Privacy Policy

This notice is intended to provide information about how The Witherslack Group will use (or “process”) personal data about individuals including: our staff; our current, past and prospective young people; their parents, carers or guardians (referred to in this policy as “parents”); and our contractors.

This Privacy Policy applies alongside any other information our sites(Schools and/or Children’s Homes) may provide about a particular use of personal data, for example when collecting data via an online or paper form.

This Privacy Policy also applies in addition to our sites(Schools and/or Children’s Homes) other relevant terms and conditions and policies, including:

For ease of reference and understanding We have produced different Privacy Notices for the different categories of individuals We deal with. These can be accessed using the hyperlink list below.

Contact Privacy Notice

Staff Privacy Notice

Young People Privacy Notice

 

 

Contact Privacy Notice – How we use your information

 

Who are we

In this policy, whenever you see the words (‘We’, ‘Us’ or ‘Our’), it refers to Witherslack Group, Lupton Tower, Lupton, Cumbria, LA6 2PR. Registered with the Information Commissionaires Office ( ICO )  in England Company No: Z669969X.  For the purposes of UK Data Protection Law, We are a data controller in respect of the personal information that We collect and process about you as described in this privacy notice.

Witherslack Group provides inspirational education and care to children and young people, resulting in life changing experiences and countless stories of success.

We are a leading provider of specialist education and care for children and young people with social, emotional and mental health needs, communication difficulties (autistic spectrum conditions, Asperger’s Syndrome, speech, language and communication needs) and complex learning needs.

Our focus on support, care and acceptance allows each young person to develop as an independent individual, equipped with the knowledge, experience and life skills to look to the future with increased confidence and aspiration.

 

Why do we collect and use your information

We lawfully process your information in accordance with General Data Protection regulation (GDPR) Article 6 (1) (a) and or ( f ).  This means We may process your personal data with your consent and or for Our legitimate business interests. “Legitimate Interests” means the interests of Our company in conducting and managing Our business and providing you with the best services and products in the most secure way.  These interests include:

When We process your personal data for Our legitimate business interests We always ensure that We consider and balance any potential impact on you and your rights under data protection laws.

If you have any concerns about the processing described above, you have the right to object to this processing.  For more information on your rights please see Your Rights section below.

 

Categories of Personal information that we collect, hold and share include:

For the above purposes We will only ever collect the information We need – including data that will be useful to help improve Our services.

We may collect and process the following data about you:

You may be directed to a third party processor to obtain banking details in relation to an event. They will be contracted as below.

 

Collecting your information

We may collect and process the following data about you:

Personal information (such as name, postal address, phone number, email address)  that you provide by filling in forms

This will also include information volunteered by you when you:

We also process data from details of your visits to Our site including but not limited to,

This is statistical data about Our users’ browsing actions and patterns, and does not identify any individual. It simply allows Us to monitor and improve Our service.

This helps Us to determine

Our site uses cookies to distinguish you from other users of Our site. This helps Us to provide you with a good experience when you browse our site and allows Us to improve Our site. For detailed information on the cookies We use and the purpose for which We use them please see Cookie Policy. If you want to disable cookies please refer to your browser help.

In order to comply with the General Data Protection Regulation, we will inform you whether you are required to provide information to us or if you have a choice in this. Whenever the processing of your personal data requires your consent then you will be given the opportunity to opt-in or opt-out to having your contact details used as set out above, at the time your details are submitted.

For example, when you request information, you can tell Us when you provide your details if you do not want to receive any other information from Us or Our partners, or you can let Us know how best to get in touch with you with information that may be of interest.

If you do not wish Us to use your data as set out above, or to pass your details on to third parties for marketing purposes, please leave the relevant boxes, situated on the form which We used to collect your data, blank/unticked.

At any time if you no longer wish to receive marketing emails or other promotional materials from Us, you may opt-out of receiving these communications at any time by one of the following methods:

 

Storing your information

Information is stored by Us on computers located in the UK. We may transfer the information to other reputable third-party organisations as explained below – they may be situated inside or outside the European Economic Area however we will only share if they provide appropriate assurances as to security and management of the data.  We may also store information in paper files.

We have security protocols and policies in place to manage and record your data privacy and preferences correctly and that your data is stored securely to protect against its loss, misuse and alteration. Documentation can be supplied on request from our Data Protection Officer who is contactable on dataprotection@witherslackgroup.co.uk.

We take steps to ensure that any organisations that we share your data with will have security protocols and policies in place to manage and record your data privacy and preferences correctly and that your data is stored correctly.

Unfortunately, the transmission of data across the internet is not completely secure and whilst We do Our best to try to protect the security of your information We cannot ensure or guarantee that loss, misuse or alteration of data will not occur whilst data is being transferred. To mitigate this risk all emails from the Witherslack Group with personal information or are sent encrypted.

We will keep your information only for as long as We need it to provide you with the services or information you have required, to administer your relationship with Us, to comply with the law, or to ensure We do not communicate with people that have asked Us not to. When We no longer need information, We will always dispose of it securely, using specialist companies if necessary to do this work for Us.

We will hold your records securely until

Third-party service providers will also store information however there are strict conditions as to security, retention and sharing which enable us to control your information held by them. This is to ensure that your preferences with us are replicated with the third-party service providers. They will hold your information for Our purposes only.

 

Who do we share your information with

There are strict controls on who can see your information. We will not share your data if you have advised us that you do not want it shared unless we are legally required to do so.

We may also disclose your personal information to third parties, if We are under a duty to disclose or share your personal data for legal or regulatory purposes, in relation to existing or future legal proceedings, for the prevention of fraud/loss or to protect the rights, property, safety of Our Group, Our customers or others.

We have robust processes in place to ensure the confidentiality of our data is maintained and there are stringent controls in place regarding access and use of the data. Decisions on whether We release data to third parties are subject to a strict approval process and based on our detailed assessment of:

Below is a table of the third-party service providers and business partners to whom we may disclose your data.

 

Why we share your information

Just like most other organisations, We work with third-party service providers which provide important functions to us that allow us to be easier, faster, and friendlier in the way we deliver Our services. We need to disclose user data to them from time to time, for any of the purposes set out above, so that the services can be performed.

As previously highlighted We do not share your information with anyone without your consent or unless the law and our policies allow us to do so.

Below are the authorities under which we share your data and with whom we share:

Who we share with Why we share What is shared
Eventbrite To arrange for payment for events etc. Payment made through Eventbrite link on the web You provide contact details and banking details. In turn Eventbrite share your E-mail contact with Us
Department for Education Information in relation to referrals or enquiries may be shared Contact details of parents / young peoples and carers as well as attainment information for young peoples
Local authorities Information in relation to referrals or enquiries may be shared Contact details of parents / young peoples and carers as well as previous family circumstances
IPSEA (Independent Parental Special Education Advice) Information at your request to provide support from Independent Parental Special Education Advice Name and contact details to facilitate initial contact then your data is managed by IPSEA as a Controller.

 

Your Rights

Under data protection legislation, parents and young people have the right to request access to information about them that we hold. You can do this free of charge and the information will be considered and then provided within a month of request. You should be aware that the right of access is limited to your own personal data, and certain data is exempt from the right of access. This will include information which identifies other individuals (and parents need to be aware this may include their own children, in certain limited situations – please see further below), or information which is subject to legal privilege (for example legal advice given to or sought by Us, or documents prepared in connection with a legal action).

Young people can make subject access requests for their own personal data, provided that, in Our reasonable opinion, they have sufficient maturity to understand the request they are making.  A young people of any age may ask a parent or other representative to make a subject access request on his/her behalf. Indeed, while a person with parental responsibility will generally be entitled to make a subject access request on behalf of a young person, the law still considers the information in question to be the child’s: for more mature young people, the parent making the request may need to evidence their child’s authority for the specific request.

Young People aged 13 and above are generally assumed to have this level of maturity, although this will depend on both the child and the personal data requested, including any relevant circumstances at home. Slightly younger children may however be sufficiently mature to have a say in this decision, depending on the child and the circumstances.

All information requests from, on behalf of, or concerning young people – whether made under subject access or simply as an incidental request – will therefore be considered on a case by case basis.

You also have the right to:

If you wish to exercise any of these rights please contact the Data Protection Officer

 

Queries and Complaints

If you believe that We have not complied with this policy or acted otherwise than in accordance with Data Protection Law, you should notify The Data Protection Officer on dataprotection@Witherslackgroup.co.uk. You can also make a referral to or lodge a complaint with the Information Commissioner’s Office (ICO), although the ICO recommends that steps are taken to resolve the matter with The Witherslack Group directly before involving the regulator.

For more information about your rights under the Data Protection Act contact the Information Commissioner’s Office  https://ico.org.uk/.

 

Staff Privacy Notice – How we use your information

 

Who are we

In this policy, whenever you see the words (‘We’, ‘Us’ or ‘Our’), it refers to Witherslack Group, Lupton Tower, Lupton, Cumbria, LA6 2PR. Registered with the Information Commissionaires Office ( ICO )  in England Company No: Z669969X. For the purposes of UK Data Protection Law, We are a data controller in respect of the personal information that We collect and process about you as described in this privacy notice.

Witherslack Group provides inspirational education and care to children and young people, resulting in life changing experiences and countless stories of success.

We are a leading provider of specialist education and care for children and young people with social, emotional and mental health needs, communication difficulties (autistic spectrum conditions, Asperger’s Syndrome, speech, language and communication needs) and complex learning needs.

Our focus on support, care and acceptance allows each young person to develop as an independent individual, equipped with the knowledge, experience and life skills to look to the future with increased confidence and aspiration.

 

Why do we collect and use staff information

We lawfully process your information in accordance with General Data Protection regulation (GDPR) Article 6 (a) (b) (f) .  We may process your personal data with your consent, as part of your employment contract and or for Our legitimate business interests or in law.  “Legitimate Interests” means the interests of Our company in conducting and managing Our business and providing you with the best services and products in the most secure way.  These interests include:

In Law there are also requirements in relation to safeguarding and employment

When We process your personal data for Our legitimate business interests We always ensure that We consider and balance any potential impact on you and your rights under data protection laws.

If you have any concerns about the processing described above, you have the right to object to this processing.  For more information on your rights please see Your Rights section below.

 

Categories of Personal information that we collect, hold and share include:

We will only ever collect the information We need – including data that will be useful to help improve Our services.

We may collect and process the following data about you:

 

Collecting your information

We may collect and process the following data about you:

Personal information (such as name, postal address, phone number, email address,NI number, driving licence details, photo, PAYE details, Passport, Bank details, utility provider details, Marriage certificate, birth certificate. Employee no., vehicle details,) that you provide by filling in forms

Special Categories of personal data processed (such as health processed through GDPR Article 9 (2) (h) (OHU and fitness for work)

As governed by Our Bring Your Device Policy ( BYOD ) and also the employment contract We also process data from details of your visits to Our WIFI including but not limited to,

In order to comply with the General Data Protection Regulation, we will inform you whether you are required to provide information to us or if you have a choice in this. Whenever the processing of your personal data requires your consent then you will be given the opportunity to opt-in and then to opt-out if you so desire.

 

Storing your information

Information is stored by Us on computers located in the UK. We may transfer the information to other reputable third-party organisations as explained below – they may be situated inside or outside the European Economic Area however we will only share if they provide appropriate assurances as to security and management of the data.  We may also store information in paper files.

We have security protocols and policies in place to manage and record your data privacy and preferences correctly and that your data is stored securely to protect against its loss, misuse and alteration. Documentation can be supplied on request from our Data Protection Officer who is contactable on dataprotection@witherslackgroup.co.uk.

We take steps to ensure that any organisations that we share your data with will have security protocols and policies in place to manage and record your data privacy and preferences correctly and that your data is stored correctly.

Unfortunately, the transmission of data across the internet is not completely secure and whilst We do Our best to try to protect the security of your information We cannot ensure or guarantee that loss, misuse or alteration of data will not occur whilst data is being transferred. To mitigate this risk all emails from the WItherslack Group with personal information or are sent encrypted.

We will keep your information only for as long as We need it to provide you with the services or information you have required, to administer your relationship with Us, to comply with the law, or to ensure We do not communicate with people that have asked Us not to. When We no longer need information, We will always dispose of it securely, using specialist companies if necessary to do this work for Us. We ensure that your preferences with us are replicated with the third-party service providers. They will hold your information for Our purposes only.

We will hold your staff records securely as outlined below

Full Retention Schedule is under review. Due in June 2018.

Injury at work records Date of incident plus 12 years ( may be application for extension if serious )
Annual appraisal records Current year plus 5 years
Timesheets sick pay Current year plus 6 years
Staff personal file Termination plus 7 years
Interview notes and recruitment records Date of interview plus 6 months
Pre employment vetting checks ( inc DBS) Date of interview plus 6 months
Oral warning Date of warning plus 6 months
Stage 1 Date of warning plus 12 months
Stage 2 Date of warning plus 24 months
Maternity Pay records Current year plus 3 years
Records held under retirement benefits schemes Current year plus 6 years
Salary cards Last date of employment plus 85 years
WTR records Two years after the relevant period
Annual leave records 6 years
Sickness medical and health records 6 years after employment ceases.

 

Who do we share your information with

There are strict controls on who can see your information. We will not share your data if you have advised us that you do not want it shared unless we are legally required to do so or there is a recognised legitimate business interest.

We may also disclose your personal information to third parties, if We are under a duty to disclose or share your personal data for legal or regulatory purposes, in relation to existing or future legal proceedings, for the prevention of fraud/loss or to protect the rights, property, safety of Our Group, Our customers or others.

We have robust processes to ensure the confidentiality of our data is maintained and there are stringent controls in place regarding access and use of the data. Decisions on whether We release data to third parties are subject to a strict approval process and based on our detailed assessment of:

We share information with the following (See table below in why we share our information for more detail.)

 

Why we share your information

Just like most other organisations, We work with third-party service providers which provide important functions to us that allow us to be easier, faster, and friendlier in the way we deliver Our services. We need to disclose user data to them from time to time, as part of our legal obligations and legitimate business interests, so that the services can be performed.

As previously highlighted We do not share your information with anyone without your consent unless the law and our policies allow us to do so.

Below are the authorities under which we share your data and with whom we share:

Who we share with Article 6 basis Why we share What is shared
HMRC tax office In law PAYE and TAX Name, dob, address. NI number ; pay, bank details
Accountants Thomas Armstrong In Law PAYE managers Name, dob, address. NI number ; pay, bank details; hours worked expenses
EPLOY ( recruitment agency ) Consent Recruitment portal Full CV details, name, dob, address, telephone, email, previous employment references, salary, equality and diversity, criminal convictions, gender, previous address, education attainment history.
Occupational Health ; Dura Diamond Employment Contract Name, employee number, health, gender, address, telephone, E-mail address
Find My shift Legitimate business interest Shift organiser Names, shifts, hours, location
Capita Employment contract DBS check Completed by the subject in the first instance. Consensual to provide the detail to DBS service. Witherslack Group receive an update form the service with minimal information on. Names, convictions, dob, address and previous address
DH licence checks Legitimate business interest To ensure legal obligations in relation to provision of company vehicles and authorised drivers. Driving licence checks Name, dob, driving licence details
Happiness Index Legitimate Business interest Staff survey to improve provision of services to staff in the workplace Name, age bracket, work E-mail, location, role
Scottish Widows In Law Pension provider Name, salary, dob, address, E-mail, NI number
Training providers Legitimate Business interest Provision of training in relation to team teach, first aid, health and safety etc. Name, email, d.o.b, site, role
Medicash Legitimate business interest Contact details Name ;contact
Strattons Legitimate business interest HR advisory Staff details including, contact, roles, occupational history  health, absence, discipline

 

Your Rights

Under data protection legislation, you have the right to request access to information about you that we hold. You can do this free of charge and the information will be considered and then provided within a month of request.

You should be aware that the right of access is limited to your own personal data, and certain data is exempt from the right of access. This will include  ( but is not limited to ) information which identifies other individuals, information concerning a reference supplied by the Witherslack Group or information which is subject to legal privilege (for example legal advice given to or sought by The Witherslack Group or documents prepared in connection with a legal action).

You also have the right to:

If you wish to exercise any of these rights please contact the Data Protection Officer;

Queries and Complaints

If you believe that We have not complied with this policy or acted otherwise than in accordance with Data Protection Law, you should notify The Data Protection Officer on dataprotection@Witherslackgroup.co.uk. You can also make a referral to or lodge a complaint with the Information Commissioner’s Office (ICO), although the ICO recommends that steps are taken to resolve the matter with The Witherslack Group directly before involving the regulator.

For more information about your rights under the Data Protection Act contact the Information Commissioner’s Office  https://ico.org.uk/

 

Privacy Notice – How we use young people’s information

 

Who are we

In this policy, whenever you see the words (‘We’, ‘Us’ or ‘Our’), it refers to Witherslack Group, Lupton Tower, Lupton, Cumbria, LA6 2PR. Registered with the Information Commissionaires Office ( ICO )  in England Company No: Z669969X. For the purposes of UK Data Protection Law, We are a data controller in respect of the personal information that We collect and process about you as described in this privacy notice.

Witherslack Group provides inspirational education and care to children and young people, resulting in life changing experiences and countless stories of success.

We are a leading provider of specialist education and care for children and young people with social, emotional and mental health needs, communication difficulties (autistic spectrum conditions, Asperger’s Syndrome, speech, language and communication needs) and complex learning needs.

Our focus on support, care and acceptance allows each young person to develop as an independent individual, equipped with the knowledge, experience and life skills to look to the future with increased confidence and aspiration.

 

Why do we collect and use young people’s information

We lawfully process your information in accordance with General Data Protection regulation (GDPR) Article 6 (a) (b) (f) .  We may process your personal data with your consent, authorised in Law or for Our legitimate business interests. “Legitimate Interests” means the interests of Our company in conducting and managing Our business and providing you with the best care and education in the most secure way.  These interests include:

 

Categories of a young person’s information that we collect, hold and share include:

 

Collecting a young person’s information

We may collect and process the following data about you:

Personal information (such as name, postal address, phone number, E-mail address, pupil number, photo, Passport, Bank details,  birth certificate, family information) through

Special Categories of personal data processed (such as health processed through GDPR Article 9 (2)(d) Legitimate interest of business in relation to provision of a safe environment to live and learn

As governed by Our Bring Your Device Policy ( BYOD ) and also the employment contract We also process data from details of your visits to Our WIFI including but not limited to,

In order to comply with the General Data Protection Regulation, we will inform you whether you are required to provide information to us or if you have a choice in this. Whenever the processing of your personal data requires your consent then you will be given the opportunity to opt-in and then to opt-out if you so desire.

 

Storing a young person’s information

Information is stored by Us on computers located in the UK. We may transfer the information to other reputable third-party organisations as explained below – they may be situated inside or outside the European Economic Area however we will only share if they provide appropriate assurances as to security and management of the data.  We may also store information in paper files.

We have security protocols and policies in place to manage and record your data privacy and preferences correctly and that your data is stored securely to protect against its loss, misuse and alteration. Documentation can be supplied on request from our Data Protection Officer who is contactable on dataprotection@witherslackgroup.co.uk.

We take steps to ensure that any organisations that we share your data with will have security protocols and policies in place to manage and record your data privacy and preferences correctly and that your data is stored correctly. We will not share your data if you have advised us that you do not want it shared unless it is the only way we can make sure you stay safe and healthy or we are legally required to do so.

Unfortunately, the transmission of data across the internet is not completely secure and whilst We do Our best to try to protect the security of your information We cannot ensure or guarantee that loss, misuse or alteration of data will not occur whilst data is being transferred. To mitigate this risk all e-mails from the WItherslack Group with personal information are sent encrypted.

We will keep your information only for as long as We need it to provide you with the services or information you have required, to administer your relationship with Us, to comply with the law, or to ensure We do not communicate with people that have asked Us not to. When We no longer need information, We will always dispose of it securely, using specialist companies if necessary to do this work for Us. We ensure that your preferences with us are replicated with the third-party service providers. They will hold your information for Our purposes only.

We keep information about you on computer systems and also sometimes on paper.

Care and education records are stored in compliance with the appropriate regulations governing the activity.

Full Retention Schedule is under review. Due in June 2018

 

Who do we share a young person’s information with

We routinely share a young person’s information with:

 

Why we share a young person’s information

Just like most other organisations, We work with third-party service providers which provide important functions to us that allow us to be easier, faster, and friendlier in the way we deliver Our services. We need to disclose user data to them from time to time, as part of our legal obligations and legitimate business interests, so that the services can be performed.

As previously highlighted We do not share your information with anyone without your consent unless the law and our policies allow us to do so. We have robust processes in place to ensure the confidentiality of our data is maintained and there are stringent controls in place regarding access and use of the data.

Decisions on whether We release data to third parties are subject to a strict approval process and based on a detailed assessment of:

Below are the authorities under which we share your data and with whom we share:

Who we share with Article 6 basis Why we share What is shared
Schools or colleges that the young people attend after leaving us In law To further the education provision Educational records
The local authority and their commissioned providers of local authority services In law / contract / Provision of care and education for young people with SEN and Looked after Children Educational record, Education Health Care Plan, Looked after children notes, multi-agency forum notes,  personal education plans
The Department for Education (DfE) In Law Educational attainment policy and monitoring; The National Young people Database (NPD). Provision of young people record number. https://www.gov.uk/education/data-collection-and-censuses-for-schools ; name of young people
The joint council for qualifications ( JCQ ) Legitimate business interest Currently signed for on a JCQ consent form however the detail is provided to them by Us as a legitimate business interest.   Attendance for the exam is consensual. Name, dob, any health considerations to enable reasonable adjustments to take the exam
OFSTED In Law Ensuring a monitored and accountable service provision is in place All relevant personal or sensitive information ( restricted by purpose of visit to minimise data) reported upon anonymously
Regulatory Inspection visitors In Law Ensuring a monitored and accountable service provision is in place All data of staff residents and young peoples as deemed appropriate by the inspector
Health and safety executive In law Safety in the work place …. Safety in the schools and homes. Consideration as to the level of safeguarding needed on each site which is commensurate with the behavioural / risk posed. Environmental information and personal information. Behaviour, health.
Staff in homes and schools Legitimate business interest Maintaining a safe environment for the provision of necessary care and specialist education. Pastoral support and safeguarding. Behaviour reports, personal contact details, multiagency reports
Clinical staff Legitimate business interest Provision of support for Special Educational needs Personal data name. dob, family circs, behaviour, risk assessment, EHCP, and health data
Parents / carers Legitimate business interest To enable the provision of educational support at home. In general, We will assume that a young person consent is not required for ordinary disclosure of their personal data to their parents, e.g. for the purposes of keeping parents informed about the young person’s activities, progress and behaviour, and in the interests of the young person’s welfare. That is unless, in The School or Home’s opinion, there is a good reason to do otherwise.

However, where a young person seeks to raise concerns confidentially with a member of staff and expressly withholds their agreement to their personal data being disclosed to their parents, The School or Home may be under an obligation to maintain confidentiality unless, in The School or Home’s opinion, there is a good reason to do otherwise; for example where The School or Home believes disclosure will be in the best interests of the young person or other young people, or if required by law.

Ongoing reports and communication in relation to behaviour and achievement.
LADO In Law Keeping Children safe in education All relevant personal or sensitive information ( restricted by circumstance minimise data)
Police In Law Keeping children safe in education All relevant personal or sensitive information ( restricted by circumstance to minimise data )
Quality assurance visits Legitimate business interest Ensuring that the service provision is of the highest standard and compliant with regulation / Law All relevant personal or sensitive information ( restricted by purpose of visit to minimise data) reported upon anonymously
External education support providers   ( software ) Legitimate Business interest software support for learning which the young person logs onto to, They normally log on with a consent to the web site however the requirement is made by Our staff hence the decision to use legitimate Business interest … the provision of learning as article 6 basis. Names. Logon E-mail, cookie data.
External education providers Legitimate business interest Provision of external educational support to further develop the young person Name, dob, address and potentially health data to support the learning plan

 

Your Rights

Under data protection you or your parent/guardian have the right to request access to information about you that we hold. You should be aware that the right of access is limited to your own personal data, and certain data is exempt from the right of access. This will include information which identifies other individuals (and parents need to be aware this may include their own children, in certain limited situations), or information which is subject to legal privilege (for example legal advice given to or sought by Us, or documents prepared in connection with a legal action).

We are also not required to disclose any examination marks ahead of any ordinary publication, nor share any confidential reference given by The School or Home itself for the purposes of the education, training or employment of any individual.

You may ask a parent or other representative to make a subject access request on your behalf.

Indeed, while a person with parental responsibility will generally be entitled to make a subject access request on behalf of a young person, the law still considers the information in question to be yours:

If you are aged 13 and above you are generally assumed to have a level of maturity and can ask yourself, although this will depend on the circumstances and you may have to have the support of a parent or representative.

All information requests from, on behalf of, or concerning young people – whether made under subject access or simply as an incidental request – will therefore be considered on a case by case basis.

You also have the right to:

If you wish to exercise any of these rights please contact the Data Protection Officer;

If you wish to exercise any of these rights please contact the Data Protection Officer;

 

Queries and Complaints

If you believe that We have not complied with this policy or acted otherwise than in accordance with Data Protection Law, you should notify The Data Protection Officer on dataprotection@Witherslackgroup.co.uk. You can also make a referral to or lodge a complaint with the Information Commissioner’s Office (ICO), although the ICO recommends that steps are taken to resolve the matter with The Witherslack Group directly before involving the regulator.

For more information about your rights under the Data Protection Act contact the Information Commissioner’s Office https://ico.org.uk/

COOKIE POLICY Use of cookies by the Witherslack Group

Cookies are small text files that are placed on your computer by websites that you visit. They are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the site.

The table below explains the cookies we use and why.

Cookie Name Purpose More information
Google Analytics utma

_utmb

_utmc

_utmz

PREF

NID

These cookies are used to collect information about how visitors use our site. We use the information to compile reports and to help us improve the site. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited. Click here for an overview of privacy at Google
Google Map API HSID

APISID

SID

These cookies are used by Google to ascertain how many users are using their mapping service. Click here for an overview of privacy at Google
Session e3c780c3fda88cbfddf1622ad5be38c Stores information about your visit to the site while you navigate the website

Expires on exit


Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit
www.allaboutcookies.org.

To opt out of being tracked by Google Analytics across all websites visit https://tools.google.com/dlpage/gaoptout.

 

YouTube cookies

We embed videos from our official YouTube channel using YouTube’s privacy-enhanced mode. This mode may set cookies on your computer once you click on the YouTube video player, but YouTube will not store personally-identifiable cookie information for playbacks of embedded videos using the privacy-enhanced mode. To find out more please visit YouTube’s embedding videos information page.