PRIVACY POLICY
Glenbarr Community Development Association (GCDA)
Glenbarr Community Development Association (GCDA) is committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, and protect your personal information in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR).
1. Information We Collect
We may collect and process the following personal data:
Contact Information: Name, address, email address, phone number.
Demographic Information: Age, gender.
Transaction Information: Membership details, event attendance, provided financial information.
Communication Information: Correspondence and communication records with GCDA.
Technical Information: IP address, browser type, and information about your visit to our website.
2. How We Use Your Information
We use your personal data for the following purposes:
Service Delivery: To provide information, services, and support you request from us.
Communication: To keep you informed about our projects, events, and updates.
Administration: To manage membership and event registrations.
Compliance: To comply with legal obligations and regulatory requirements.
Improvement: To improve our services, website, and overall user experience.
Authorised Social Media Channels: To add registered members to authorised social media channels such as WhatsApp after gaining prior opt-in authorisation.
3. Legal Basis for Processing
We process your personal data based on the following legal grounds:
Consent: Where you have given us explicit permission to process your data.
Contractual Necessity: Where processing is necessary for the performance of a contract with you.
Legal Obligation: Where we need to comply with a legal obligation.
Legitimate Interests: Where processing is necessary for our legitimate interests, provided your rights and interests do not override those interests.
4. Sharing Your Information
We do not sell, trade, or rent your personal data to third parties. We may share your information with:
Service Providers: Third-party service providers who assist us in delivering our services and projects, subject to confidentiality agreements.
Regulatory Authorities: Where required to comply with legal obligations.
5. Data Security
We take appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Our measures include secure data storage, encrypted communications, and access controls.
6. Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Once your data is no longer needed, we will securely delete or anonymise it.
7. Your Rights
You have the following rights regarding your personal data:
Access: Request access to your personal data and receive a copy.
Rectification: Request correction of inaccurate or incomplete data.
Erasure: Request deletion of your personal data under certain conditions.
Restriction: Request restriction of processing under certain conditions.
Objection: Object to processing based on legitimate interests.
Data Portability: Request transfer of your data to another organisation.
To exercise your rights, please contact us using the information provided on the ‘Contact Us’ page.
8. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page, and we will notify you of significant changes where appropriate.