GDPR: PHOENIX SUPPORT FULL DATA PRIVACY NOTICE
PHOENIX SUPPORT ("We") are committed to protecting and respecting your privacy.
The rules on processing of personal data are set out in the General Data Protection Regulation (the “GDPR”).
Data controller - A controller determines the purposes and means of processing personal data.
Data processor - A processor is responsible for processing personal data on behalf of a controller.
Data subject – Natural person
Categories of data: Personal data and special categories of personal data
Personal data - The GDPR applies to ‘personal data’ meaning any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier (as explained in Article 6 of GDPR). For example name, passport number, home address or private email address. Online identifiers include IP addresses and cookies.
Special categories personal data - The GDPR refers to sensitive personal data as ‘special categories of personal data’ (as explained in Article 9 of GDPR). The special categories specifically include genetic data, and biometric data where processed to uniquely identify an individual. Other examples include racial and ethnic origin, sexual orientation, health data including physical and mental health data, trade union membership, political opinions, religious or philosophical beliefs, risk assessment information, diagnoses, information about medication, benefit, finances, living skills, care package, rota.
Processing - means any operation or set of operations which is performed on personal data or on sets of personal data, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Third party - means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
PHOENIX SUPPORT is the data controller. This means we decide how your personal data is processed and for what purposes. Our contact details are: Phoenix support Limited, 24 County Road, Maidstone, ME14 1XJ. For all data matters contact the DATA PROTECTION OFFICER Annick Guirate on 07711589830 or by email at firstname.lastname@example.org
We use your personal data for the following purposes:
Health care providers you have given consent for us to liaise with on your behalf
Parties and individuals named in our contracts with our commissioners
staff members from Phoenix.
4. The categories of personal data concerned
With reference to the categories of personal data described in the definitions section, we process the following categories of your data:
We have obtained your personal data from your care provider, your GP, consultant, care managers/coordinators, referrer agency and yourself.
5. What is our legal basis for processing your personal data?
Our lawful basis for processing your general personal data:
☐ Consent of the data subject;
Include a GDPR Consent form.
☐ Processing necessary for the performance of a contract with the data subject or to take steps to enter into a contract
KCC and Supporting people contracts.
☐ Processing necessary for compliance with a legal obligation
KCC and Supporting people contract
☐ Processing necessary to protect the vital interests of a data subject or another person
KCC and supporting people Contract
☐ Processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller
☐ Processing necessary for the purposes of the legitimate interests of the data controller or a third party, except where such interests are overridden by the interests or fundamental rights or freedoms of the data subject
Our lawful basis for processing your special categories of data:
☐ Processing necessary for reasons or social care or treatment or management of health or social care systems and services on the basis of EU or Member State law or a contract with a health professional
This is required by our commissioners and the CQC under which we are regulated.
Your personal data will be treated as strictly confidential, and will be shared only with : relevant providers involved in your care and who will be specified to you, Staff member from Phoenix who need to know about your care, your family members if you are able and want to give consent for us to liaise with them, relevant staff members from KCC and supporting people.
How long do we keep your personal data?
We keep your personal data for no longer than reasonably necessary for a period of 6 years in order to comply with our contractual requirement from KCC, in case of any legal claims/complaints; for or safeguarding purposes.
We require your personal data as it is a contractual requirement, with our commissioners and CQC.
Unless subject to an exemption under the GDPR, you have the following rights with respect to your personal data:
we do not transfer personal data outside the eea.
WE DO NOT USE ANY FORM OF AUTOMATED DECISION MAKING IN OUR BUSINESS.
If we wish to use your personal data for a new purpose, not covered by this Data Privacy Notice, then we will provide you with a new notice explaining this new use prior to commencing the processing and setting out the relevant purposes and processing conditions.
To exercise all relevant rights, queries or complaints please in the first instance contact our DATA PROTECTION OFFICER Annick Guirate on 07711589830 or by email at email@example.com.
If this does not resolve your complaint to your satisfaction, you have the right to lodge a complaint with the Information Commissioners Office on 03031231113 or via email https://ico.org.uk/global/contact-us/email/ or at the Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, England.
This website and its owners take a proactive approach to user privacy and ensure the necessary steps are taken to protect the privacy of its users throughout their visiting experience. This website is compliant Under the new EU regulation (GDPR) 2018.
Cookies are small files saved to the user's computers hard drive that track, save and store information about the user's interactions and usage of the website. This allows the website, through its server to provide the users with a tailored experience within this website.
Users are advised that if they wish to deny the use and saving of cookies from this website on to their computers hard drive they should take necessary steps within their web browsers security settings to block all cookies from this website and its external serving vendors.
Other cookies may be stored to your computers hard drive by external vendors when this website uses referral programs, sponsored links or adverts. Such cookies are used for conversion and referral tracking and typically expire after 30 days, though some may take longer. No personal information is stored, saved or collected.
Users contacting this website and/or its owners do so at their own discretion and provide any such personal details requested at their own risk. Your personal information is kept private and stored securely until a time it is no longer required or has no use, as detailed in the Data Protection Act 1998. Every effort has been made to ensure a safe and secure form to email submission process but advise users using such form to email processes that they do so at their own risk.
This website and its owners use any information submitted to provide you with further information about the products / services they offer or to assist you in answering any questions or queries you may have submitted. This includes using your details to subscribe you to any email newsletter program the website operates but only if this was made clear to you and your express permission was granted when submitting any form to email process. Or whereby you the consumer have previously purchased from or enquired about purchasing from the company a product or service that the email newsletter relates to. This is by no means an entire list of your user rights in regard to receiving email marketing material. Your details are not passed on to any third parties for such purpose.
This website operates an email newsletter program, used to inform subscribers about products and services supplied by this website. Users can subscribe through an online automated process should they wish to do so but do so at their own discretion. Some subscriptions may be manually processed through prior written agreement with the user.
Subscriptions are taken in compliance with UK Spam Laws detailed in the Privacy and Electronic Communications Regulations 2003. All personal details relating to subscriptions are held securely and in accordance with the General Data Protection Regulation (GDPR 2018) . No personal details are passed on to third parties nor shared with companies / people outside of the company that operates this website. You may request a copy of personal information held about you by this website's email newsletter program. A small fee will be payable. If you would like a copy of the information held on you please write to the business address at the bottom of this policy.
Email marketing campaigns published by this website or its owners may contain tracking facilities within the actual email. Subscriber activity is tracked and stored in a database for future analysis and evaluation. Such tracked activity may include; the opening of emails, forwarding of emails, the clicking of links within the email content, times, dates and frequency of activity [this is by no far a comprehensive list].
This information is used to refine future email campaigns and supply the user with more relevant content based around their activity.
In compliance with UK Spam Laws and the Privacy and Electronic Communications Regulations 2003 subscribers are given the opportunity to un-subscribe at any time through an automated system. This process is detailed at the footer of each email campaign. If an automated un-subscription system is unavailable clear instructions on how to un-subscribe will by detailed instead.
Although this website only looks to include quality, safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links mentioned throughout this website. (External links are clickable text / banner / image links to other websites, similar to; www.loginrailwaystation.co.uk or Bed & Breakfast Pembrokeshire.)
The owners of this website cannot guarantee or verify the contents of any externally linked website despite their best efforts. Users should therefore note they click on external links at their own risk and this website and its owners cannot be held liable for any damages or implications caused by visiting any external links mentioned.
This website may contain sponsored links and adverts. These will typically be served through our advertising partners, to whom may have detailed privacy policies relating directly to the adverts they serve.
Communication, engagement and actions taken through external social media platforms that this website and its owners participate on are custom to the terms and conditions as well as the privacy policies held with each social media platform respectively.
Users are advised to use social media platforms wisely and communicate / engage upon them with due care and caution in regard to their own privacy and personal details. This website nor its owners will ever ask for personal or sensitive information through social media platforms and encourage users wishing to discuss sensitive details to contact them through primary communication channels such as by telephone or email.
This website may use social sharing buttons which help share web content directly from web pages to the social media platform in question. Users are advised before using such social sharing buttons that they do so at their own discretion and note that the social media platform may track and save your request to share a web page respectively through your social media platform account.
This website and its owners through their social media platform accounts may share web links to relevant web pages. By default some social media platforms shorten lengthy urls [web addresses] (this is an example: http://bit.ly/zyVUBo).
Users are advised to take caution and good judgement before clicking any shortened urls published on social media platforms by this website and its owners. Despite the best efforts to ensure only genuine urls are published many social media platforms are prone to spam and hacking and therefore this website and its owners cannot be held liable for any damages or implications caused by visiting any shortened links.
V.3.0 MAY 2018 Edited & customised by: PHOENIX SUPPORT, 24 COUNTY ROAD MAIDSTONE, KENT, ME14 1XJ
08th Oct 2018
Dear service users and support workers I am writing to you to let...Read More
15th Aug 2018
Please be aware that there are bogus collectors purporting to be from SSAFA,...Read More
02nd Aug 2018
Last week it was two of our Service User's birthdays, they celebrated with...Read More
31st Jul 2018
Last week within their support time, one of our Service Users with their Support...Read More
25th Jun 2018
Over the weekend two of our service users attended a Madness Tribute night at...Read More