Privacy Policy

Privacy Policy 

Yorkshire Forest Folk is owned and run by Sophie Wilkinson, registered address 25 Langholm Crescent, Darlington, DL3 7ST

We will only collect and use personal data in ways that are described here, and in a way that is consistent with our obligations and your rights under the law.

What does this policy cover?

This policy covers the personal data that you provide us upon making a booking or joining a waiting list for one of our events. It also includes our use of images or videos of children as this is also classed as personal data.

What is Personal Data?

Personal data is defined by the GDPR as ‘any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier’.

Personal data is, in simpler terms, any information about you that enables you to be identified such as your name, address, image etc.

What Are My Rights?

Under the GDPR, you have the following rights, which we will always work to uphold:

a) The right to be informed about our collection and use of your personal data. This Privacy Policy should tell you everything you need to know, but you can always contact us to find out more.

b) The right to access the personal data we hold about you.

c) The right to have your personal data rectified if any of your personal data held by us is inaccurate or incomplete.

d) The right to be forgotten, i.e. the right to ask us to delete or otherwise dispose of any of your personal data that we have.

e) The right to restrict (i.e. prevent) the processing of your personal data.

f) The right to object to us using your personal data for a particular purpose or purposes.

g) right to data portability. This means that, if you have provided personal data to us directly, we are using it with your consent and that data is processed using automated means, you can ask for a copy of that personal data to re-use with another service or business in many cases.

Further information about your rights can also be obtained from the Information Commissioner’s Office or your local Citizens Advice Bureau.

If you have any cause for complaint about our use of your personal data, you have the right to lodge a complaint with the Information Commissioner’s Office.


What data do we collect?

-       We only collect the information that you provide in your booking questions e.g name, address, telephone number plus children’s names, dates of birth, address, medical information etc.

-       If you have given us permission, we may take photos or videos of your child during a session. Please see our media policy below.   

How do we use your information?

-       The data we collect is only used by ourselves to help us to run our sessions. Information such as emergency contact details and medical information is required to ensure the safety of our participants. This information is taken to the session with us on a secure device so that we have all emergency contact details, medical information etc with us.

-       We may use your data to contact you prior to a session taking place or following a session.

-       If you have given us permission, we may contact you for marketing purposes or images of children may be used in social media, e mail campaigns or on our website (for further information see our media policy below)


How long will you keep my personal data?

Data including images are kept for 5 years and destroyed.

 

How and Where Do You Store or Transfer My Personal Data?

-       Your data will be stored within the secure Class4Kids booking software.

-       If you have given us permission to contact you for marketing purposes, We may use the information we collect from you when you sign up to our mailing list to send out information about future events, services or competitions.

-       Personal data may be transmitted over secure networks only, transmission over unsecured networks is not permitted in any circumstances;

-       Personal data contained in the body of an email, whether sent or received, should be copied from the body of that email and stored securely. The email itself should be deleted. All temporary files associated therewith should also be deleted using permanent deletion of the email from trash;

-       Where personal data is to be transferred in hardcopy form it should be passed directly to the recipient; and

-       All personal data to be transferred physically, whether in hardcopy form or on removable electronic media shall be transferred in a suitable container marked “confidential”.

-       No personal data may be shared with any outside agencies unless in the event of an emergency.

-       Personal data must be handled with care at all times and should not be left unattended or on view to unauthorised employees or other parties.

-       If personal data is being viewed on a computer screen and the computer in question is to be left unattended for any period of time, the user must lock the computer and screen before leaving it; and

-       All passwords used to protect personal data should be changed regularly and should not use words or phrases that can be easily guessed or otherwise compromised. All passwords must follow recognised industry best practises. All software used by us is designed to require such passwords;

-       Under no circumstances are passwords to be written down or shared between any employees.

 

Media Policy

-       We will only photograph/video those children for whom parents have given written consent.

-       Any images/videos of children will be stored securely online once they have been removed from the device on which they were taken.

-       Where an image of a child is used for marketing purposes their name will not appear.

-       Images of children will not be saved with their names.

-       Parents are welcome to take photos at our events but should other people’s children be in the photo, parents should not upload this photo to social media unless they have sought permission from the parent of each child in the image.

Third-party disclosure

In the event of an emergency we may have to share data with emergency services. In some limited circumstances, we may be legally required to share certain personal data, which might include yours, if we are involved in legal proceedings or complying with legal obligations, a court order, or the instructions of a government authority

Contacting Us

 

If there are any questions regarding this privacy policy, you may contact us using the information below.

www.yorkshireforestfolk.co.uk

25 Langholm Crescent

Darlington

DL3 7ST

sophie@yorkshireforestfolk.co.uk

07815775934