The council is the data controller for purposes of the Data Protection Act (2018) and EU General Data Protection Regulation as of May 2018 and is registered as a data controller with the Information Commissioner’s Office (ICO)
Brighton & Hove City Council are committed to protecting your personal information. As a data controller we have a responsibility to make sure you know why and how your personal information is being collected in accordance with relevant data protection law.
Purposes and lawful basis of processing
We are collecting your data for the purpose of investigating health and safety matters across the City of Brighton & Hove. Information gathered will be used to support the council’s decision as to whether further action is necessary, including enforcement action.
Our lawful basis for processing personal data is under legal obligation, specifically working the Health and Safety at Work etc. Act 1974.
Occasionally we may also process special category data, which would be done so under substantial public interest, specifically the Data Protection Act (2018) Schedule 1, Part 2, Paragraph 6 ‘Statutory etc. and government purposes’.
Who we will share your data with
Your data may be shared internally with Legal Services and other Regulatory Service Teams. We may also share your information externally with other relevant public bodies such as Health and Safety Executive, East Sussex Fire and Rescue, Police and the courts. Outside of these bodies we will not share information without your explicit consent.
How long we will hold your data (retention)
We will hold your data for six years from closed of case.
Transferring data outside the European Economic Area
Your information is not processed outside of the European Economic Area.
Your information rights
Under GDPR you have certain rights concerning your information.
Learn more about your information rights
How to get advice or make a complaint
Data protection contact information
If you’d like to discuss your data protection rights, you can contact the Data Protection Team. Only use these contact details if you have questions about data protection and not for questions about other services.
We also have a Data Protection Officer. Visit our data protection officer page to find their contact details.
Please contact the Data Protection Team first if you have any concerns.
You can then contact the Information Commissioner’s Office (ICO). The ICO is the national regulator with responsibility for ensuring compliance with data protection.