CityClean flyering privacy notice

How we use your data, our policies and how you can request your personal information.

We are committed to protecting your personal information.

The council is the data controller for purposes of the Data Protection Act (2018), and The General Data Protection Regulation (EU) 2016/679 ("GDPR"), and is also registered as a data controller with the Information Commissioner’s Office (ICO).

As a data controller, we have a responsibility to make sure you know why and how your personal information is being collected. This is according to relevant data protection law.

The primary laws which govern how Brighton & Hove City Council collects and use personal information (known as data) about you are:

Why we collect your data

We collect your data to issue you with a Flyering licence.

Our legal basis for collecting your data

Personal Data Activity

Legal Basis- GDPR

UK Legislation

Apply for a Flyering licence

Art.6 (1) (e) in the exercise of official authority vested in the controller

S.3(1) Clean Neighbourhoods and Environment Act 2005


What data we collect from you

Personal data

We'll collect your:

  • full name
  • email address
  • contact telephone number

Business data

We'll collect your:

  • business name
  • business address
  • payment information

Who we share your data with

We will make your information available to those who need to know, so they can perform their council role.

We may lawfully disclose information to public sector agencies to prevent or detect fraud or other crime, or to support the national fraud initiatives and protect public funds under the Local Audit and Accountability Act 2014. 

How long we will keep your data

We will retain general information for five years as specified in Code of Practice on Records in accordance with the s46 Freedom of Information Act 2000.

How we store your data

We will store your information on electronic databases, document management systems and on paper records.

How we protect your data and keep it secure

Examples of the security measures we use are:

  • training for our staff, making them aware of how to handle information securely, and how and when to report when something goes wrong
  • we use encryption when data is being sent, meaning we scramble information so other people can’t read it without access to an unlock key
  • where possible, we will pseudonymise your data. This means we will remove your identity so the people working with your data will not know your identity

Controlling access to systems and networks allows us to stop people who are not allowed to view your personal information, from getting access to it.

Regular testing of our technology and ways of working, including keeping up to date on the latest security updates (called patches).

Transferring your data outside the United Kingdom

Your data is not processed outside of the United Kingdom.

Your rights

Check your rights in relation to your personal information.

How to get advice or make a complaint 

Data Protection Officer 

If you have a concern about how we collect or use your personal data you can contact the Council’s Data Protection Officer.  

How to make a complaint 

We aim to resolve all complaints about how we handle personal information. You also have the right to make a complaint about data protection to the Information Commissioner's Office.  

Contact them by post: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF or phone 0303 1231 113. 

You can also make a complaint or find out more information on the Commissioner's Office website

If your complaint is not about data protection, find details on how to make a complaint about a council service

Changes to this privacy notice

This privacy notice will be subject to review when there is a change.