SSIP Privacy Notice

  1. About Us
    • SSIP is known as the "Controller" of the personal data that we collect about you. We process and hold your information in order to maintain and service the SSIP Forum. This notice will explain how we use and share information.
    • We are also the ‘Processor’ of information supplied by SSIP Member Schemes for inclusion on the SSIP Assessor Register.
  2. Changes to this privacy notice
    • We may change this privacy notice from time to time by updating this page in order to reflect changes in the law and/or our privacy practices. We encourage you to check this privacy notice for changes whenever you visit our website https://ssip.org.uk/
  3. Why do we collect your personal information?
    • We collect and use personal data relating to SSIP Directors to meet our legal obligations.
    • We are the controller of information for the maintenance of the SSIP Assessor Register..
    • We are the processor of information supplied by our members and uploaded to the SSIP Portal.
  4. What personal data do we collect?
    • Personal Qualifications and contact information for Assessors on our Assessor Register.
    • Whilst the majority of the personal data provided to SSIP is mandatory, some is provided on a voluntary basis. When collecting data, SSIP will inform you whether you are required to provide this data or if your consent is needed. Where consent is required, SSIP will provide you with specific and explicit information with regards to the reasons the data is being collected and how the data will be used.
  5. How do we collect your personal data?
    • Information may be collected in a number of ways but predominantly as set out below:
    • Telephone calls: ordinarily we will inform you if we record or monitor any telephone calls you make to us. Recordings may be used as evidence of the call and for our staff training and quality purposes.
    • Emails: if you email us we may keep a record of your email address and the email as evidence of the contact. We are unable to guarantee the security of any email initiated by you and we recommend that you keep the amount of confidential information you send to us via email to a minimum. We recommend that where available you use secure online services.
  6. Who do we get your personal information from?
    • This information is collected in a number of ways:
      • Provided by you directly when you sign up to a service we are providing;
      • Provided by another professional organisation involved in the provision of services;
      • Provided by another professional organisation to allow the research and intelligence necessary to SSIP performing its statutory functions.
    • We may also receive information from government bodies and regulators such as the Department of Work and Pensions and Her Majesty's Revenue and Customs.
  7. Who do we share your information with?
    • SSIP will not share your personal information with any third parties without your consent, unless the law allows us to do so.
    • No information is shared outside of the UK.
 
  1. What are the legal grounds for processing your personal data?
    • To comply with our legal obligations.
    • Where it is needed to provide you with our products and/or services
  2. What do we use your personal data for?
    • To comply with legal and regulatory obligations, requirements and guidance.
    • To provide an Assessor Register.
  3. How long do we keep your information for?
    • We are required to retain your personal data only for as long as is necessary, after which it will be securely destroyed in line with SSIP's retention policy or the specific requirements of the organisation who has shared data with us.
    • Retention periods can vary and will depend on various criteria including the purpose of processing, regulatory and legal requirements, and internal organisational need. In accordance with the GDPR, SSIP does not store personal data indefinitely; data is only stored for as long as is necessary to complete the task for which it was originally collected.
  4. How do we keep your data safe?
    • We have an information assurance framework in place which ensures that appropriate technical and organisational measures are in place to help keep your information secure and to reduce the risk of loss and theft.
    • Access to information is strictly controlled based on the role of the professional.
    • All staff with access to your data are required to undertake regular data protection training and must comply with a variety of security policies designed to keep your information secure.
    • Your personal data is not processed outside of the EU by SSIP.
  5. Your Rights
    • You have a number of rights which relate to your personal data:
    • You are entitled to request access to any personal data we hold about you and you can also request a copy.
    • Where we a relying on your consent to process your personal data you are entitled to withdraw your consent at any time.
    • You can also request that we correct any personal data we hold about you that you believe is inaccurate; request that we erase your personal data; request that we stop processing all or some of it and request that automated decisions are made by a person.
    • We are obliged to consider and respond to any such request within one calendar month.
  6. Further Information
    • If you wish to make a request or make a complaint about how we have handled your personal data please contact the Data Protection Officer
    • Email: dpo@ssip.org.uk
    • Post: SSIP, The Annexe, The Maltings, Wharf Road, Grantham, NG31 6BH
    • Telephone: 01476 542814
    • If you are not satisfied with our response or believe we are not processing your personal data in accordance with the law you can complain to the Information Commissioner’s Office (ICO) ico.org.uk
  7. Implementation of Policy
    • This Policy shall be deemed effective as of 25/05/2018. No part of this Policy shall have retroactive effect and shall thus apply only to matters occurring on or after this date.