Infopoint Limited (“The Company, We and Us”) are committed to protecting and respecting your privacy.
Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. By visiting www.Infopoint.org.uk you are accepting and consenting to the practices described in this policy. This website is maintained by Infopoint Limited, hitherto “The Company, We and Us”. A company registered in England – Company Number 3977080 – VAT No 846 8942 71
Any personal data you volunteer will be used for the purpose for which you supply it and will be treated with the highest standards of security and confidentiality, strictly in accordance with data protection principles, the Data Protection Act 1998, and applicable EU directives. It will only be shared, where you have given consent.
This statement relates to our privacy practices in connection with this website. Some technical terms used in this statement are explained at the end of this page.
Data Protection Acts
The Data Protection Acts are designed to protect people’s privacy. They give effect to the Council of Europe Data Protection Convention. The Acts confer rights on individuals in relation to the privacy of their personal data as well as responsibilities on those persons holding and processing such data. They can be found at http://www.legislation.gov.uk/ukpga/1998/29/contents
What is “personal data”?
Personal data means data relating to a person who is or can be identified either from the data itself or in conjunction with other information that is in, or is likely to come into, the possession of The Company. It covers any information that relates to an identifiable, living individual. This data can be held on computers or in manual files.
Regulation (EU) 2016/6791, the European Union’s (‘EU’) new General Data Protection Regulation (‘GDPR’), regulates the processing by an individual, a company or an organisation of personal data relating to individuals in the EU.
A “data controller” means a person who, either alone or with others, controls the contents and use of personal data.
The Data Controller for Infopoint Limited is Sarah Bennison, Director, Infopoint Limited, William James House, Cowley Road, Cambridge CB4 0WX
Phone Number: +44 1223 420020
The Company’s obligations
Infopoint Limited has obligations under Data Protection Law that:
- Data must be obtained and processed fairly.
- Data must be accurate, complete and where necessary, kept up to date.
- Data must have been obtained only for one or more specified, explicit and legitimate purpose.
- Data must not be further processed in a manner incompatible with that purpose.
- Data must be adequate, relevant and not excessive in relation to the purpose for which they
were collected or are further processed.
- Data must not be kept for longer than is necessary for that purpose.
- Appropriate security measures must be taken against unauthorised access to, or
unauthorised alteration, disclosure or destruction of the data, where the processing involves the transmission of data over a network, and against all other unlawful forms of processing. The Company employs the most appropriate physical and technical measures, including staff training and awareness and these are reviewed regularly.
- Personal data held by The Company is registered with the ICO
We at Infopoint Limited owe a duty of care to the data subjects concerned, i.e. we take care not to cause any of our customers damage or distress by, for example, maintaining inaccurate information on our files, or disclosing personal data to someone who is not entitled to this data.
The Company takes its obligations very seriously and adopts the strongest line in relation to the misuse of customer information by any of its staff. Staff, past and present commit to Confidentiality Agreements set out by The Company. Any breach of trust regarding the confidentiality of information is treated as serious misconduct under Infopoint Limited Staff Disciplinary clauses contained within individual Contracts of Employment and can lead to sanctions up to and including dismissal. Evidence of breach of confidentiality, or transfer of data by past members of staff where proven, will also be taken seriously, and solutions sought through legal process.
Collection and use of personal information
Be assured that this website does not collect any personal data, apart from information that you volunteer (for example, when filling a form) and your IP address. Any information you provide in this way is used only for the purpose for which you provide it. The purpose is communicated clearly on any forms, for example, currently these purposes can include
- Enquiring about Infopoint Ltd’s services.
This website is hosted in a Data Centre in the UK, and website hosting services supplied to The Company are provided by a trusted UK partner, with comprehensive GDPR policies and procedures in place.
Please note Infopoint Limited uses a Dedicated Server, to deliver this website. Only Infopoint customer websites or email accounts exist on that server. Furthermore, only skilled Infopoint website development staff have access to the server to control the configuration and resource of the Infopoint website. The website uses an “SSL Certificate” meaning that any data visitors provide is encrypted.
Despite these features, you should be aware that unfortunately, the transmission of information via the internet is not completely secure. Although we do our very best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once your information has been transmitted, please be assured that we use the strict procedures and security features above to try to prevent unauthorised access.
Infopoint Ltd is a company that enables users to view and digest information about its provided online services in a safe and secure manner.
Right of Access
Under section 4 of the Acts a person has a right to be given a copy of his/her personal data. This subject access request (SAR) must be in writing through to the Data Controller. Your request should be as specific as possible. To enable us to issue the Data, it will be necessary for you to include evidence of your own identity such as a photocopy of your passport or photocopy of your driving license. Any access request will be subject to a fee of £10 to meet our costs in providing you with details of the information we hold about you. A response to your access request will be issued to you as soon as is possible and in any event within fourteen days.
Right of rectification
Under section 6 of the Data Protection Acts, a person has a right to have his/her personal data corrected, if inaccurate, or erased, if there is not a legitimate reason for retaining the data. Infopoint Limited makes every effort to ensure that your personal data is accurate and only retained for as long as it is required. If you have reason to believe that your personal data held by Infopoint is not accurate or should no longer be retained, you can write to us on the issue setting out clearly what personal data is at issue and the reasons why you consider it to be inaccurate and/or why The Company should no longer retain it.
Concerns over Data Protection
If you believe that an individual or third party has accessed your personal information illegally and/or that your personal data may have been disclosed to a third party illegally by Infopoint Ltd. you can make a formal written complaint to:
Private and Confidential Sarah Bennison Infopoint Limited William James House Cowley Road Cambridge CB4 0WX
Please specify the exact data and include as much evidence that has led you to believe that your personal information has been accessed illegally through a disclosure by The Company. The matter will be investigated by The Company and you will be notified regarding the outcome of the investigation as soon as possible.
Where can I get more information about my rights under the Data Protection Acts
The UK Government legislation website explains the rights and responsibilities under the Data Protection Acts (http://www.legislation.gov.uk/ukpga/1998/29/contents)
Information we routinely collect
Our website collects the following information none of which can be traced back to any personal identifiable individuals.
- Statistical information (web browser version, pages visited etc.).
- The previous website address from which visits reached us, including any search terms used.
- IP addresses for the purposes of website security and safety.
Cookies are small pieces of information, stored in simple text files, placed on your computer by a website. Some cookies can be read by the website on your subsequent visits. The information stored in a cookie may relate to your browsing habits on the webpage, or a unique identification number so that the website can ‘remember’ you on your return visit. Other cookies are deleted when you close your browser and only relate to the working of the website. Generally speaking, cookies do not contain personal information from which you can be identified, unless you have furnished such information to the website. Cookies help us to provide you with a good experience when you browse our website and also allows us to improve our site
Cookies may be set in a number of places on this website:
- When you first visit this website, you will see a message informing you about the privacy statement.
- Cookie sessions can be removed by clearing your browsing history
- Cookies are created to capture information for use with website analytics. They help to
provide Infopoint Ltd administrators with accurate statistics to provide a better service.
Most browsers allow you to turn off Cookies or to customise your settings for cookies. To find out how to do this, see the ‘Help’ menu on your browser. Please note that if you turn off cookies or change your settings, some features on the website for Infopoint Ltd may not work correctly.
If you are concerned about how personal data is processed via this website, please contact us by email using the following address firstname.lastname@example.org – Please mark your email as Private and confidential.
This website may contain links to other websites. Infopoint Limited is not responsible for the content of these sites or for the privacy statements of other websites. Please check their policies before you submit any personal data to these websites.
Notification of Change
Glossary of technical terms used
1 Web Browser
A web browser is the piece of software you use to read web pages. Examples are Microsoft Internet Explorer, Chrome, Safari, Mozilla Firefox and Opera.
2 IP Address
The moment a computer connects to the Internet an IP address is created that can help your internet service provider identify the user. For most users the IP address will change regularly and no personally identifiable information is accessible to Infopoint Limited. Occasionally an IP address can provide useful general information such as the country of origin – this can aid Infopoint in managing attempts to breach the security of our website.
3 Dedicated Server
A Dedicated Server is dedicated to one Company so that only their customer websites or email accounts exist on that server.
4 SSL Certificate
The Infopoint website uses an SSL Certificate. SSL stands for Secure Sockets Layer. An SSL Certificate creates a secure connection between visitors and the website. The specific details a visitor completes via an enquiry form is encrypted and kept secure from hackers.