🛡️ Privacy Notice
Welcome to Community Accord’s Privacy Notice. This page explains how we collect, use, and protect your personal data. It applies to:
- Clients and service users
- Individuals considering mediation or training with us
- Prospective employees and volunteers
We are committed to safeguarding your privacy and complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
📌 Who We Are
Community Accord is a registered Data Controller with the Information Commissioner’s Office (ICO). This means we are responsible for how your personal data is processed and protected.
🔍 What Is Personal Data?
Personal data is any information that identifies a living individual, either directly or indirectly. This includes names, contact details, and other identifiers.
📥 What We Collect
We may collect personal information about you, your child, or family members, including:
- Name, date of birth, address, phone number, email
- Information about children or family members
- Sensitive personal data (e.g. health, ethnicity)
- Financial details
- Safeguarding information
If you work or volunteer with us, we may also collect:
- National Insurance number
- DBS check results
- Identification and references
We collect data through face-to-face meetings, written correspondence, phone calls, emails, and referrals.
🛠️ How We Use Your Data
We use your personal data to:
- Respond to enquiries and service requests
- Deliver mediation, training, and related services
- Maintain records and accounts
- Manage payments and invoices
- Safeguard children, young people, and vulnerable adults
- Gather feedback on our services
- Manage staff and volunteers
- Process job applications
We ensure your data is accurate, securely stored, and only retained as long as necessary. We do not share your data without consent unless required by law.
👶 Children and Young People
If we engage with a young person aged 13 or over, we will provide them with an age-appropriate privacy statement.
⚖️ Lawful Basis for Processing
We process personal data under the lawful basis of legitimate interests to provide our services effectively and safely.
⏳ Data Retention
We retain personal data in line with our Data Retention Policy. Typically, data is held for no longer than six years, unless legally required or contractually agreed otherwise. Retention periods are reviewed annually.
🔄 Sharing Your Information
Your data is confidential. We may share it:
- At your request
- With trusted third-party providers to deliver services on your behalf
We only share what is necessary and ensure third parties comply with strict data protection standards. We never sell or rent your data, nor do we share it for marketing purposes.
✅ Your Rights
Under UK GDPR, you have the right to:
- Be informed about how your data is used
- Access your personal data
- Request correction or deletion of inaccurate data
- Object to or restrict processing
- Withdraw consent at any time
- Request erasure of data no longer needed
If you have concerns, you may lodge a complaint with the Information Commissioner’s Office (ICO).
🔐 How We Keep Your Data Safe
We take data security seriously. Our measures include:
- Regular reviews of data handling and storage practices
- Physical and digital safeguards against unauthorised access
- Staff and volunteer training, supervision, and confidentiality agreements
- Secure third-party providers with appropriate safeguards
- A formal Security Information Policy outlining our protection protocols
🔄 Updates to This Notice
We may update this Privacy Notice from time to time. Please check this page regularly to stay informed. Where necessary, we will seek your consent before implementing significant changes.
