This privacy notice discloses the privacy practices in place for event customers of Techniquest in Cardiff.
This specific notice applies solely to information collected by the events team.
In this notice will find the following information:
1 week before an event takes place, the Event Manager will send an event sheet to Techniquest Management and any required third party to ensure a smooth operation.
We take the utmost care to ensure your personal information is protected. While we use encryption to protect sensitive information transmitted online, we also protect your information offline. Only employees who need the information to perform a specific job (for example, billing or customer service) are granted access to personally identifiable information. The computers/servers in which we store personally identifiable information are kept in a secure environment.
We adhere to strict technical, physical and organisational security policies, which are explained below.
As a charity, we are about to achieved the Cyber Essentials accreditation. For more information about this certification please check here: https://www.cyberessentials.ncsc.gov.uk/
Our IT providers CCSW also work to provide a safe technical infrastructure. They do this by delivering:
Clear desk policies are in place to ensure that no paperwork with sensitive information is left on display. Information is stored on our secure IT system or in lockable storage units.
Paperwork relating to your event, including purchase orders contracts and event sheets are kept in an event file as a backup copy to the electronic file. After the event has finished, the paperwork is shredded but the electronic event file is archived in our IT system for 3 years for reference.
All staff are required to pass an online data protection course (that complies with the GDPR, 2016) before handling any personal data on behalf of Techniquest Cardiff. This training is renewed on an annual basis.
You can ask us to access the information we hold on you at any time
You have the right to rectify the information we hold
You can ask us to completely remove your details from all of our systems
You’re able to object to us using your information
You can restrict how we use your information
You have a right to data portability
Any communications we send you will be via Technotice if you have opted in to our corporate database – if this is not the case please report this to firstname.lastname@example.org. If you wish to stop receiving this newsletter, you are able to do so by unsubscribing directly using the links at the bottom of each email, or by contacting a member of the Techniquest team to request your removal manually.
You are also able to request the removal all of your personal data from any Techniquest system. Providing no other laws supersede your request we will action your request in a timely manner.
– We do not sell or rent your personal information to other entities.
– We will use your information to respond to you, regarding the reason you contacted us.
The primary point of contact for all issues arising from this Policy, including requests to exercise data subject rights, is our Data Protection Officer. The Data Protection Officer can be contacted in the following way:
If you have a complaint or concern about how we use your personal data, please contact us in the first instance and we will attempt to resolve the issue as soon as possible. You also have a right to lodge a complaint with your national data protection supervisory authority at any time. In the UK, the supervisory authority for data protection is the ICO (https://ico.org.uk/). We do ask that you please attempt to resolve any issues with us first, although you have a right to contact your supervisory authority at any time.