The Lydian Singers (hereafter referred to as The Choir) is committed to protecting your privacy and security. This Notice explains how and why we use your personal data, and to ensure you remain informed and in control of your data.
"We" and "Us" refer to The Choir, represented by its committee.
"Personal data" - any data which identifies you, or which can be identified as relating to you personally.
For the purposes of data protection law, The Choir will be the data controller and data processor.
"Members" – regular attendees of Choir rehearsals and concerts and who pay a subscription.
"Concert Volunteers/Associates" (Friends of Lydian) – non-Members who assist us on a per-concert basis.
We collect personally identifiable data you provide to us. This includes information you give when:
The data can include:
We will produce photographic images of The Choir from time to time, for use on the website, in social media and for the purposes of promoting The Choir.
We only ever use your personal data where it is necessary to enter into, or perform, a contract with you, or for our own lawful, legitimate interests, provided your rights don't override these. In any event, we'll use your information only for the purpose or purposes for which it was collected (or for closely related purposes):
We use Members' personal data for administrative purposes i.e. in order to organise, run and administer The Choir (which would not be possible if we could not hold and process this data). This includes:
We will also maintain a database of Friends of Lydians' details. However we will request their consent to retain their details every year. These details will be held by the committee and stored as in no.7 below. Headings 5 onwards will also apply to Friends of Lydian.
We will make use of social media and the Press to promote The Choir, including photographs that we have obtained.
We will never sell your personal data, nor share it with another company or charity for marketing purposes.
Your personal data will be shared amongst the committee members of The Choir and designated volunteers who undertake specific tasks on the committee's behalf, in order that we can fulfil our legitimate interests, including meeting our obligations to the Members of The Choir.
To protect your personal information, we will take whatever precautions we can and ensure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed. Personal data collected and used by The Choir will be stored on, or accessed via, password-protected computers always kept in the homes/offices of committee members or designated volunteers, and these may be backed up securely to a local device. Any paper-based records containing personal data will be kept in a locked location.
The Choir's operations are based in the UK we store our data within the UK.
We will only use and store information for so long as it is required for the purposes it was collected for. In general terms, we will retain Members' personal data for up to 3 years following its last use, after which it will be deleted – an example of this is the personal data associated with Members who have not been participating in rehearsals and concerts during that period. Consent to hold Friends of Lydians' personal details will be obtained every year. However, if you request that we erase all your personal data, then that will be actioned as soon as possible. Each year within a month of the reconvening of The Choir in the Autumn term, we will review the information we hold and delete that which is no longer required.
You may exercise the following legal rights regarding your personal data which The Choir collects and uses:
For further information on your rights or if wish to exercise them, please make contact using the details in 10 below.
Complaints to The Choir should be directed via email to the contact address in 10 below. If you are not happy with our response, or you believe that your data protection or privacy rights have been infringed, you can complain to the UK Information Commissioner's Office which regulates and enforces data protection law in the UK. Details of how to do this can be found at www.ico.org.uk.