Lockdown GDPR Statement
In these difficult times we want to try and keep in touch with as many of our Sanctuary Community as possible. We are collating a list of everyone’s phone numbers so that we can speak to you all personally over the coming weeks/months. To comply with GDPR we need your consent to hold this list and to contact you, so if you do not want us to contact you by phone can you please let us know by emailing us on firstname.lastname@example.org.
If you do not contact us we will assume that we have your consent to contact you.
Who we are
We are The Gap Wales, a charitable incorporated organisation (CIO) based in Wales. Our website address is thegap.wales
What personal data we collect and why we collect it
The data items gathered in our Contact Form are only those required to perform the service of replying to your contact/question. If you no longer wish us to hold this data, for future contact, you may notify us directly (on email@example.com)and we will delete your data within 2 weeks). Otherwise, we will comply with the policy laid out on this page (e.g. with respect to data retention & data sharing).
As a rule, cookies will make your browsing experience better. However, you may prefer to disable cookies on this site and on others. The most effective way to do this is to disable cookies in your browser. We suggest consulting the Help section of your browser or taking a look at the About Cookies website which offers guidance for all modern browsers.
Who we share your data with
Personal data is not shared with any third parties, beyond the hosting and software providers used to operate this website.
How long we retain your data
Cookies are retained indefinitely, as you are able to disable or delete these for your browser when you require. We suggest consulting the Help section of your browser or taking a look at the About Cookies website which offers guidance for all modern browsers.
What rights you have over your data
You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes. To exercise either of these rights, please email firstname.lastname@example.org
Where we send your data
We do not send your personal data to any other organisations.
How we protect your data
A number of cyber security measures are used to protect your personal data, gathered by this site. These include server level cyber security from hosting provider.
What data breach procedures we have in place
If a breach in security, loss of personal data (or a breach of compliance with this policy) is identified – then data subjects will be notified within 72 hours. Given the limited data held by this site, it is unlikely that any such breach would cause significant loss for data subjects.
What third parties we receive data from
We do not receive data from any third-party providers.
What automated decision making and/or profiling we do with user data
We do not undertake any automated decisioning, nor profile users of site, nor those who contact us directly.
Industry regulatory disclosure requirements
Further details on your rights, as a data subject, are available from the Information Commissioner (data protection regulator for the United Kingdom).