General Data Protection Regulation (GDPR) Policy
1. Introduction
The Rose Thompson Foundation is committed to protecting the privacy and security of personal data. This policy outlines our commitment to protecting your data and your rights under the General Data Protection Regulation (GDPR).
2. Personal Data We Collect
We may collect personal data such as name, contact details, and other necessary information for our charitable activities. We only collect data that is necessary and relevant to our operations.
3. How We Use Personal Data
We use personal data to provide, improve, and communicate about our services. We do not sell or share personal data with third parties for their use, except as described in this policy.
4. Legal Basis for Processing
We process personal data following GDPR. This includes processing personal data where it is necessary for our legitimate interests, where we have consent, and where we need to comply with a legal obligation.
5. Children's Data
When offering an online service directly to a child, only children aged 13 or over can provide their consent. For children under 13, we adopt age-verification measures and seek parental consent.
6. Data Security
We implement appropriate technical and organisational measures to protect personal data against unauthorised access, accidental loss, disclosure, or destruction.
7. Your Rights
Under GDPR, you have the right to access, correct, and delete your data, restrict processing, object to processing, and obtain a copy of your data for purposes of transmitting it to another organisation.
8. Changes to This Policy
We may update this policy from time to time. We will notify you of any changes by posting the new policy on our website.
9. Contact Us
If you have any questions about this policy or our use of your personal data, please contact us at: info@rosetf.org.uk