Privacy Policy / Complaints Procedure
This Privacy Policy intends to explain:
Overview
Our systems ensure that we are compliant with the General Data Protection Regulation 2018 (GDPR 18) and other applicable Data Protection Legislation.
According to GDPR and Data Protection Legislation we are regarded as a “data controller” in relation to the personal information you give to us.
What is Data?
The Legislation defines data as information that identifies an individual, company or group.
The information we request from you, depends upon what you have asked us to do and the nature of the contracted services we have.
There are two types of personal data:-
Generally, the personal data which we may request, will usually be limited to basic information or any information needed to establish your identity. We may request sensitive information from you.
Why will we request data from you and who will use it?
We will normally obtain and collect information from you directly although it maybe provided to us by third parties. The information collected is to enable us appropriately undertake work on your behalf.
The main reason we request personal data from you, is to enable us to carry out the Mediation services we have been requested to do. This will likely include (not exhaustive list):-
Your information will generally be used to undertake Mediation Services within Peak Mediation. There may be some circumstances when we are required to disclose some information to third parties including (not exhaustive list):-
Should we share your information, to a third party, we will ensure that they comply with Data Protection requirements.
How will we maintain and look after your data?
We appreciate that the information you provide to us with is valuable.
We will take all reasonable action to protect your information, whilst within our possession.
We have technological and operational security, to protect personally identifiable digital information from loss, misuse, alteration or destruction.
Physical information, will be kept safe and accessed by those involved in carrying out your instructions.
How long will we retain your data?
Your personal information will be retained only for as long as is necessary to fulfil the purposes for which the information was collected or as required by law. After the conclusion of our services, information will be retained for a minimum of three years to enable us to reopen your matter or dealing with a complaint, after this time they will be securely destroyed.
Your Rights under GDPR
Under GDPR you are entitled to access your personal data under a ‘right to access request’. If you wish to make such a request then please do so in writing.
A request for access to your personal data means you are entitled to a copy of the data which we hold about you but it does not mean you are entitled to the documents that contain this data.
Additionally, you may the following additional rights:-
We may use your personal data that we have collected in accordance with this privacy policy to contact you about products, services or events etc. which we feel may interest you. This direct marketing communication may be via social media, e-mail, SMS or post if you opt in. If you do not wish us to continue to contact you for this purpose you can unfollow/ unsubscribe to our communications or contact us in writing requesting that your details are removed from our marketing database. We would in these circumstances continue to communicate with you in relation to the services you have engaged with us.
Children and Young People
Our services are not aimed specifically at children, however, a person under the age of 18 years is able to engage with us. This Privacy Policy is applicable to these individuals and they can be explained in an age appropriate way, if required.
Concerns & Questions
If you have concerns about how we have or will obtain and maintain your personal data/ information please contact us. If you are dissatisfied with our response you can contact the Information Commissioners Office
- when and why we collect personal information about you,
- how we use it,
- when and why we may share it with others,
- how we keep this information secure
- how long retain the information.
Overview
Our systems ensure that we are compliant with the General Data Protection Regulation 2018 (GDPR 18) and other applicable Data Protection Legislation.
According to GDPR and Data Protection Legislation we are regarded as a “data controller” in relation to the personal information you give to us.
What is Data?
The Legislation defines data as information that identifies an individual, company or group.
The information we request from you, depends upon what you have asked us to do and the nature of the contracted services we have.
There are two types of personal data:-
- Personal Data such as name, date of birth, contact details, address, gender financial information etc.
- Sensitive Personal Data such as ethnic origin/background (race), religious or philosophical views, sexual orientation, political opinions, trade union membership, genetic or biometric data etc.
Generally, the personal data which we may request, will usually be limited to basic information or any information needed to establish your identity. We may request sensitive information from you.
Why will we request data from you and who will use it?
We will normally obtain and collect information from you directly although it maybe provided to us by third parties. The information collected is to enable us appropriately undertake work on your behalf.
The main reason we request personal data from you, is to enable us to carry out the Mediation services we have been requested to do. This will likely include (not exhaustive list):-
- Communicating with you.
- Verifying your identity.
- Undertaking Mediation Services.
- Preparation of documentation necessary to complete your transaction.
- Maintaining financial records.
- Seeking advice from third party e.g. experts or insurance companies.
- Dealing with a complaint against us.
Your information will generally be used to undertake Mediation Services within Peak Mediation. There may be some circumstances when we are required to disclose some information to third parties including (not exhaustive list):-
- Safeguarding Services
- HM Revenue and Customs
- Legal Aid Agency
- Court or Tribunals
- Solicitors representing you
- Medical Experts
- Translation Services
- Money Laundering
- Family Mediation Council or Family Mediation Standards Board
Should we share your information, to a third party, we will ensure that they comply with Data Protection requirements.
How will we maintain and look after your data?
We appreciate that the information you provide to us with is valuable.
We will take all reasonable action to protect your information, whilst within our possession.
We have technological and operational security, to protect personally identifiable digital information from loss, misuse, alteration or destruction.
Physical information, will be kept safe and accessed by those involved in carrying out your instructions.
How long will we retain your data?
Your personal information will be retained only for as long as is necessary to fulfil the purposes for which the information was collected or as required by law. After the conclusion of our services, information will be retained for a minimum of three years to enable us to reopen your matter or dealing with a complaint, after this time they will be securely destroyed.
Your Rights under GDPR
Under GDPR you are entitled to access your personal data under a ‘right to access request’. If you wish to make such a request then please do so in writing.
A request for access to your personal data means you are entitled to a copy of the data which we hold about you but it does not mean you are entitled to the documents that contain this data.
Additionally, you may the following additional rights:-
- The right to be informed – this privacy policy is intended to explain proposing to use your personal data.
- The right to rectification - if your personal data rectified is inaccurate, incomplete or changes please contact us.
- The right to be forgotten. You have the right to request the deletion or removal of your personal data/information where there is no longer a compelling reason for its continual processing. This is not possible personal data/ information is necessary in regards to the purpose for which it was originally collected or another basis required under the GDPR. If you have consented to allow us to retain your personal data/ information and that is the only lawful basis for continuing to hold the information then you can withdraw your consent at any time.
We may use your personal data that we have collected in accordance with this privacy policy to contact you about products, services or events etc. which we feel may interest you. This direct marketing communication may be via social media, e-mail, SMS or post if you opt in. If you do not wish us to continue to contact you for this purpose you can unfollow/ unsubscribe to our communications or contact us in writing requesting that your details are removed from our marketing database. We would in these circumstances continue to communicate with you in relation to the services you have engaged with us.
Children and Young People
Our services are not aimed specifically at children, however, a person under the age of 18 years is able to engage with us. This Privacy Policy is applicable to these individuals and they can be explained in an age appropriate way, if required.
Concerns & Questions
If you have concerns about how we have or will obtain and maintain your personal data/ information please contact us. If you are dissatisfied with our response you can contact the Information Commissioners Office