Privacy Policy

Privacy Policy

We want everyone who works for us, supports us, or who comes to us for housing, care or support, to feel confident and comfortable with how any personal information you share with us will be looked after or used. This Privacy Policy sets out how we collect, use and store your personal information (this means any information that identifies or could identify you).

 

Who we are

We are Trinity Hospital: a local charity with a proud history of supporting people in need for over 500 years.  We offer access to opportunities, hope and a place to belong.

We do this by providing safe, secure, affordable and well maintained sheltered accommodation, and residential care for adults in their older age, and grants, education and support to young people from disadvantaged communities.

We are committed to protecting your personal information and making every effort to ensure that your personal information is processed in a fair, open and transparent manner.

We are a “data controller” for the purposes of the Data Protection Act 2018 and from 25 May 2018 the EU General Data Protection Regulation 2016/679 (“Data Protection Law”).  This means that we are responsible for, and control the processing of, your personal information.

For further information about our privacy practices, view our Data Protection and Confidentiality Policy below.

 

How we collect information about you

We collect information from you in the following ways:

When you interact with us directly:

This could be if you enquire or apply for our housing or care services, if you make a donation to us, apply for a job or volunteering opportunity or otherwise provide us with your personal information.  This includes when you phone us, visit our website, or get in touch through post, email, or in person.

We operate CCTV systems at our sites for the detection and prevention of crime. It operates continuously and recordings are held for one month.  From time to time we may operate CCTV / sound recording and / or use photography to capture evidence of breach of tenancy, alleged anti-social behaviour or crime.

We may also take photographs at our events, at our properties and in our communities to use for general marketing and publicity. However, photographs of individuals will only be used for those purposes with your consent.

When you interact with us through third parties: This could be if you provide a donation through a third party such as BT Donate or one of the other third parties that we work with and you provide your consent for your personal information to be shared with us.

When you visit our website/social media pages: We gather general information which might include which pages you visit most often and which services, events or information is of most interest to you. We may also track which pages you visit when you click on links in emails from us. We also use “cookies” to help our site run effectively. There are more details below – see ‘Cookies’.

We use this information to personalise the way our website is presented when you visit to make improvements and to ensure we provide the best service and experience for you. Wherever possible we use anonymous information which does not identify individual visitors to our website.

 

Information we collect and why we use it

Personal data we collect includes details such as:

  • Full name (and proof of your identity / photo ID)
  • Date of birth
  • National Insurance number.
  • Contact details (phone, e-mail or correspondence address)
  • Details of anyone authorised to act on your behalf if applicable
  • Banking details for payment of fees and contributions or to make a donation
  • Disabilities or vulnerabilities. We use this information to tailor our service to better meet your particular circumstances and needs.
  • Details of medical conditions and health information
  • Financial information. We may use this to help resolve arrears payments and optionally to provide welfare, benefits and debt advice as a free service to help you budget and pay your bills. We may use this to apply for funding on your behalf.

We will mainly use this information:

  • To provide the housing, care and other services/support that you have requested.
  • To update you with important administrative messages about your donation, an event or services you have requested.
  • To comply with regulatory requirements.
  • To keep a record of your relationship with us.
  • Where you volunteer with us, to administer the volunteering arrangement.
  • To contact you about our work and how you can support us (see section 5 on ‘Marketing’ below for further information).
  • To invite you to participate in satisfaction surveys.

Much of the data we use relates to our properties and their maintenance and repair. We do not consider property information used in conjunction with the property address to be your personal information. For example, the age of the kitchen, results from an asbestos survey, planning to replace windows or a repair to a tap.

As soon as your name, contact details or other personal information is used in conjunction with property information, such as to complete a property repair visit, then this is treated as personal information.

 

Sensitive Personal Information

Data Protection Law recognises that some categories of personal information are more sensitive.  If you provide us with any Sensitive Personal Information by telephone, email or by other means, we will treat that information with extra care and confidentiality and always in accordance with this Privacy Policy.  Special categories of data held by the charity would include physical or mental health details and ethnicity/racial data.

 

Legal basis for using your information

In some cases, we will only use your personal information where we have your consent or because we need to use it in order to fulfil a contract with you.

However, there are other lawful reasons that allow us to process your personal information and one of those is called ‘legitimate interests’. This means that the reason that we are processing information is because there is a legitimate interest for Trinity Hospital to process your information to help us to achieve our vision of providing safe, secure, affordable and well maintained sheltered accommodation, residential care and extra care housing for adults in their older age and grants, education and support to young people from disadvantaged communities.

Whenever we process your Personal Information under the ‘legitimate interest’ lawful basis we make sure that we take into account your rights and interests and will not process your personal information if we feel that there is an imbalance.

Some examples of where we have a legitimate interest to process your Personal information are where we provide you with housing or care services, contact you about our work via post, use your personal information for data analytics, for our legal purposes (for example, dealing with complaints and claims), or for complying with guidance from the Charity Commission.

 

Sharing your Information

The personal information we collect about you will mainly be used by our staff (and volunteers) at Trinity Hospital so that they can support you.

We will never sell or share your personal information with organisations so that they can contact you for any marketing activities. Nor do we sell any information about your web browsing activity.

Trinity Hospital may however share your information with our trusted partners and suppliers who work with us on or on our behalf to deliver our services, but processing of this information is always carried out under our instruction. We make sure that they store the data securely, delete it when they no longer need it and never use it for any other purposes. Some examples of where we may share your information are with, the local safeguarding board, Care Quality Commission and Local Authority,  and our partners who help us to process donations and claim Gift Aid.

Trinity Hospital also shares limited personal data with our contractors who are carrying out services on our behalf. Our contractors are required to comply with the law to ensure data is managed appropriately and for specified purposes, to complete emergency, responsive or planned property repairs.

We may need to share personal information with government departments and agencies, with our regulator and auditors, with utility companies or with other organisations and agencies where we are legally allowed to do so.

We enter into contracts with these service providers that require them to comply with Data Protection Laws and ensure that they have appropriate controls in place to secure your information.

 

Legal disclosure

We may disclose your information if required to do so by law (for example, to comply with applicable laws, regulations and codes of practice or in response to a valid request from a competent authority).

 

Keeping your information safe

We take looking after your information very seriously. We’ve implemented appropriate physical, technical and organisational measures to protect the personal information we have under our control, both on and off-line, from improper access, use, alteration, destruction and loss.

 

How long we hold your information for

We only keep it as long as is reasonable and necessary for the relevant activity, which may be to fulfil statutory obligations. We have a Document Retention Policy in place which outlines how long we keep different types of information for.

 

Your rights

You have various rights in respect of the personal information we hold about you – these are set out in more detail below.  If you wish to exercise any of these rights or make a complaint, you can do so by contacting our CEO at Wyggeston’s, Admin office, 160 Hinckley Road, Leicester LE3 0UX, by email at ceo@wyggestons.org.uk, by phone on 0116 0254 2973 (option 3). You can also make a complaint to the data protection supervisory authority, the Information Commissioner’s Office, at https://ico.org.uk/

  • Access to your personal information: You have the right to request access to a copy of the personal information that we hold about you, along with information on what personal information we use, why we use it, who we share it with, how long we keep it for and whether it has been used for any automated decision making. You can make a request for access free of charge.  Please make all requests for access in writing to the CEO at the address above, and provide us with evidence of your identity. We have one month to respond to you. We will seek to comply with your request however there may be some circumstances where it may not be possible to comply with your request fully, i.e. we may refuse or charge for requests that are manifestly unfounded or excessive.  If you request is refused we will write to you within one month to advise you, you then have the right to complain to the ICO.
  • Right to object: In certain circumstances you have the right to object to your personal information being processed. Depending on the legal basis for processing, this may either be an absolute right (such as direct marketing), or may be subject to us being able to demonstrate compelling legitimate grounds which would override your own interests, or where the information is needed for the purpose of legal claims.  Please contact us as noted above, providing details of your objection.
  • Consent: If you have given us your consent to use personal information (for example, for marketing), you can withdraw your consent at any time.
  • Rectification: You can ask us to change or complete any inaccurate or incomplete personal information held about you.
  • Erasure: You can ask us to delete your personal information where it is no longer necessary for us to use it, you have withdrawn consent, or where we have no lawful basis for keeping it.
  • Portability: You can ask us to provide you or a third party with some of the personal information that we hold about you in a structured, commonly used, electronic form, so it can be easily transferred.
  • Restriction: You can ask us to restrict the personal information we use about you where you have asked for it to be erased or where you have objected to our use of it.
  • No automated-decision making:  Automated decision-making takes place when an electronic system uses personal information to make a decision without human intervention.  You have the right not to be subject to automated decisions that will create legal effects or have a similar significant impact on you, unless you have given us your consent, it is necessary for a contract between you and us or is otherwise permitted by law.  You also have certain rights to challenge decisions made about you.  We do not currently carry out any automated decision-making.

Please note, some of these rights only apply in certain circumstances and we may not be able to fulfil every request.

You can change your marketing preferences at any time by completing the opt out form by clicking here.

 

Cookies

Cookie is a name for a small file, usually of letters and numbers, which is downloaded onto your device, like your computer, mobile phone or tablet when you visit a website.

They let websites recognise your device, so that the sites can work more effectively, and also gather information about how you use the site. A cookie, by itself, can’t be used to identify you.

 

Site visitation tracking

Like most websites, this website uses Google Analytics (GA) to track user interaction.  We use this data to determine the number of people using our site, to better understand how they find and use our web pages and to track their journey through the website.

Although GA records data such as your approximate geographical location, device, internet browser and operating system, none of this information personally identifies you to us.

GA also records your computer’s IP address which could be used to personally identify you but Google do not grant us access to this. We consider Google to be a third party data processor.

GA makes use of cookies, details of which can be found on Google’s developer guides.

​Disabling cookies on your internet browser will stop GA from tracking any part of your visit to pages within this website.

 

Downloads & Media Files

Any downloadable documents, files or media made available on our website are provided to users at their own risk.

 

External Website Links

Although we only look to include quality safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links on the website, including shortened URL links. We cannot be held liable for any damages or implications caused by visiting external links.

 

​Contact forms and email links

Should you choose to contact us using the contact form via our Contact us page, none of the data that you supply will be stored by this website or passed to WIX, our website server.

Instead the data will be collated into an email and sent to us over the Simple Mail Transfer Protocol (SMTP). Our SMTP servers are protected by TLS (sometimes known as SSL) meaning that the email content is encrypted using SHA-2, 256-bit cryptography before being sent across the internet. The email content is then decrypted by our local computers and devices.

 

Changes to our Privacy Notice

The Trinity Hospital’s Privacy Policy may change so please remember to check back from time to time, this document was published in May 2019.  Where we have made any changes to this Privacy Policy, we will make this clear on our website or contact you about any changes.

Pin It on Pinterest