The Council is the data controller for purposes of the Data Protection Act (2018) and the UK General Data Protection Regulation (UK GDPR) and is registered as a data controller with the Information Commissioner’s Office (ICO)
Brighton & Hove City council are committed to protecting your personal information. As a data controller we have a responsibility to make sure you know why and how your personal information is being collected in accordance with relevant data protection law.
Purposes and lawful basis of processing
We are collecting your data for the purpose of registering for access to the Holiday Activities and Food Programme (HAF), to verify eligibility and to write reports required by the Department of Education in connection with the programme and its funding.
We have a lawful basis for processing under Performance of a Task carried out in the Public Interest.
We have a lawful basis for processing Special Category Data under Substantial Public Interest (Data Protection Act 2018 Schedule 1, Part 2, paragraph 6 & 18)
Who we will share your data with
Your data may be shared with neighbouring Local Authorities HAF teams for verification & funding purposes - for example, if your child goes to school in a different LA.
Reports on attendance are required by the Department for Education for funding purposes, but the data used for these will be anonymised.
How long we will hold your data (retention)
We will not keep your data for longer than is necessary, subject to any legal obligations we have to retain the data
How your data will be stored
It will be stored securely on BHCC One Drive Servers and only those from the HAF team will have access.
Transferring data outside the European Economic Area
Your information is not processed outside of the European Economic Area.
Your information rights
How to get advice or make a complaint
Data protection contact information
If you’d like to discuss your data protection rights, you can contact the Data Protection Team. Only use these contact details if you have questions about data protection and not for questions about other services.
We also have a Data Protection Officer. Visit our data protection officer page to find their contact details.
Please contact the Data Protection Team first if you have any concerns.
You can then contact the Information Commissioner’s Office (ICO). The ICO is the national regulator with responsibility for ensuring compliance with data protection.