Our web address is: www.domboshawa.org.uk
The EU General Data Protection Regulation 2016/679 (GDPR) came into force on the 25 May 2018, and it is supplemented by the Data Protection Act 2018. We refer to these as “data protection law”.
Data protection law regulates the processing of “personal data” relating to individuals by organisations (known as “data controllers”).
On this page, and the pages which it links to, we have used some words and phrases, and these are explained below.
The Domboshawa Trust is the data controller for the personal data that we process in relation to you.
Occasionally, The Domboshawa Trust may be a joint data controller with other organisations, or we may be processing data about you on behalf of another organisation, but when this is the case, we will make you aware of this when the information is collected.
Personal data must be processed in accordance with specific principles set out in data protection law. These include the principle that personal data should be processed ‘lawfully, fairly and in a transparent manner’. In order to comply with this principle, the Domboshawa Trust will tell you how it will deal with your information at the time we collect it. This information is normally set out in a “privacy notice”.
We have separate privacy notices for the different categories of people the Domboshawa Trust processes information about, for example, for donors, students, staff, alumni, visitors etc. These are published on our website, and there are links to them on this page.
In addition to the privacy notices, more information is set out below, in particular “Your rights as a data subject” and “Exercising your rights, queries and complaints”.
The Domboshawa Trust handles a substantial amount of information about people. It is important that they have trust and confidence that the Domboshawa Trust will protect their privacy and the Trust takes great care to ensure that personal data is handled, stored and disposed of confidentially and securely. Our staff receive regular data protection training, and the Domboshawa Trust has put in place organisational and technical measures so that personal data is processed in accordance with the 6 data protection principles set out in data protection law.
As a data subject, you have the following rights in relation to your personal data which is processed by the Domboshawa Trust:
The legal basis for us processing your personal data is your consent, to withdraw that consent at any time.
More information on making a Subject Access Request can be found on The Domboshawa Trust‘s website. Please do read this before making a request.
If you wish to make a complaint about how your data is being or has been processed, please contact our Data Protection Officer:
You also have a right to complain to the Information Commissioner’s Office (ICO) about the way in which we process your personal data. You can make a complaint using the ICO’s website.