Privacy Policy

This privacy policy sets out how Thurgarton Parish Council uses and protects any information that you provide when you use this website.

Thurgarton Parish Council is committed to ensuring that your privacy is protected. Should we ask you to provide certain information by which you can be identified when using this website, then you can be assured that it will only be used in accordance with this privacy statement.

Thurgarton Parish Council may change this policy from time to time by updating this page. You should check this page from time to time to ensure that you are happy with any changes. 

Cookies – storing information on your computer

What are Cookies?

To make this site function properly, we sometimes place small data files on your computer, known as cookies.

Most big websites or internet service providers do this too. Cookies help the site remember your settings – language, font size and other preferences for how you want to view the site on your computer - so you don't have to keep re-entering them whenever you come back to us.

We use cookies to compile visitor statistics such as how many people have visited our website, what type of technology they are using (e.g. Mac or Windows which helps to identify when our site isn't working as it should for particular technologies), how long they spend on the site, what page they look at etc. This helps us to continuously improve our website. These so called "analytics" programs also tell us if, on an anonymous basis, how people reached this site (e.g. from a search engine) and whether they have been here before.

Our cookies are not used to identify you personally. They're just there to make the site work better for you.

How you can control cookies

You can control and/or delete cookies as you wish – for details, see AboutCookies.org.

You can delete all the cookies already on your computer and you can set most browsers to block them being placed. But if you do this, you may have to manually adjust some preferences every time you visit the site.

We do not use cookies for any other purpose than those presented here and we do not use them to collect any personal data for any other purpose.

Data Protection

The Data Protection Act 1998 came into effect on 1 March 2000. The Act regulates the use of personal data and gives effect in UK law to the European Directive on Data Protection.

What does the Act cover?

The Act is concerned with "personal data", that is information about living, identifiable individuals. This need not be particularly sensitive information and can be as little as a name and address.

The Act gives individuals (data subjects) certain rights. It also requires those who record and use personal information (data controllers) to be open about their use of that information and to follow sound and proper practices (the Data Protection Principles). Data controllers are those who control the purpose for which and the manner in which personal data is processed. Data subjects are the individuals to whom the personal data relate.

The Information Commissioner is responsible for administering and enforcing the Data Protection Act

The Data Protection Principles

We are required to comply with the eight data protection principles. The principles are set out below.

1. Data must be obtained fairly and lawfully

Information should be 'fairly processed' i.e. when you collect the information from individuals you should be honest and open about why you want it.

2. Data must be held only for specific and lawful purposes and not processed in any matter incompatible with those purposes

You must have a legitimate reason for processing the data. You should explain (in most cases in writing): who you (the data controller) are - giving the name of your Council; what you intend to use the information for and to whom you intend to give the personal data. This may be a specific third party, or a may be a more general description such as "other Councils' etc

3. Data must be relevant, adequate and not excessive for those purposes

Data users should monitor the quantities of data held and ensure that they hold neither too much nor too little. Hold only the data which you actually need.

4. Data must be accurate and where necessary kept up to date.

Personal data should be accurate. If it is not, it must be corrected.

5. Data must not kept for longer than necessary

Only in exceptional circumstances should data be kept indefinitely. In order to comply with the principle you should have a system for the removal of different categories of data from your system after certain periods, for instance, when the information is no longer required for audit purposes

6. Data should be processed in accordance with the rights of data subjects under this Act

This means that individuals must be informed, upon request, of all the information held about them. They can prevent the processing of data for direct marketing purposes and are entitled to compensation if they have been caused damage by any contravention of the Act.

7. Security precautions in place to prevent the loss, destruction or unauthorised disclosure of the data

Data controllers should ensure that they provide adequate security for the data taking into account the nature of the data, and the harm to the data subject which could arise from disclosure or loss of the data. A system of passwords should be in use to ensure that only staff who are authorised can gain access to personal data. Passwords should be changed fairly frequently. Councils should have established, written procedures setting out who is authorised to access which records and for what purpose.

8. Not to transfer data outside the European Economic Area unless you are satisfied that the country in question can provide an adequate level of security for that data