This privacy notice describes how BSET protects and makes use of the information given by its members and event delegates. This policy is updated from time to time. This privacy notice was updated on: 1st May 2018
BSET gathers and uses certain data in order to provide relevant information and store key data with regards their membership and event delegates. They also collect data to better understand how visitors use their website and to present timely, relevant information to them.
WHAT DATA WE GATHER ON OUR MEMBERS
We collect the following information from our members:
- Name and Job Title
- CV and qualifications
- Contact information including e-mail addresses
- Demographic information, such as postcode, hospital region, deanery
- Website usage data
- Correspondence between the individual member and the Society
WHAT DATA WE GATHER ON OUR EVENT DELEGATES
We collect the following information from our event delegates:
- Name and Job Title
- Contact information including postal, e-mail addresses and telephone number
- Bank details
- Event registration information
- GMC Number
Please note that credit card information may be provided during online registration. Stripe is used for the processing of these payments and no credit card information is held by BSET. Manual credit card payments may be taken from time to time and any card details are destroyed immediately after the event.
HOW WE USE OUR MEMBERS’ DATA
Collecting this data helps us understand and identify our members, enabling us to deliver improved services. Specifically, we may use data:
- For our own internal records
- To contact you with a response to a specific enquiry
- To send you updates on events and information we think might be relevant for you
- To send you information about conferences, meetings and courses being run by BSET and their partners.
- To send you updates in relation to BSET, which may include details on how to stand for election to Council
HOW WE USE OUR EVENT DELEGATES’ DATA
Collecting this data helps us send information about any events an individual may be attending and future events, which may be of interest to them. Event delegates are asked to consent to receive information about future events. Specifically, we may use data:
- For our own internal records
- To contact you in response to a specific enquiry
- To send you updated information about an event you are registered to attend
- To send you information about future BSET events, which may be of interest to you
CONTROLLING INFORMATION ABOUT YOU
When you complete the BSET membership application form you will be asked to:
- Opt-in to receive communications from us by email
As a delegate attending an event run by BSET, you will be asked, when appropriate, to:
- Opt-in to have your name and hospital name printed on the delegate list
- Opt-in to receive information about future events run by BSET
If you have agreed that we can use your information in this way, you can change your mind by contacting BSET at firstname.lastname@example.org
BSET does not release your details to any organisation or external body unless we have your permission. Any personal information we hold about you is stored and processed under our data protection policy, in line with the Data Protection Act 1998 and the General Data Protection Regulation 2018.
The BSET website contains links to other websites. Please note that we have no control of websites outside the following domains: www.bset.co.uk and the online event registration site https://bset.eventhq.co.uk/bset-annual-meeting-2018
SUBJECT ACCESS REQUESTS
You have the right to request a copy of the data we hold about you free of charge (excessive requests by an individual for this information may attract a small admin fee). You also have the right to be forgotten if you no longer wish us to hold information about you. Information about how to make a request is as follows:
Please contact the Data Manager either by e-mail at email@example.com or by post at the BSET PO Box 6926, Basingstoke, Hampshire RG24 4UF
Requests should be titled, “Subject Access Request” and should be accompanied by proof of ID and an outline of the nature of your request i.e. are there specific documents you wish to access or are you requesting a general search of our records. Requests will be complied with within one month.
BSET will cease to communicate with any member unless they have expressed otherwise. For attendees at BSET events, electronic data is retained for the purpose of identifying proof of event attendance and, if consent has been obtained, for contacting individuals about future events.
We will always hold your information securely. To prevent unauthorised disclosure or access to your information, we have implemented strong physical and electronic security safeguards. We also follow stringent procedures to ensure we work with all personal data in line with the Data Protection Act 1998 and the General Data Protection Regulation 2018.
BSET has put in place the appropriate procedures to ensure personal data breaches are detected, reported and investigated effectively. BSET has mechanisms in place to assess and then report relevant breaches to the ICO where the individual is likely to suffer some form of damage (e.g. through identity theft or confidentiality breach). There are also appropriate mechanisms in place to notify affected individuals where the breach is likely to result in a high risk to their rights and freedoms. Any wilful disregard or intentional breach of the Data Protection Policy by data processors (and identified data controllers in their own right) acting on BSET’s behalf under contract shall be regarded as a breach of contract and treated as such.