Dr Charles Tannock

Member of the European Parliament for London

Data Protection, Privacy and GDPR

This policy is effective 25th May 2018

This notice informs you of my policy about all information that we record about you. It sets out the conditions on how we may process any information that we collect from you, or that you provide to us. It covers information that could identify you (“personal information”) and information that could not. Our policy complies with UK law accordingly implemented, including that required by the EU General Data Protection Regulation (GDPR).

The law requires us to tell you about your rights and our obligations with you in regards to the processing and control of your personal data.


What does this office do?

This privacy notice relates to the personal data processed by the Office of Charles Tannock, Member of the European Parliament for London, in relation to Caseworker and policy queries. The office discharges the duties and functions of an elected Member of the European Parliament. As part of this work, we conduct constituency casework and respond to policy queries, for which we must process personal data of our constituents. We also manage a non-political mailing list for the purpose of sending Charles’ e-newsletter and information regarding his duties as a Member of the European Parliament.


How do we process data?

The law permits processing of personal data, without the express consent of the individual, in certain circumstances. Processing of personal data is permitted where there is a legitimate interest; MEPs have an important role in our democratic process in communicating with and representing their constituents. Processing of personal data is permitted for tasks in the public interest; democratic engagement is such a task, and includes activity such as campaigning, casework, communications and fundraising.

In instances where this lawful basis is not sufficient and explicit consent is required, a member of the office will contact you to establish your consent. We are committed to ensuring that the information we collect and use is appropriate for this purpose, and does not constitute and invasion of your privacy. Where you have given me your data, I will inform you of campaigns, events, news and information that I believe will be interesting to you to keep you updated on my work. I will not use your data for anything other than to keep you updated on my work as a Member of European Parliament for London.


What information do we collect?

The types of personal information that we may collect about you include:



We may also collect special categories of information such as:



How we collect your personal information, what we collect and how we use it

I will only process your personal information for the purposes set out below. In the unlikely event I will need to process your personal information for a new purpose, I will inform you beforehand and you will have the opportunity to opt-out of any further correspondence.

When you provide any information to me, you can be assured that it will only be used in accordance with this Privacy Notice.

I am committed to making it simple and easy to amend all data I hold on you, to be able to decide what data I hold and to opt-out from receiving information from me at any time without any explanation or further correspondence.

Your data will be stored by MailChimp who are based in the USA and have certified to the Privacy Shield regime for transfers of data between the EU and United States.

Supporters

The only method I use to obtain your personal information is directly from you when you sign up to receive updates from me on my website or on social media, when you sign up to attend an event I am hosting, or if you directly get in touch with me via email, in person, by letter or by the phone. When you sign up for updates I will simply record your name and email address.

When you get in touch by email, phone, or by post and ask to stay in touch I will record the details you have provided to me.

I will use your personal details to get in touch for the following purposes:



Website users

Like most websites, this website uses data collection tools to track user interaction. Cookies are small text files that are placed on your computer’s hard drive by your web browser when you visit any website. They allow information gathered on one web page to be stored until it is needed for use on another, allowing a website to provide you with a personalised experience and the website owner with statistics about how you use the website so that it can be improved.

Some cookies may last for a defined period of time, such as one day or until you close your browser. Others last indefinitely.

Your web browser should allow you to delete any you choose. It also should allow you to prevent or limit their use.

We only use cookies that are necessary to provide certain basic functionality, to help us to improve the performance of our website and provide you with a better user experience. You may delete and block all cookies from this site, but parts of the site may be negatively affected. To find out more about cookies, click here

We may hold the following types of personal information:


Please note, our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide while visiting such sites, and such sites are not governed by this Privacy Notice. You should exercise caution and look at the privacy notice applicable to the website in question.


Other information we store

I regularly contact elected or appointed national and local government officials, local Conservative associations and other relevant organisations and businesses as part of my political work. I obtain personal information from publicly available sources, such as websites, directories, online searches, publicly available databases or when my office correspond directly with the person.

I may use your personal details to get in touch for the following purposes, depending on the nature of our relationship:



Members of the media

I also contact members of the media to update them on issues and campaigns I am working on or to offer comment where I think appropriate. We obtain personal information from publicly available sources, such as company websites, or when we correspond directly with a member of the media. We may also obtain personal information from a third-party provider.

I may use your personal details to get in touch for the following purposes:



Suppliers

If you do business with us on your own behalf or you are the point of contact for an organisation that we do business with, we collect the personal information you provide us with.

We may use your personal information for the following reasons:

To conduct business with you or your employer. In some cases, providing information to us will be necessary for the performance of a contract and we will not be able to enter into, or fulfil our contractual obligations without it.

I will never sell, rent or otherwise distribute or make public any of your personal information, unless legally required to do so.

How we secure your personal information and how we handle data breaches

I take the security of all personal information seriously and have put into place robust physical, electronic and managerial procedures to safeguard your information against unauthorised access, theft and loss. I limit all access to personal information to those who have a genuine business need to know it.

Individuals processing personal information on my behalf will do so in an authorised manner and are subject to a duty of confidentiality.

I will report any suspected data breach to the applicable authorities and to individuals where I am legally required to do so.


How long will I retain your personal information?

We will continue to process your information until you withdraw your consent or it can be reasonably assumed that your consent no longer exists.


What are your rights?

Under data protection laws, you have important rights which you can exercise free of charge. In summary, these rights are:

The right to rectification: If your personal information is incorrect or incomplete, you have the right to have it corrected.

The right to be forgotten: In certain circumstances, you may request the removal of your personal information.

The right to restrict processing: In certain circumstances, you can block the processing of your personal information.

The right to data portability: In certain circumstances, you can receive the personal information which you have provided to us in a structured, commonly used and machine-readable format and have the right to transmit that information to a third party, or for your own use anywhere you prefer.

The right to object: You can object to the use of your personal information for direct marketing or in certain other situations.

For further information on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals’ rights under the General Data Protection Regulation.


How to exercise your rights

If you would like to exercise these rights, details of how to do so are set out below. Please note, we will ask for identification should you choose to exercise any of the rights below.


Subject access requests

You can request a copy of any personal information that we hold about you, as well as the description of the type of information that we are processing, the uses that are being made of the information, details of anyone to whom their personal information has been disclosed, and how long the personal information will be stored. This information must be provided within one month of request at no charge to you. Please email or phone the Data Protection Officer to make a request.


Updating your details

We have an obligation to store accurate information about you, so should your personal information change at any point, please email or phone the Data Protection Officer to update your details.


Opting out

If you just want to stop receiving emails from us, you can unsubscribe using the unsubscribe links contained in any email that we send you, by emailing or phoning the Data Protection Officer to update your details. When requesting removal via email, please contact me using the email account that is subscribed to the mailing list or make it clear in the email you send which email account you are referring to. If you are under 16 years of age you must obtain parental consent before signing up to my emails.

If you would like to stop receiving post from me, please email or phone the Data Protection Officer.

You can always request that I remove you from my database. If you would like me to delete your record, please email or phone the Data Protection Officer.


How to complain

I hope that I can resolve any query or concern you raise about my use of your information quickly and effectively. All requests to unsubscribe are dealt with promptly, and in all cases within thirty days.

You also have the right to complain to the UK Information Commissioner, who may be contacted at https://ico.org.uk/concerns/ or by telephone on: 0303 123 1113. If you live or work elsewhere in the EU or EEA, you can also complain to your local supervisory authority.


Changes to this Privacy Notice

We may update this privacy notice from time to time as necessary. The terms that apply to you are those posted here on this website on the day you use this website.


How to contact us

Please contact us if you have any questions about this Privacy Notice or the information I hold about you.

Data Protection Officer: Charles Tannock.
Registered address and operating office: 4 Greyhound Road, London W6 8NX.
Telephone: 07469 708665.
Email: charles@charlestannock.com
Privacy Policy