Our core data protection obligations and commitments are set out in the Council’s corporate Privacy Notice.
This notice provides additional privacy information for those accessing the Council’s Information Governance service and describes how the Corporate Information Governance service collects, uses and shares personal information about you and the types of personal information we need to process, including information the law describes as ‘special’ because of its sensitivity.
Personal information we collect and use
Keeping your personal information secure
We have appropriate security measures in place to prevent personal information from being accidentally lost, used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
To manage the requests we receive, we utilise an internet (cloud) based request management solution called Axlr8. This enables allocation of workloads, tracking of request progress and issuing of responses to you. No special category data is stored in this system, for further information please see this link:
Axlr8 Information Request Management
We also have procedures in place to deal with any suspected data security incidents and we will notify you and the appropriate regulator of any incident where we are legally required to do so.
When computers make any decisions about you
The Information Governance service does not make or use any automated decisions.
When your data is sent to other countries
We do not send any information we collect about you outside the United Kingdom.
Rights for individuals under the UK GDPR
Find out about the rights for individuals under the UK GDPR in the Council's corporate Privacy Notice
What are your rights?
Please contact the Corporate Information Governance Team at firstname.lastname@example.org to exercise any of your rights, or if you have a complaint about why your information has been collected, how it has been used or how long we have kept it for.
You can contact our Data Protection Officer via the same email address or write to: Data Protection Officer, The Council House, Priory Road, Dudley, DY1 1HF.
The UK GDPR also gives you the right to lodge a complaint with the Information Commissioners Office who are the supervisory authority responsible to regulate and monitor the legislative obligations within the UK. They can be contacted via: ICO Contact Us