It should be noted under the Financial Regulations & Governance which Hells Fells are bound by that some personal information is required to be minuted and available in the public domain.

If you are concerned with any interaction with Hells Fells with regard to your personal details please contact the event organiser.

Data Protection

Hells Fells recognises its responsibility to comply with the Data Protection Act 1998 and the General Data Protection Regulation. The act and regulation regulate the use of personal data, this does not have to be sensitive data, it can be as little as a name and address.

 

THE DATA PROTECTION ACT:

The Data Protection Act 1998 sets out high standards for the handling of personal information and protecting individuals’ rights for privacy. It also regulates how information can be collected, handled and used. The Data Protection Act applies to anyone holding information about people electronically or on paper.

 

THE GENERAL DATA PROTECTION REGULATION:

The General Data Protection Regulation 2018 says that the information provided to people about how we process their personal data must be concise, transparent, intelligible and easily accessible, written in clear and plain language, particularly if addressed to a child and free of charge.

Hells Fells has a number of procedures in place to ensure that it complies with The Data Protection Act 1998 and the General Data Protection Regulation 2018 when holding personal information. Hells Fells is not required to appoint a Data Protection Officer.

When dealing with personal data Hells Fells must ensure that:

  • IT IS PROCESSED FAIRLY AND LAWFULLY This means that information should only be collected from individuals if has been open and honest about why it wants the

  • IT IS PROCESSED FOR SPECIFIED PURPOSES ONLY

  • IT IS RELEVANT TO WHAT IT IS NEEDED FOR: Data will be monitored so that too much or too little is not kept; only data that is needed should be

  • IT IS ACCURATE AND KEPT UP TO DATE: Personal data should be accurate, if it is not it should be corrected.

  • IT IS NOT KEPT LONGER THAN IT IS NEEDED

  • IT IS PROCESSED IN ACCORDANCE WITH THE RIGHTS OF INDIVIDUALS: This means that individuals must be informed, upon request, of all the information held about

  • IT IS KEPT SECURELY: This means that only Shap parish council can access the data, it should be stored securely so it cannot be accessed by members of the

 

COLLECTING DATA

Hells Fells recognises its responsibility to be open with people when taking personal details from them. This means that staff must be honest about why they want a particular piece of information. If, for example, a customer gives their email address to order a ticket, this will only be used for the purpose it has been given and will not be disclosed or used in any other way. Data may be collected via the website through the ‘Contact Us’ and subscription form. The contact us webpage contains a policy statement about how the data will be stored and used

STORING AND ACCESSING DATA

Hells Fells may hold information about individuals such as their addresses and telephone numbers. These are kept in a secure location at the event organisers place of work and are not available for the public to access. All data stored on a computer is password protected. Once data is not needed anymore, if it is out of date or has served its use, it will be shredded or deleted from the computer.

Hells Fells is aware that people have the right to access any information that is held about them. If a person requests to see any data that is being held about them,

  • They must be sent all of the information that is being held about them

  • There must be explanation for why it has been stored

  • There must be a list of who has seen it

  • It must be sent within one month

  • Requests that are manifestly unfounded or excessive may be refused or a charge made

  • If a request is refused, a reason must be

  • If an individual requests that their data is rectified or erased, this will be carried out.

 

DISCLOSURE OF INFORMATION

If a member of the event management team, for example the secretary needs to access information to help carry out their duties, this is acceptable. They are only able to access as much information as necessary and it should only be used for that specific purpose. If for instance someone has made a complaint about over hanging bushes in a garden, a councillor may access an address and telephone number of the person who has made the complaint so they can help with the enquiry. They can only do this providing they have suitable reasoning. However, before they access any sensitive information about a person, they would need consent to do this from the event organiser. Data should never be used for political reasons unless the data subjects have consented.

 

CONFIDENTIALITY

Hells Fells staff must be aware that when complaints or queries are made, they must remain confidential unless the subject gives permission. When handling personal data, this must also remain confidential.

This policy will be reviewed annually, as well as an annual review of the compliance and effectiveness of the policy.

bottom of page