How we will keep your information safe
We want you to be able to trust us with your personal information; we take our responsibilities as guardians of it very seriously. We know you need to give us your information for us to provide you with services and often because you are required by law to give it to us. That makes it even more important that we treat it with the utmost of care and respect and data security is a key part of this.
We keep our systems secure so you can be confident in our ability to look after it. We are subject to regular testing to ensure we meet government minimum standards of security and we strive to exceed these standards where possible. We employ a variety of physical and technical measures to keep your data safe and to prevent unauthorised access to, or use or disclosure of your personal information.
Electronic data is stored on secure computer systems and we control who has access to information (using both physical and electronic means).
We ensure all of our contractors who need access to your data to deliver services are meeting the same standards as a minimum. We regularly review our arrangements with them to ensure they keep us up to date on any changes or improvements to their systems and processes. They are also obliged by law to let us know if they have a breach involving the personal information of our staff or customers.
When we do share your data, we do it via secure channels and will not share more than is necessary for the task.
If we are collecting sensitive personal information about you, we will take extra care to ensure your personal information and privacy rights are protected.
Our staff all attend regular data protection training and are all aware of their role in keeping your data secure. We employ a Data Protection Officer (DPO) and all staff are actively encouraged to contact the DPO for advice.
We have a breach management procedure to ensure if something does go wrong we manage the situation appropriately and contact you to explain what has gone wrong, what we are doing to fix it, and your rights.
All electronic forms that request financial data will use Transport Layer Security (TLS) protocol to encrypt the data between your browser and our servers.
If you use a credit card to pay we will pass your credit card details securely to our payment provider. Other payment methods are handled in a similar manner. East Northamptonshire Council complies with the payment card industry data security standard (PCI-DSS) published by the PCI Security Standards Council, and will never store card details.
We cannot guarantee the security of your home computer or the internet, and any online communications (e.g. information provided by email or via our website) are at the user’s own risk.
- How we use your personal information
- Why do we collect information about you?
- What information do we collect and hold about you?
- Who do we share your information with, why and how?
- How we will keep your information accurate and up to date
- Prevention and detection of crime and fraud
- How we will keep your information safe (you are here)
- Your privacy at the heart of everything we do
- How we store your information
- How long we will keep your information
- Keeping you in control – understanding your rights around your personal information
- Who to contact
- Service Specific Privacy Notice