Privacy Policies

The Data Protection Act 2018 (DPA) governs the collection, storage, use and disclosure of personal data, whether held electronically (e.g. in emails, on a computer(s) or on paper. It supplements the General Data Protection Regulation (GDPR) and extends data protection laws to areas not covered by GDPR. The DPA applies to all staff who create, store, handle or view personal information that relates to any living individual who can be identified from that data or other information held by Hemel Garden Communities (HGC).

The DPA stipulates that all employers are required to comply with the DPA and has a duty to inform employees that they can in some cases be held responsible if any personal data is improperly disclosed or collected. HGC has a legal requirement to:

  • be quite open about the reasons why there is a need to collect personal data;
  • ensure that any personal data collected is relevant, adequate and not excessive accurate and held for no longer than necessary;
  • ensure that personal data is only used for the purposes registered under the DPA;
  • ensure the security of personal data held; and
  • have measures in place to provide subject access allowing individuals to reassure themselves that everything operates properly to protect the confidentiality and accuracy of personal data.

HGC ensures it operates and complies with the Data Protection Principles in relation to the personal data we hold. Personal data shall be:

  • obtained and processed fairly, lawfully and in a transparent manner;
  • held for specific lawful purpose(s) and not be used or disclosed in a way incompatible with the purpose(s);
  • adequate, relevant and not excessive for the purpose(s);
  • accurate and, where necessary, kept up to date;
  • not kept longer than necessary;
  • available to the data subject and processed in accordance with their rights;
  • kept secure (safe from unauthorised access, accidental damage or loss);

The Data Protection Principles also provide for individuals to have access to data held about themselves and, where appropriate to have data corrected or deleted.

To see the reciprocal Dacorum Borough Council privacy policy, (under Strategy Planning and Regeneration) please click here

The HGC Finance Director is responsible for subject access requests and any such requests should be received in writing. These can be emailed to hello@hemelgardencommunities.co.uk

 

In this section