The York Philharmonic Male Voice Choir understands that we have a responsibility to respect and protect your personal data. As an organisation that collects and holds personal data, we have to comply with the latest data protection regulations but irrespective of any new laws, we have always committed ourselves to the highest privacy standards.
We must advise that this policy is subject to change, so please check our website, on a regular basis for any further changes.
The terms ‘York Philharmonic Male Voice Choir’ or ‘The Phil’, 'The Choir' or ‘I’, or ‘our’, or 'us', or ‘we’ used in the document refers to the provider of this policy, York Philharmonic Male Voice Choir. The term ‘you’ refers to the person reading this document.
How Data Protection Laws Protect You
The Data Protection Act 1998 and the 2018 General Data Protection Regulation (GDPR) describes how organisations — including 'The Phil' — must collect, handle and store personal information.
Data protection laws state we are only able to process personal data if we have a valid reason to do so. They also state any personal data must be collected and used fairly, stored safely and not disclosed unlawfully. Companies that process, store and have access to personal data, must abide by these laws.
What Personal Data is Collected
Personal data collected and held by 'The Phil' may include, but is not limited to:
Reasons for Collecting Personal Data
We do not collect and hold any personal data that isn’t applicable to that individual. Any and all information we collect and store has been provided by that individual either verbally, electronically or physically.
The purpose for collecting and storing personal data may include, but is not limited to:
keeping in contact with you
to update you on choir related matters
to send marketing material
Do we Share Your Personal Information?
Any and all personal data we hold will not be sold, distributed or leased for any such purposes such as marketing or advertising.
Any third parties’ platforms used to assist and provide us with certain services. e.g. CRMs, analysis tools, social media management tools etc. are selected on the basis they are compliant with the latest data protection legislations and do not sell, distribute or lease your personal information. We do restrict the information we input onto these platforms to reduce the risk of a data breach and to ensure you as an individual cannot be identified.
We may share your personal data if we are under a duty to disclose data in order to comply with any legal obligation or to protect the rights, property, or safety of 'The Phil', our members, or others. This includes but is not limited to exchanging information with other companies and organisations for the purposes of fraud protection, credit risk reduction and dispute policies. However, we will take steps with the aim of ensuring that your privacy rights continue to be protected.
Securing Personal Data
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure all information. 'The Phil' will securely store all personal data until asked by that individual to erase that data.
All individuals’ have the right to:
access personal data
rectify personal data
have data erased
restrict processing of certain data
authorise or refuse data portability
object to the storage or collection of data
not be the subject of automated decision making, including profiling
If you wish to invoke any of the above rights relating to your personal data then please contact 'The Phil' by emailing . The Choir's data protection officer will be in touch and will resolve the problem within 30 days. We will not release any personal information without two forms of ID being provided.
As already stated, we do not collect and hold any personal data that isn’t applicable to that individual. If you wish to erase personal data, object or restrict how personal data is collected and used, it may limit our ability to carry out works and provide a high level of customer service.
If you are unhappy with how the organisation is processing your personal data you may, contact the Information Commissioner’s Office (ICO). .