This privacy statement provides information about the personal information that the International Gaucher Alliance collects, and the ways in which International GARDIAN Ltd. (IGL) uses that personal information. This privacy statement aims to cover all of our activities.
Last updated on 9 December 2020
The IGL adheres to the Principles of the General Data Protection Regulation (GDPR).
The IGL may change this policy at any time in line with legislative changes or changes to the policy of the organisation. Please check our website from time to time to ensure you are aware of any changes.
In this policy document:
- “we” or “IGL” means International GARDIAN Ltd.;
- “you” means any person(s) about whom we collect non-personal and/or personal information.
Our Privacy Principles
The IGL collects data for the following reasons:
- To allow us to engage with our members, stakeholders and the wider Gaucher community with information and updates regarding services from the IGL.
- For administrative purposes, allowing interaction with the IGL’s team.
- To understand the impact of Gaucher disease on patients and the effect of our projects on patient groups. This allows us to improve our services and subsequently the lives of Gaucher patients.
- To share information and updates regarding research, clinical trials, treatment and care options relevant to Gaucher disease
- To raise awareness of Gaucher disease, our events and activities.
We aim to contact you only with information that you have asked for, either by consenting to be part of our mailing lists, or by signing up for a specific project. In the latter case we will only contact you within the life of that project without your specific consent to do otherwise. You can opt out of receiving information at any time.
We will only collect data from you that is needed to deliver our work and aim to keep that data for a limited period. We will never sell your data to a third-party organisation, and never share your information for marketing purposes. We will only pass it on to a third-party organisation where it is necessary to deliver our work (for example providing an event venue with a list of attendees). We will make it clear when we need to do this, for example, we sometimes use third party platforms such as MailChimp to help us deliver our services.
The IGL will take all reasonable care to protect your personal information through secure working practices and processes. In line with the GDRP we will provide you with a summary of information we hold about you upon request and will remove your information from our records upon request if we are not legally required to hold it.
What information do we collect?
We collect several different types of information. In general we collect and store information about our members and those who engage with one of the IGL’s projects. We collect this data in order to keep our members updated and to deliver projects. We work to secure explicit consent to contact you about any unrelated events, and to share your information with any additional party.
1. Your browsing
We collect basic information about the users of our website. Whenever you access our website or download information, the web server automatically records the following information: the date and time you accessed our website, how long you were on the site, your internet domain name and the internet browser you use.
Some information may be collected when you use our website, including information such as your IP address. We also automatically receive and record information on our server logs in order to use services like Google Analytics. This information is used to help us improve our website, to increase traffic to our site, and raise the profile of the charity.
2. Your contact with us
4 Social media
The IGL is active on Facebook, LinkedIn, Twitter and Instagram. The IGL does not collect data from these social media sources, though we will endeavour to answer messages directed to us through these sources. All messages sent to the IGL in this regard are governed by the privacy policies of the chosen platform.
5. Our staff and volunteers
We hold personal information about our staff, trustees, advisory board members and volunteers. We also hold information on recent job and volunteer applicants.
How long do we keep your information?
We keep your information for a period of five years. Your data will be retained securely.
You may ask us to destroy any personal information that we hold on you so that you receive no further information or contact from us. In this circumstance, if you are a member or are currently registered for an event or assigned to a project we will contact you to confirm your wish to continue involvement, and if so remove your data subsequent to completion of the project/event.
You may ask to have a copy of the information we hold about you and/or your organisation and to amend, update, add to or delete it at any time. Should you wish to restrict the use of your personal information, please contact us by email or in writing at the address supplied on the IGL’s website or download our Subject Access Request form.
Who has access to your information?
Our members of staff have access to your personal information. If you provide information through involvement with a specific event or project, that information will also be shared with any organisations that are listed as a project collaborator or co-organiser. (Our sponsors are NOT considered collaborators and would not receive data through these means.) Finally, some information may be shared with event venues to ensure that your needs are met on the day.
As detailed above, we may use third parties to provide services on our behalf, including MailChimp and Zoom. Those parties only collect and hold the information they need to deliver the service, though data is held in accordance with their own privacy policies.
If you have taken part in a research project, we will not tell anyone you have taken part and we will not share your information with any third party without your consent. Any collaborators with access to your information will be explicitly named when you give your consent.
We may disclose personal information if required to do so by law. Except as indicated above we will not use or transfer this data to any third parties without your explicit consent permission.
We publish information leaflets, reports and newsletters for our members and stakeholders and those that interact with the IGL. From time to time these will contain personal information about our patient groups, patients, or collaborators. We never publish any information or an explicitly identified image without clear consent from those concerned. We might use quotes, e.g. from events but will always ask your permission if anything in the quotation is identifiable.
You have the right to access information stored about you by the IGL. You can write to us at the address below or email us.
We will then provide you with the following information:
Access to the information we hold about you?
- What personal data is stored
- The purposes for which your data is being processed
- Who has access to your data
Can I change my preferences?
You can change your preferences at any time:
- To unsubscribe completely, download the Data Subject Withdrawal of Consent form and email it to us
- To change your preferences, complete our Data Subject Consent form and email it to us
What security measures do we have?
We have implemented technology and policies to protect your privacy from unauthorised access and improper use and will review these measures on a regular basis. While we cannot ensure or guarantee that loss, misuse or alteration of data will not occur, we shall endeavour to prevent this.
Links to other websites
Any questions about privacy?
If you have any questions or concerns about how we protect your personal information, please contact us.
POST: International Gaucher Alliance, 8 Silver Street, Dursley, Gloucestershire GL11 4ND, UK
TELEPHONE: +44 (0)1453 549231
General GDPR information
The IGL is a Joint Data Controller pursuant to the GDPR and all empLoyees of the IGL with are responsible for ensuring that good personal data handling practices are developed, reviewed and encouraged within the IGL as per their individual job descriptions.
Angel Jones is the named Data Controller for the IGL and reports to the IGL’s CEO and Trustees and is responsible for ensuring that the IGL is GDPR compliant. The Data Controller shall at all times be the first point of contact where guidance is required in relation to any aspect of data protection compliance, as well as other procedures such as Subject Access Requests, compLaints or objections to information being processed.