BOYS AND GIRLS NURSERY NURSERY [boysandgirlsnursery.com]
Welcome to the site of Boys and Girls Nursery Nursery, boysandgirlsnursery.com (the “Site”).
We understand that privacy online is important to users of our Site, especially when conducting business. This statement governs our privacy policies with respect to those users of the Site (“Visitors”) who visit without transacting business and Visitors who register to transact business on the Site and make use of the various services offered by Boys and Girls Nursery (collectively, “Services”) (“Authorised Customers”).
“Personally Identifiable Information” refers to any information that identifies or can be used to identify, contact, or locate the person to whom such information pertains, including, but not limited to, name, address, phone number, fax number, email address, financial profiles, social security number, and credit card information. Personally Identifiable Information does not include information that is collected anonymously (that is, without identification of the individual user) or demographic information not connected to an identified individual.
What Personally Identifiable Information is collected?
We may collect basic user profile information from all of our Visitors. We collect the following additional information from our Authorised Customers: the names, addresses, phone numbers and email addresses of Authorised Customers, the nature and size of the business, and the nature and size of the advertising inventory that the Authorised Customer intends to purchase or sell.
What organisations are collecting the information?
In addition to our direct collection of information, our third party service vendors (such as credit card companies, clearinghouses and banks) who may provide such services as credit, insurance, and escrow services may collect this information from our Visitors and Authorised Customers. We do not control how these third parties use such information, but we do ask them to disclose how they use personal information provided to them from Visitors and Authorised Customers. Some of these third parties may be intermediaries that act solely as links in the distribution chain, and do not store, retain, or use the information given to them.
How does the Site use Personally Identifiable Information?
We use Personally Identifiable Information to customize the Site, to make appropriate service offerings, and to fulfil buying and selling requests on the Site. We may email Visitors and Authorised Customers about research or purchase and selling opportunities on the Site or information related to the subject matter of the Site. We may also use Personally Identifiable Information to contact Visitors and Authorised Customers in response to specific inquiries, or to provide requested information.
With whom may the information may be shared?
Personally Identifiable Information about Authorised Customers may be shared with other Authorised Customers who wish to evaluate potential transactions with other Authorised Customers. We may share aggregated information about our Visitors, including the demographics of our Visitors and Authorised Customers, with our affiliated agencies and third party vendors. We also offer the opportunity to “opt out” of receiving information or being contacted by us or by any agency acting on our behalf.
How is Personally Identifiable Information stored?
Personally Identifiable Information collected by Boys and Girls Nursery is securely stored and is not accessible to third parties or employees of Boys and Girls Nursery except for use as indicated above. What choices are available to Visitors regarding collection, use and distribution of the information? Visitors and Authorised Customers may opt out of receiving unsolicited information from or being contacted by us and/or our vendors and affiliated agencies by responding to emails as instructed, or by contacting us at firstname.lastname@example.org email@example.com
Are Cookies Used on the Site?
How does Boys and Girls Nursery use login information?
Boys and Girls Nursery uses login information, including, but not limited to, IP addresses, ISPs, and browser types, to analyse trends, administer the Site, track a user’s movement and use, and gather broad demographic information.
What partners or service providers have access to Personally Identifiable Information from Visitors and/or Authorised Customers on the Site?
How does the Site keep Personally Identifiable Information secure?
All of our employees are familiar with our security policy and practices. The Personally Identifiable Information of our Visitors and Authorised Customers is only accessible to a limited number of qualified employees who are given a password in order to gain access to the information. We audit our security systems and processes on a regular basis. Sensitive information, such as credit card numbers or social security numbers, is protected by encryption protocols, in place to protect information sent over the Internet. While we take commercially reasonable measures to maintain a secure site, electronic communications and databases are subject to errors, tampering and break-ins, and we cannot guarantee or warrant that such events will not take place and we will not be liable to Visitors or Authorised Customers for any such occurrences.
How can Visitors correct any inaccuracies in Personally Identifiable Information?
Visitors and Authorised Customers may contact us to update Personally Identifiable Information about them or to correct any inaccuracies by emailing us at firstname.lastname@example.org or email@example.com
Can a Visitor delete or deactivate Personally Identifiable Information collected by the Site?
We provide Visitors and Authorised Customers with a mechanism to delete/deactivate Personally Identifiable Information from the Site’s database by firstname.lastname@example.org or email@example.com. However, because of backups and records of deletions, it may be impossible to delete a Visitor’s entry without retaining some residual information. An individual who requests to have Personally Identifiable Information deactivated will have this information functionally deleted, and we will not sell, transfer, or use Personally Identifiable Information relating to that individual in any way moving forward.
© 2011, All rights reserved. Boys and Girls Nursery Unauthorised duplication or publication of any materials from this Site is expressly prohibited.
General Data Protection Regulation (GDPR) POLICY
Boys & Girls Nursery is required to collect personal information for its employees, children, parents, and visitors. It is also necessary to process information so that staff can be recruited and paid, activities organised and legal obligations to funding bodies. We intend to meet all the requirements of the Data Protection Act 1998 (the Act) and the General Data Protection Regulations 2018 when collecting, storing, and destroying personal data.
To comply with the law, information must be collected and used fairly, stored safely and not disclosed to any other person unlawfully. To do this, Boys & Girls Nursery must comply with the Data Protection Principles which are set out in the Data Protection Act 1998. In summary these state that personal data must be:
• Obtained and processed fairly and lawfully
• Obtained for a specified and lawful purpose and not processed in any manner incompatible with that purpose; adequate, relevant, and not excessive for that purpose
• Accurate and kept up to date
• Not kept for longer than is necessary
• Processed in accordance with the data subject’s rights
• Kept safe from unauthorised access, accidental loss, or destruction
• Not be transferred to a country outside the European Economic Area, unless that country has equivalent levels of protection for personal data
All Boys & Girls Nursery employees and volunteers who process or use any Personal Information must ensure that they follow these principles at all times and will be informed how to do so via the induction process.
Notification of Data Held and Processed
All employees, parents, visitors, and other members of the public have the right to:
• Know what information Boys & Girls Nursery holds and processes about them and why
• Know how to gain access to it
• Know how to keep it up to date
• Know what Boys & Girls Nursery is doing to comply with its obligations under the Act
Personal Information is defined as any details relating to a living, identifiable individual. At Boys & Girls Nursery this relates to employees; attending children and their families; professional visitors; and members of the public e.g. job applicants. We need to ensure that the information gained from everyone is kept secure.
The personal information collected from individuals includes:
• Their name
• Email address
• Telephone numbers-including those of emergency contacts
• Date of birth
• Medical information
• Details of accidents and incidents
• Details of existing injuries
• National Insurance number
• DBS numbers
• Observations of children’s progress (learning journals)
• Children’s reports, preschool or from outside professionals
• Family medical history when neccessary
Boys & Girls Nursery must store personal information to comply with the statutory framework (EYFS 2017); to deliver services to our families e.g. government funding; to employ suitable people for our setting.
Processing of Personal Information
All staff and volunteers who process or use any personal information are responsible for ensuring that:
• Any Personal Information which they hold is kept securely
• Personal Information is not disclosed either orally or in writing or otherwise to any unauthorised third party
Staff and volunteers should note that unauthorised disclosure will usually be a disciplinary matter and may be considered gross misconduct in some cases.
Personal information should be:
• Kept in a locked filing cabinet or
• In a locked cupboard or
• If it is computerised, be password protected
• Kept on a storage device which is itself kept securely
• Transported via the secure blue bag procedure by a senior member of staff
Conversations and Meetings
Information of a personal or confidential nature should not be discussed in a public area, in front of anyone that is not an employee of Boys & Girls Nursery. Employees should be aware of confidentiality at all times when discussions are taking place, either distancing themselves from the conversation if it does not concern them, or, ensuring that their discussion is not overheard by others. All staff should respect the confidential nature of any information inadvertently overheard.
When meetings are being recorded it is important that only relevant information is written down. This must be carried out using the correct forms provided, notes must be written legibly and coherently. The written notes are then to be stored in a locked cupboard and disposed of (shredded) in a timely manner once the child / family have left the setting (see table below).
In some cases, a third-party organisation, such as a funding body, may require you to sign an agreement to allow your information to be shared e.g. on a funding form. Please read all paperwork thoroughly before signing, so that you know exactly how your information will be used.
Sensitive information is defined by the Act as that relating to ethnicity, political opinions, religious beliefs, trade union membership, physical or mental health, sex life, criminal proceedings or convictions. The person about whom this data is being kept must give express consent to the processing of such data, except where the data processing is required by law for employment purposes or to protect the vital interests of the person or a third party.
Disposal of Confidential Material
Sensitive material will be shredded as soon as it is no longer needed; following retention guidelines and statutory requirements (see table below). Particular care will be taken to delete information from the cameras or the computer hard drive if they are to be disposed of.
All staff are responsible for checking that any information that they provide to Boys & Girls Nursery in connection with their employment is accurate and up to date. Staff have the right to access any personal data that is being kept about them, either on computer or in manual filing systems. Staff should be aware of and follow this policy and seek further guidance where necessary.
Duty to Disclose Information
There is a legal duty to disclose certain information, namely, safeguarding concerns, which will be disclosed to children’s services, or drug trafficking, money laundering or acts of terrorism or treason, which will be disclosed to the police.
Retention of Data
Boys & Girls Nursery takes care to only store personal information that is absolutely necessary.
Personal information is kept for the period of time recommended by statutory bodies, see list below.
Stored information is filed in named filing boxes and stored in our locked lofts. Once the retention period has lapsed, the information is destroyed.