Our Privacy and Cookies Policy

Welcome to the Good Business Foundation’s privacy notice. We at Good Business Foundation (GBF) understand that you care how your information is used and shared and we appreciate your trust in us to do that carefully and sensibly.

This privacy notice tells you what to expect us to do with your personal information.

CONTACT DETAILS

WHAT INFORMATION WE COLLECT, USE, AND WHY

We collect or use the following information to provide services:

·   Names and contact details

·   Records of meetings and decisions

·   Website user information (including user journeys and cookie tracking)

Specific to the Accreditation Centre (accreditation.goodbusinesscharter.com) we collect:

·   Contact details (eg name, office address, telephone number and email address)

· Organisation details

· Responses to accreditation questions as supplied by the applicant

We collect or use the following personal information for recruitment purposes:

·   Contact details (eg name, address, telephone number or personal email address)

·   Date of birth

·   National Insurance number

·   Copies of passports or other photo ID

·   Employment history (eg job application, employment references or secondary employment)

·   Education history (eg qualifications)

·   Right to work information

We collect or use the following personal information for dealing with queries, complaints or claims:

·   Names and contact details

·   Correspondence

LAWFUL BASES AND DATA PROTECTION RIGHTS
Under UK data protection law, we must have a “lawful basis” for collecting and using your personal information. There is a list of possible lawful bases in the UK GDPR. You can find out more about lawful bases on the ICO’s website.

Which lawful basis we rely on may affect your data protection rights which are in brief set out below. You can find out more about your data protection rights and the exemptions which may apply on the ICO’s website:

Your right of access – You have the right to ask us for copies of your personal information. You can request other information such as details about where we get personal information from and who we share personal information with. There are some exemptions which means you may not receive all the information you ask for. You can read more about this right here.

Your right to rectification– You have the right to ask us to correct or delete personal information you think is inaccurate or incomplete. You can read more about this right here.

Your right to erasure– You have the right to ask us to delete your personal information. You can read more about this right here.

Your right to restriction of processing– You have the right to ask us to limit how we can use your personal information. You can read more about this right here.

Your right to object to processing– You have the right to object to the processing of your personal data. You can read more about this right here.

Your right to data portability– You have the right to ask that we transfer the personal information you gave us to another organisation, or to you. You can read more about this right here.

Your right to withdraw consent– When we use consent as our lawful basis you have the right to withdraw your consent at any time. You can read more about this right here.

If you make a request, we must respond to you without undue delay and in any event within one month.

To make a data protection rights request, please contact us using the contact details at the top of this privacy notice.

Our lawful bases for the collection and use of your data

Our lawful bases for collecting or using personal information to provide services are:

Consent – we have permission from you after we gave you all the relevant information. All of your data protection rights may apply, except the right to object. To be clear, you do have the right to withdraw your consent at any time.

Our lawful bases for collecting or using personal information for processing accreditation applications are:

Consent – we have permission from you after we gave you all the relevant information. All of your data protection rights may apply, except the right to object. To be clear, you do have the right to withdraw your consent at any time.

Our lawful bases for collecting or using personal information for recruitment purposes are:

Consent – we have permission from you after we gave you all the relevant information. All of your data protection rights may apply, except the right to object. To be clear, you do have the right to withdraw your consent at any time.

Our lawful bases for collecting or using personal information for dealing with queries, complaints or claims are:

Consent – we have permission from you after we gave you all the relevant information. All of your data protection rights may apply, except the right to object. To be clear, you do have the right to withdraw your consent at any time.

WHERE WE GET PERSONAL INFORMATION FROM
Directly from you

Publicly available sources

HOW LONG WE KEEP INFORMATION
Our retention policy on how long we store personal information is as follows:

As long as the organisation is GBC accredited, personal information supplied by that organisation will be held on record.

For organisations that start an application but do not complete it, their data will be deleted after a year.

For organisations that are not successful with their application, are rejected at a later date or choose not to renew, organisation information will be held on record for six years on the basis that it connects with financial records for invoicing. After that the records will be deleted. If you wish to have your record deleted you can make a request to do this. Accreditation application responses will be deleted after two years.

HOW TO COMPLAIN

If you have any concerns about our use of your personal data, you can make a complaint to us using the contact details at the top of this privacy notice.

If you remain unhappy with how we’ve used your data after raising a complaint with us, you can also complain to the ICO.

The ICO’s address:

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Helpline number: 0303 123 1113

Website: https://www.ico.org.uk/make-a-complaint

LAST UPDATED

COOKIES POLICY
(a) What is a cookie?
A cookie is a small text file, which often includes a unique identifier that is sent to your computer or mobile phone (referred to here as a “device”) browser from a website’s computer and is stored on your device’s hard drive. There are various types of cookies which perform different functions, such as remembering which items you have placed in your shopping basket or recording your browsing habits. The information recorded by the cookie is retrieved on the user’s next visit to the site.
For more information about cookies, visit www.aboutcookies.org
(b) GBF cookies – how to manage cookies
Most web browsers will accept cookies, but if you would rather that we did not collect data in this way you can choose to accept all or some or reject cookies in your browser’s privacy settings. Rejecting all cookies means that certain features cannot then be provided to you and accordingly you may not be able to take full advantage of all of the website’s features and you may be prevented from completing your purchase online. Each browser is different, so check the “Help” menu of your browser to learn how to change your cookie preferences.
If you want to delete any cookies that are already on your computer, please refer to the instructions for your file management software to locate the file or directory that stores cookies or click here.
(c) How does GBF use cookies?
On goodbusinesscharter.com, cookies record information about your online preferences, remember information about you when you visit our site and compile statistical reports on website activity. Some cookies are used that are essential in order to provide our services to you.
During the course of any visit to goodbusinesscharter.com, your navigation through the site is recorded by a cookie that is downloaded to your device. The information recorded is retrieved on a repeat visit to the site by checking to see, and finding, the cookie left there on the last visit.
Information supplied by cookies can help us to analyse the profile of our visitors and help us to provide you with a better user experience. Below we have set out the four categories of cookies that GBF uses on our website. These cookies are:
Strictly necessary cookies
These cookies are essential in order to enable you to move around the website and use its features, to continue to navigate the site when making a purchase. Without these cookies, services you have asked for, cannot be provided. These cookies do not gather information about you.
Performance cookies
These cookies collect information about how our visitors use the website, for instance which pages visitors go to most often, and if they get error messages from any web pages. They also allow us to record and count the number of visitors to the website, all of which enables us to see how visitors use the website in order to improve the way that our website works. These cookies do not collect information that identifies a visitor, as all information these cookies collect is anonymous and is only used to improve how our website works.
Functionality cookies
These cookies allow our website to remember choices you make (such as your login details or your choices in relation to our newsletter). Whenever these cookies are used we will notify you before using the cookie, providing more information about the functionality cookie to be used, and how it might improve your user experience. The information these cookies collect is usually anonymised. They do not gather any information about you that could be used for advertising or remember where you have been on the internet.
Targeting cookies
These cookies collect several pieces of information about your browsing habits. They are placed by our third party service provider [although we may also place a cookie that collects this kind of information]. All of the information that these cookies collect is anonymised, although they contain a unique key that is able to distinguish, for example, individual user browsing habits. These cookies can track your visits around the website, but they do not usually know who you are. They remember that you have visited our website and your browsing habits. This information is only shared between us and our third party service provider.