Governors, trustees and other school volunteers privacy notice

This privacy notice sets out how we use and protect any information that you give us when working in a voluntary capacity as a governor or trustee.

Everything we do with information about people, such as how we collect it and who we share it with, has to comply with the Data Protection Act and the General Data Protection Regulation (GDPR) that came into force in May 2018. A key part of this is being open about how we use information and what rights you have in respect of information we hold about you.

The personal data we hold

We process data relating to those volunteering as a governor or trustee. Personal data that we may collect, use, store and share (when appropriate) about you includes, but is not restricted to:

  • contact details
  • references
  • evidence of qualifications
  • employment details
  • information about business and pecuniary interests

We may also collect, store and use information about you that falls into “special categories” of more sensitive personal data. This may include information about (where applicable):

  • race, ethnicity, religious beliefs, sexual orientation and political opinions
  • disability and access requirements

We process this data this personal data under Public task.

Why we use this data

The purpose of processing this data is to support Milton Keynes Council to:

  • establish and maintain effective governance
  • meet statutory obligations for publishing and sharing governors’/trustees’ details
  • facilitate safe recruitment, as part of our safeguarding obligations towards pupils
  • undertake equalities monitoring
  • ensure that appropriate access arrangements can be provided for volunteers who require them

In a small number of cases we will process personal data solely on the basis of consent, such as where you might opt in to receive email updates or marketing details about certain council services. This will be clearly explained when you sign-up to that service.

Some of the reasons listed above for collecting and using personal information about you overlap, and there may be several grounds which justify our use of your data.

Security

We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.

Data sharing

We do not share information about you with any third party without your consent unless the law and our policies allow us to do so.

Where it is legally required, or necessary (and it complies with data protection law) we may share personal information about you with:

  • government departments or agencies – to meet our legal obligations to share information about governors/trustees
  • our local authority – to meet our legal obligations to share certain information with it, such as details of governors
  • suppliers and service providers (e.g. Governorhub, MKPDP) – to enable them to provide the service we have contracted them for, such as governor/trustee support
  • the school of which you are a governor or trustee and/or other schools
  • professional advisers and consultants
  • police forces, courts

How long we keep hold of information for

We only keep information for as long as it is needed. This will be based on either a legal requirement (where a law says we have to keep information for a specific period of time) or accepted practice.

Your rights

How to access the personal information we hold about you

Individuals have a right to make a ‘subject access request’ to gain access to personal information that we hold about them.

If you make a subject access request, and if we do hold information about you, we will:

  • give you a description of it
  • tell you why we are holding and processing it, and how long we will keep it for
  • explain where we got it from, if not from you
  • tell you who it has been, or will be, shared with
  • let you know whether any automated decision-making is being applied to the data, and any consequences of this
  • give you a copy of the information in an intelligible form

You may also have a right for your personal information to be transmitted electronically to another organisation in certain circumstances.

If you would like to make a request, please contact our data protection officer.

Your other rights regarding your data

Under data protection law, individuals have certain rights regarding how their personal data is used and kept safe. You have:

  • right of access (to receive a copy of your personal data)
  • right to rectification (to request data is corrected inaccurate)
  • right to erasure (to request that data is deleted)
  • right to restrict processing (to request we don’t use your data in a certain way)
  • right to data portability (in some cases, you can ask to receive a copy of your data in a commonly-used electronic format so that it can be given to someone else)
  • right to object (generally to make a complaint about any aspect of our use of your data)
  • right to have explained if there will be any automated decision-making, including profiling, based on your data and for the logic behind this to be explained to you.

To exercise any of these rights, please contact our data protection officer.

Complaints

We take any complaints about our collection and use of personal information very seriously.

If you think that our collection or use of personal information is unfair, misleading or inappropriate, or have any other concern about our data processing, please raise this with us in the first instance.

To make a complaint, please contact our data protection officer.

Alternatively, you can make a complaint to the Information Commissioner’s Office

Wycliffe House

Water Lane

Wilmslow

Cheshire

SK9 5AF

0303 123 1113

 

Data Protection

Data Protection contact information

Postal address only, Civic, 1 Saxon Gate East, Milton Keynes MK9 3EJ