At Bumble Beats, we respect the privacy of the children attending the sessions and the privacy of their parents or carers, as well as the privacy of our staff.
Our aim is to ensure that all those using and working at Bumble Beats can do so with confidence that their personal data is being kept secure.
Our lead person for data protection is Tracey Hutchinson. The lead person ensures that the organisation meets the requirements of the GDPR, liaises with statutory bodies when necessary, and responds to any subject access requests.
Confidentiality
Within Bumble Beats we respect confidentiality in the following ways:
Information that we keep
The items of personal data that we keep about individuals are documented with ‘Bookwhen” and subscriptions management. The ‘Bookwhen’ website is reviewed annually to ensure that any new data types are included.
Children and parents: We hold only the information necessary to provide an appropriate service for each child. This includes child registration information, medical information, parent contact information, attendance records, incident and accident records and so forth. Our lawful basis for processing this data is fulfilment of our contract with the child’s parents. Our legal condition for processing any health-related information about a child, is so that we can provide appropriate care to the child. Once a child no longer attends our organisation, we retain only the data required by statutory legislation and industry best practice, and for the prescribed periods of time. Electronic data that is no longer required is deleted and paper records are disposed of securely.
Staff: We keep information about employees in order to meet HMRC requirements, and to comply with all other areas of employment legislation. Our lawful basis for processing this data is to meet our legal obligations. Our legal condition for processing data relating to an employee’s health is to meet the obligations of employment law. We retain the data after a member of staff has left our employment for the periods required by statutory legislation and industry best practice, then it is deleted or destroyed as necessary.
Sharing information with third parties
We will only share child information with outside agencies on a need-to-know basis and with consent from parents, except in cases relating to safeguarding children, criminal activity, or if required by legally authorised bodies (e.g. Police, HMRC etc). If we decide to share information without parental consent, we will record this in the child’s file, clearly stating our reasons.
We will only share relevant information that is accurate and up to date. Our primary commitment is to the safety and well-being of the children attending our sessions.
Some limited personal information is disclosed to authorised third parties, such as ‘Bookwhen’, that we have engaged to process it, as part of the normal running of our business, for example in order to take online bookings, and to manage our payroll and accounts. Any such third parties comply with the strict data protection regulations of the GDPR.
Subject access requests
GDPR
We comply with the requirements of the General Data Protection Regulation (GDPR), regarding obtaining, storing and using personal data.
This policy was adopted by: Bumble Beats | |
Date: 01/06/2024 To be reviewed: 01/06/2025 |
© 2024 All rights reserved
Bumble Beats Peterborough