What security measures do we use when processing your personal data?
We take the security of all personal data under our control seriously. We comply with our legal obligations regarding security and align to relevant parts of the ISO27001 Information Security Standard.
We ensure that appropriate policy, training, technical and procedural measures are in place, including audit and inspection, to protect our manual and electronic information systems from data loss and misuse. We only permit access when there is a legitimate reason and under strict guidelines on what use may be made of any personal data contained within them. We continuously manage and enhance our compliance with relevant standards and guidance to achieve adequate and up-to-date personal data security.
Information that we collect will be stored and processed in databases owned solely by the council. Your personal data will not be transferred outside of the European Economic Area.
Whenever you provide sensitive personal data, we will ensure all reasonable steps are taken to protect it, such as encryption. We will also take security measures to protect your personal information in storage or transit.