The purpose of this privacy notice is to inform you, as a user of UKCTG, about what information we collect when you visit the service, how we use the information, whether the information is disclosed and the ways in which we protect users' privacy. At all times, we want you to feel secure when using the website and associated services. We are committed to respecting your privacy and how we do that is outlined in this Privacy Notice below. Below we give an overview of how we do that. The Department of Health is the Data Controller for UKCTG under the Data Protection Act 1998. We will process your data in accordance with the Data Protection Act.
We analyse information to see what is most effective about our website and associated services to help us identify ways to improve it and to make it more effective.
See our separate Cookies statement for more information on the cookies we use.
The only data stored on UKCGT will be cookie ID, IP address or device identifier information that the system collects when you access the system. Your data will be stored on the ‘UKCTG ’ website, more specifically:
Navigation data – how you move around our site and hyperlinks you click upon
address and the website you came from
It is anticipated that this information will be kept for twelve months for statistical purposes only
Analytics – Uses navigation data in services provided by the UKCTG platform
Personalisation – Uses navigation data and personal information to enable us, and third parties, to tailor the services provided to you
We will never share personal information with any third parties without your consent
Navigation data is shared with trusted third parties providing analytics
All third party contractors are required to sign up to an Agreement, which prevents them from sharing your data with other non-authorised third parties and provides for the secure disposal of this data.
Due to the nature and function of the UKCTG we have to link to other websites to obtain the data presented. The sites that UKCTG links to are third-party sites and UKCTG does not control the way these sites use your information. If you choose to access these sites using the links provided, the operators of these sites may collect information from you that may be used by them in accordance with their privacy policies, but please be aware, these policies may differ from ours. You should read their privacy policies carefully to find out what happens to any information that is collected by these services when you use them.
We will hold the information for as long as we are providing you services and for as long as you agree to this.
As a public service, we do not share data with other organisations unless the law permits us to do so. We do not sell an individuals’ information. We will share it only with our authorised Data Processors, who must act at all times on the instructions of the Data Controller under the Data Protection Act 1998.
We will take appropriate steps to maintain the security of your data on our service. The open nature of the internet means that data may flow over networks without security measures and may be accessed and used by people other than those for whom the data is intended. Our intention is that this should not happen and we will take appropriate measures to ensure that it does not.
UKCTG is hosted on the Amazon Web Services Platform, a cloud-based software platform which provides for disaster recovery processes across its servers, which are all located within the United Kingdom. None of the data contained within UKCTG will go outside the United Kingdom. The Amazon Web Services platform is accredited to ISO 27001 security standards.
When a disc drive fails or is no longer required for use, this is securely destroyed in accordance with the NHS Code of Practice.
When an electronic file containing personal identifiable information (i.e. a complaints file) is no longer required it is securely deleted by overwriting the space several times with selected patterns, thus rendering any information unreadable.
No paper records are kept for the purpose of collecting personal confidential data
You are entitled to know whether we hold any information about you and, if we do, to have access to that information and request that it be corrected if it is inaccurate. Any such requests must be made in writing to firstname.lastname@example.org or by using the ‘Contact Us’ page’.
UKCTG seeks to meet the highest standards when collecting and processing personal information. For this reason, we take any complaints made about this very seriously and we encourage people to feedback and tell us when they feel that our collection and/or use of personal information is unfair, misleading or inappropriate. Any complaint and/or query must be made in writing to email@example.com or by using the ‘Contact Us’ page’.