This policy is written in accordance with the General Data Protection Regulations 2018. We are registered under the regulations as a Data Controller number Z7518478. You are welcome to contact us at any time to find out what information we hold about you and to have this amended or removed.
e-mail - firstname.lastname@example.org
telephone - 01206 216700
post - to Data Protection, Lepra, 28 Middleborough, Colchester, Essex, CO1 1TG
Our website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”) to help analyse visits to this website. Google Analytics uses “cookies”, which are small text files placed on your computer to achieve this. The information generated by the cookies about your use of this website -- standard internet log information (including your IP address) and visitor behaviour information in anonymous form -- is transmitted and stored by Google servers in the United States. Google will anonymise the information sent by removing the last octet of your IP address prior to its storage. According to Google Analytics terms of service, Google will use this information for the purpose of evaluating your use of the website and compiling reports on website activity for the European Council.
Lepra will not use or allow any third party to use the statistical analytics tool to track or to collect any personally identifiable information of visitors to this site. Google may transfer the information collected by Google Analytics to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. According to Google Analytics terms of service, Google will not associate your IP address with any other data held by Google.
We use information derived from cookies in order to compile statistics on how our website is being used, which helps us to improve our website and online services.
Facilitate users' ability to navigate through the website and ascertain whether the website is operating effectively. We also use cookie technology with our online registration forms to ensure we maintain your confidentiality and security as you move through secure or password protected areas of the our websites.
Lepra has no control and is not responsible for the privacy practices or the content of any other websites linked to this site. Please be aware that if you have followed a link from our site to another website we have no control over any information you supply to that third party website yourself.
While every effort has been made to ensure the accuracy of the information supplied on this site, Lepra cannot be held responsible for any errors or omissions, and makes no warranties, representations or undertakings about its content or the content of any other website referred to or accessed by hypertext link. All information is subject to change without notice.
We will not transfer any personal data outside of the European Union.
We will only disclosure information where legally required to do so by law. We will not share your data with other organisations or third parties for marketing purposes.
We aim to protect the security of your personal data by the use of methods including storing data on secure servers which are protected by Firewalls, regularly updated password and antivirus software. Access to data is restricted to authorised personal using a unique username/password security combination which is regularly updated and recorded. We adhere to Payment Card Industry Data Security Standards (PCI DSS) and this compliance is checked and audited annually.
If we receive a complaint, we will record details of the complaint. This would normally include the identity of the complainant and other individuals involved in the complaint. We will only use the personal information we collect to process the complaint and to monitor the level of service we provide.
We may need to disclose a complainant’s identity to the member of staff or third-party concerned - for example where it relates to the service provided by a member of staff or trainers. However, if a complainant requests to remain anonymous, we will try to respect that providing it is possible to investigate the complaint on an anonymous basis.
Any personal information relating to a complaint will be held in line with our retention policy for two years from closure. It will be retained in a secure environment and access to it will be restricted according to the ‘need to know’ principle.
We may anonymously use information obtained as part of the complaint process to improve performance where appropriate. Complaints about use, storage and retention of data by Lepra can also be made to the Information Commissioners Office.
We may change this policy from time to time, please check back periodically.