Who we are
The Unity Partnership Limited is committed to ensuring that we are transparent about the ways in which we use your personal information and that we have the right controls in place to ensure it is used responsibly and is kept safe from inappropriate access, theft or misuse.
We provide a broad range of services as well as undertaking regulatory and administrative activities.
- Welfare Rights
- Revenues – (including Accounts Payable and Receivable)
- HR transactional
- Access Oldham
- Contact Centre
What this privacy notice is for
This notice explains how we use your personal information and tells you about your privacy rights and how the law protects you.
Each of our key service areas provide additional information about how we collect and use your information. These notices explain:
- why we need your information
- categories of personal data
- who else we obtain or receive it from
- the legal basis for collection and the choices you have
- who we share it with and why
- whether decisions which legally affect you are made solely using machine-based technologies
- how long we keep your information
- how to exercise your rights
Using our website
To find out more about our website terms and conditions please visit our legal information page.
Update our privacy notices
We may update or revise our privacy notices at any time so please refer to the version published on our website for the most up to date details.
What is personal information
Personal information can be anything that identifies and relates to a living person. This can include information that when linked with other information, allows a person to be uniquely identified. For example, this could be your name and contact details.
The law treats some types of personal information as ‘special’ because the information requires more protection due to its sensitivity.
This information consists of:
- Racial or ethnic origin
- Sexuality and sexual life
- Religious or philosophical beliefs
- Trade union membership
- Political opinions
- Genetic and bio-metric data
- Physical or mental health
- Criminal convictions and offences
What we use your information for
Your personal information may be collected and used for one or more of The Unity Partnership’s services, regulatory functions and/or administrative activities depending on your relation with The Unity Partnership and nature of your contact with us.
Generally, we may need to use some information about you:
- in delivering services and support by ensuring other statutory or voluntary agencies with whom The Unity Partnership is working, are able to deliver ‘joined up’ services to you;
- in planning future services;
- for archiving, research, or statistical purposes, including research and evaluation undertaken by The Unity Partnership or in combination with local authorities to inform future service planning where the use of fully anonymised information would frustrate the purpose of the research;
- collecting taxes, administering grants and welfare benefits;
- In carrying out our regulatory activities, such as enforcement, planning, safeguarding, licencing etc.;
- for managing any marketing choices or preferences you may have expressed;
- keep track of spending on services;
- for managing and checking the quality of our services;
- to improve the general experience of our customers and visitors to our website;
- to help investigate any concerns or complaints you have about our services and for answering enquiries under access legislation;
- if you apply for a job or become employed by us;
- for ensuring the health and safety of our staff;
- in the event of civil disasters and or emergencies.
Legal basis for processing
We may collect personal information where:
- you, or your legal representative, have given consent
- you have entered into a contract with us
- it is required by law (such as where this is mandated by statute or under a court order)
- it is necessary to perform statutory functions (including law enforcement functions)
- it is necessary for employment-related purposes
- it is necessary to deliver health or social care services
- it is necessary to protect you or others from harm (e.g. in an emergency or civil disaster)
- it is necessary to protect public health
- it is necessary for exercising or defending legal rights
- you have made your information publicly available
- it is necessary for archiving, research, or statistical purposes
- it is necessary in the substantial public interest for wider societal benefits and is authorised by law
- it is necessary for fraud prevention and the protection of public funds
it is in our legitimate interests (or those of a third party) provided your interests and fundamental rights do not override this.
Your personal information may also be shared with other organisations, such as those who assist us in providing services and those who perform technical operations such as data storage and hosting on our behalf.
These practical arrangements and the laws governing the sharing and disclosure of personal information often differ from one service to another.
For this reason, each of our key service areas provide additional information about how we collect and use your information.
How long we keep your data
We will only keep your personal information for as long as the law specifies or where the law does not specify this, for the length of time determined by our business requirements.
Our key service areas provide additional information about how long your information may be retained.
How we keep your information safe
We are committed to ensuring your personal information is safe and protected from accidental loss or alteration, inappropriate access, misuse or theft.
As well as technical, physical and organisational controls, we recognise that a well-trained, informed and security alert workforce minimises privacy risks from human error and/or threats from malicious actors.
We require our service providers to implement appropriate industry standard security measures and only permit them to process your personal information for specified purposes in accordance with our contractual instructions.
Data Transfers beyond European Economic Area
We will only send our data outside the European Economic Area (‘EEA’):
- with your consent, or
- to comply with a lawful and legitimate request, or
- if we use service providers or contractors in non EEA countries.
If we do transfer your information beyond the EEA, we will make sure that it is protected in the same way as if it was being used in the EEA. We will use one of these safeguards:
- Transfer it to a non EEA country with privacy laws that give the same protection as the EEA. Learn more on the European Commission Justice website: https://ec.europa.eu/info/law/law-topic/data-protection_en
- Put in place a contract with the recipient that means that they must protect it to the same standards as the EEA. More information is available on the European Commission Justice website: https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/model-contracts-transfer-personal-data-third-countries_en
- Transfer it to organisations that are part of the Privacy Shield. This is a framework that sets privacy standards for data sent between the US and EU countries. It makes sure those standards are similar to what is used within the EEA. You can find out more about the Privacy Shield on the European Commission Justice website https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/eu-us-privacy-shield_en
- If we propose to make a transfer in response to a lawful and legitimate request we will normally tell you in advance unless there are compelling reasons, such as law enforcement or, reasons of safety which justify not doing so.
If we make a decision which legally affects you by using a computerised system or programme that does not involve a human being, our service-specific privacy notices will explain this.
Find out more about how we use your information
- Customer Services
- Accounts Payable and Receivable
- HR Transactional and Advisory
What are your rights
You may exercise the rights listed below in relation to The Unity Partnership’s use of your personal information.
Some rights are absolute and others are not.
To find out more about how these rights apply in particular circumstances, please visit the Information Commissioner’s website at https://ico.org.uk/
To exercise these rights, please contact The Unity Partnership’s Data Protection Officer (DPO):
Barbara Mulvihill, Oldham Council, Civic Centre, West Street, Oldham, OL1 1UG
You may request a copy of the personal information we hold about you.
Rectification and Erasure
You may request that we rectify or delete any of your personal information if you consider it is incomplete, factually incorrect, processed unlawfully or, is unnecessary or no longer needed.
Review of automated decision making
Where we use only an automated system or programme that does not involve a human being, you have the right to request that a decision which legally affects you is reviewed by an appropriate employee of The Unity Partnership.
You may object, at any time, to your personal information being processed. This applies to processing:
- carried out in performance of our statutory functions or in the public interest, including ‘profiling’ [whether or not profiling is partly or fully automated];
- for direct marketing purposes.
Restriction of Processing
You may request restriction of processing (quarantining) of your personal information for certain reasons, such as, for example:
- if you have objected to the processing or asked us for erasure and we need time to consider your request and let you know our decision;
- you require us to retain your information for the establishment, exercise or defence of your own legal rights.
In defined circumstances [either where the processing relies on your consent or arises out of a legal contract], you may request we supply a copy of personal information that you have provided to us in a portable and machine-readable format.
Right to withdraw consent
Where the legal reason for processing your personal information is based on your consent, you have the right to withdraw your consent at any time. This will not affect the lawfulness of our processing prior to the withdrawal of your consent.
How to contact our Data Protection Officer
If you would like advice in order to exercise your rights, raise a concern or complain about the handling of your personal information by The Unity Partnership, please contact our Data Protection Officer (DPO):
Barbara Mulvihill, Oldham Council, Civic Centre, West Street, Oldham, OL1 1UG
Whether you are exercising your rights or raising a concern, you will normally need to include documents that prove your identity as well as a clear and precise description of your request/concern.
We will process requests in accordance with the legislative framework and the statutory timescales and inform you should an extension of time be necessary.
If you would like to know more about data protection or are not satisfied with the way we have answered a request from you or handled your personal information, you have the right to make a complaint to the Information Commissioner who may be contacted at: https://ico.org.uk/global/contact-us
Information Commissioner’s Office
Tel: 0303 123 1113 or 01625 545 745
Fax: 01625 524 510
You do not have to raise a complaint with us first but we would encourage you to contact our DPO so we can consider your concerns as quickly as possible.