Colchester Borough Council is monitoring the situation closely and will continue to take action to minimise disruption and keep residents and visitors safe.
Coronavirus: updates, advice and guidance
Colchester Borough Council, together with its wholly-owned subsidiary Colchester Commercial (Holdings) Ltd*, collects, holds and processes a considerable amount of information, including personal information, to provide services effectively. We do this in our capacity as a data controller.
*Colchester Commercial (Holdings) Ltd is the holding company for three separate subsidiaries with related but distinct products, services, markets and opportunities.
You can also view additional privacy notices for the services we provide, with more information about who we may share your data with and why.
We recognise that this information is important to citizens and that we are responsible for the information we hold about you. We take our responsibilities under data protection legislation seriously to ensure that any personal information we collect and use is done so proportionately, correctly and safely.
Personal data means any information relating to a person who could be directly or indirectly identified by that information. The legislation reflects changes in technology and the way organisations collect information about people.
This definition provides for a wide range of ways that a person may be identified by their data. This includes their name, identification number, location data or an online identifier.
We collect, hold and use personal data to allow us to provide services on behalf of the citizens of Colchester. These services include, amongst others, planning, recycling and waste, Council Tax and benefits, elections and voting, parking and travel, housing, business rates, licensing, environmental health and leisure activities.
We will use your personal data for a limited number of purposes, and at all times within the rules set out in data protection legislation.
We will process personal data for the following purposes.
There are several legal reasons why we need to collect and use your personal information. Generally, we collect and use personal information where:
You have the right to remove your consent for us to use your personal information at any time. If you want to remove your consent, please contact DPO@colchester.gov.uk and tell us which service you are using so we can deal with your request.
We are working on improving the way we provide services to the citizens of Colchester. We hold a customer record, which includes your name and address. For some services, we might also ask for your email address and telephone number.
The customer record allows us to respond faster to any queries about our services. By linking into other systems with the council, any query or issue can be investigated more efficiently. However, we will only access this information to respond to any query or instruction received by you, and only where such access is necessary to answer or respond to the query or issue you have raised.
If you call our Contact and Support team, our staff can see a summary record of previous contact you have had with us. Access to this is restricted and staff are required to operate within the guidelines set out in our Data Protection Policy.
You can register for a customer account with us to get extra services such as faster online forms. This allows you to perform certain tasks without giving your details every time, and to track the progress of your requests. If you register, we may contact you about your requests.
We will never contact you to ask for your account password or other login information. Please exercise caution if you receive any emails or calls from people asking for this information and claiming to be from Colchester Borough Council.
Calls made direct to, or from, our Contact and Support team are recorded and kept for 12 months from the date of the call. If the call is transferred to a member of staff outside the Contact and Support team, the recording stops. Calls may be recorded if telephoning directly to other service teams on alternative numbers.
If you subscribe to a newsletter on our websites or at any events run by us, we will not pass your details onto any third parties. They will be stored confidentially in line with data protection legislation. To provide this service to you, we will need to collect and store an email address. You can unsubscribe at any time by going to public.govdelivery.com/ accounts/UKCOLCHESTER/ subscriber/topics?qsp=UKCOLCHESTER_2
This privacy notice tells you what to expect when we collect personal information about you, in this case, static or moving imagery via CCTV or surveillance systems.
We are committed to protecting your personal information, as well as your safety and security as you access services and visit public buildings across the borough. We are legally obliged to use your information in line with all applicable laws concerning the protection of personal data. This includes the General Data Protection Regulation (GDPR) and the Data Protection Act 2018. Please see the surveillance privacy notice for more information.
The law gives you several rights to control which personal information is used by us and how it is used by us.
You are legally entitled to ask to see any records we hold about you. When we receive a request from you in writing, we must normally give you access to everything we have recorded about you. However, we will not let you see any parts of your record which contain:
This applies to paper and electronic records. If you ask us, we will also let others see your care record (except if one of the points above applies). To request to see the information we hold about you, please visit www.colchester.gov.uk/info or email firstname.lastname@example.org
Whilst we try to ensure that any personal data it holds about you is correct, there may be situations where the information we hold is no longer accurate. If this is the case, please contact the department holding the information so that any errors can be investigated and corrected. You should let us know if you disagree with something written on your file. You may not always be able to change or remove the information. However, we will correct factual inaccuracies and may include your comments in the records.
In some circumstances you can ask for your personal information to be deleted, for example, in instances where:
Please note that we can't delete your information where:
You have the right to ask us to restrict what we use your personal information for where:
When information is restricted, it cannot be used other than to:
You have the right to ask us to stop using your personal information for any council service. However, if this request is approved this may cause delays or prevent us from delivering that service to you.
Where possible, we'll seek to comply with your request, but we may need to hold or use information because we are required to by law.
You have the right to ask for your personal information to be given back to you or another service provider of your choice in a commonly used format. This is called data portability.
However, this only applies if we are using your personal information with consent (not if we are required to by law) and if decisions were made by a computer and not a human being.
You have the right to complain about any matter relating to our service, including how we use your data. In the first instance, please contact our Data Protection Officer by e-mailing DPO@colchester.gov.uk
We will take appropriate steps to make sure we hold records about you (on paper and electronically) securely. We will only make them available to those who have a right to see them. Our security includes:
Our Data Protection and Information Security policies can be found below:
Data Protection Policy 2019
Information Security Policy 2019
The majority of personal information is stored on systems in the UK. There are some occasions where your information may leave the UK, either to get to another organisation or if it is stored in a system outside of the EU.
We have additional protections on your information if it leaves the UK. These range from secure ways of transferring data to ensuring we have a robust contract in place with that third party.
We will take all practical steps to make sure your personal information is not sent to a country that is not seen as 'safe' either by the UK or EU governments.
We will only store your personal information for as long as is necessary. Records will be kept in line with our retention policy.
We use several commercial companies and partners to either store personal information or to manage it on our behalf. Where we have these arrangements, there is always a contract or information sharing protocol in place to ensure that the organisation complies with data protection law. Arrangements involving sensitive personal data will have been formally assessed in more detail for their compliance with the law.
We do not sell personal information to any other organisation for direct marketing.
Sometimes we have a legal duty to give information about people. This is often because we must give that information to courts.
We may also share your personal information when we feel there is a good reason that is more important than protecting your confidentiality. This does not happen often, but we may share your information:
The law does not allow us to share your information without your permission unless there is proof that someone is at risk. This risk must be identified as being serious before we can go against your right to confidentiality.
When we are worried about your physical safety or we feel that we need to take action to protect you from being harmed in other ways, we will discuss this with you and, if possible, get your permission to tell others about your situation. We may still share your information if we believe the risk to others is serious enough to do so. There may also be rare occasions when the risk to others is so great that we need to share the information straight away. If this is the case, we will make sure that we record the information we share and our reasons for doing so.
Wherever possible, we will only use anonymised, pseudonymised or de-personalised information.
Data matching may be used to help us respond to emergencies or major accidents. In conjunction with the emergency services, we may identify individuals who need additional support during the event, for example, an emergency evacuation.
If you would like further information or if you have any concerns about how we handle your data, these can be raised with our Data Protection Officer.
Colchester Borough Council
33 Sheepen Road
For independent advice about data protection, privacy and data-sharing issues, you can contact the Information Commissioner's Office (ICO) at:
Information Commissioner's Office
Tel: 0303 123 1113 (local rate) or 01625 545 745 if you prefer to use a national rate number.
Alternatively, visit www.ico.org.uk or email email@example.com.
We will continually review and update this privacy notice to reflect changes in our services and feedback from service users, as well as to comply with changes in the law. When such changes occur, we will revise the "last updated" date at the top of this notice. We encourage you to periodically review this notice to be informed about how we protect your information.
The privacy notice was last updated on 09/07/2019.
Page last reviewed: 7 February 2020