This policy sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
This policy only applies to our site. If you leave our site via a link or otherwise, you will be subject to the policy of that website provider. We have no control over that policy or the terms of the website and you should check their policy before continuing to access the site.
WHO WE ARE
Lisa Vine trading as LISA VINE – ADVOCACY. CONSULTANCY. TRAINING. We support those striving for LGBT+ inclusion by providing training, consultancy and advocacy services.
WHAT PERSONAL DATA WE COLLECT AND WHY WE COLLECT IT
We do not take or store any personal data from visitors to our site unless you fill out our contact form because you are interested in our services (hurray!).
The content you submit on the form will be received in email format to firstname.lastname@example.org. The email programme we use is Zoho EU Mail and you can find out more about how they are GDPR compliant here.
The information you provide will be stored and will be retained until we no longer need your contact information. The time we keep it for will be based on whether you use our services or not. If you do not use our services we will delete all correspondence and personal data no later than one year after the date of first contact. If you do use our services we will keep your data for 2 years after the date of first contact.
If you leave a comment on our site, the name and comment you write will be in the public domain. If this concerns you then we suggest using a nickname or perhaps just your first name so it’s not easy for members of the public to identify you.
Our website is created using WordPress so when visitors leave comments on our site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection – it’s WordPress magic to stop spam computers trying to sell something!
We use Google Analytics to learn how many users have visited our site and where they are coming from but we do not collect any data which identifies the users of our sites.
WHO WE SHARE YOUR DATA WITH
We do not share your data with anyone, none of this selling people’s information lark! Your data is stored safely and securely and we will only contact you either by email or phone in regards to your LGBT+ inclusion needs.
WHERE WE STORE YOUR DATA
HOW LONG WE RETAIN YOUR DATA
If you make an enquiry but do not use our services we will keep your data and any communications for one year from the date of the first communication. We will then delete it indefinitely. If you use our services we will store your data for two years from the date of first communication and then delete it indefinitely.
WHAT RIGHTS YOU HAVE OVER YOUR DATA
You have all the rights to your data! You have the right to be forgotten and can request that all traces of your personal data be deleted. You can do so by emailing email@example.com.
You also have the right to find out what information we hold about you. You can submit a request to firstname.lastname@example.org and we have 30 days to respond.
WHERE WE SEND YOUR DATA
All our customer’s data is kept secure and private. We do not send your data anywhere and will only send it on to third parties, if this is necessary under the service agreement or contract we have with you. We will only do so with your consent.
NAME AND ADDRESS OF THE DATA CONTROLLER
Controller for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in Member states of the European Union and other provisions related to data protection is:
Lisa Vine – Advocacy. Consultancy. Training.
Postal contact information available on request.
HOW WE PROTECT YOUR DATA
It is only myself (Lisa) working in the business. Hard copies of data are kept in a locked cupboard. Once we no longer need it, the paperwork is shredded. We have two-factor authentication in place for accessing emails. Any external sites are password protected and are GDPR compliant.
WHAT DATA BREACH PROCEDURES WE HAVE IN PLACE
We are very careful with your data. However, if a breach was to occur we would assess the risk involved and rectify it if possible, and, if required, we would alert you to that breach. For any serious breach we would contact the ICO within 72 hours in line with GDPR law.
WHAT THIRD PARTIES WE RECEIVE DATA FROM
We do not receive data from third parties.
WHAT AUTOMATED DECISION MAKING AND/OR PROFILING WE DO WITH USER DATA
We do not have automated decision making or profiling in place. We are humans and we care a lot about you and supporting you with LGBT+ inclusivity. All decisions are made by us!