Updated 13 April 2021
Our contact details:
Name: The Centre for Youth Impact
Address: Suite 222, 254 Pentonville Road, London, N1 9JY
1.1 The “Just One Question” tool collects data from individuals working in the youth sector to highlight the priorities, challenges, and needs of practitioners, through the COVID-19 crisis period and beyond
1.3. Unless we say otherwise in this policy, we decide the purposes and means of processing of personal data that is collected about you when you register and use the tool. We are committed to protecting and respecting your privacy in relation to the tool. We have legal obligations to do this as the ‘controller’ of your personal data under the Data Protection Act 2018 (the “Act”).
2. What personal data do we collect?
2.2. We aim to keep your personal information up-to-date, so you must promptly tell us by emailing email@example.com if you change your name or contact details.
3. Data collected on behalf of third parties
3.1. At times we may work with third party organisations that commission or request questions on the tool for the purposes of research, academic studies or to scope a potential project about youth provision.
3.2. In these cases, we set the questions on the tool based on requirements of the third party organisation and analyse the responses for that organisation. This may include setting questions based on characteristics (e.g. we may give people different questions based on their role) or we may assign the questions to different groups for the purpose of studying comparisons.
3.3. When working with these organisations, we have strict rules around how they can ask questions, and we only provide data at the aggregate level in the same way that we publish our insights. Personal data is never sold or passed to third party organisations.
4. When may we disclose your personal data?
5. How we use your personal data
5.1. We will only collect, process, use, store and share your personal data where the Act allows us to do so. Most commonly we will use your personal data in the following circumstances:
- Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights that require the protection of personal data do not override those interests
- Where we need to comply with a legal or regulatory obligation
- Where you have consented before the processing
6. Where and for how long we store your personal data
6.1. All information you provide to us is stored on shared secure UK based servers.
6.2. We use all reasonable endeavours to ensure that appropriate technical and organisational measures are in place to protect your personal data from unauthorised or unlawful processing and against accidental loss, destruction or damage.
6.3. Your personal data will be kept for as long as it is of value to the Centre for Youth Impact, and the wider research community, and for as long as may be specified by any external research funder, patent law, legislative and other regulatory requirements. Research data shall be reviewed at least every 5 years to consider its continued value to Centre for Youth Impact, and personal data anonymised or pseudonymised where possible, unless to do so would affect the integrity of the research data and/or its outcomes, or its future value.
6.4. To the extent that Personal Data arising from any research is embodied within a research report or other research outcome, it will be retained in perpetuity as part of the published materials.
6.5. If you withdraw your consent to our processing ‘sensitive personal data’ about you, we will delete sensitive personal data we hold about you, unless we can demonstrate that another legal basis applies. Sensitive personal data is data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, data concerning health or data concerning a natural person’s sex life or sexual orientation.
6.6. Please note that using the internet or mobile networks is not completely secure, so we cannot guarantee the security of your data transmitted between your device(s) and the tool. Any such transmission is at your own risk.
7. Your rights
(a) Right of access
(b) Right to rectification
(c) Right to erasure
(d) Right to request the restriction of processing concerning you
(e) Right to data portability
(f) Right to object to processing
(g) Right to ask us not to process your personal data for direct marketing purposes
(h) Right not to be subject to automated individual decision-making, including profiling.
7.3. Please note that you may exercise these rights (subject to any applicable exceptions) by emailing us at firstname.lastname@example.org.
9. Regulatory and Contact details
Our full company and registration details are set out at the beginning of this page.
For more information about data protection and the protection of personal data, please visit the Information Commissioner’s website at www.ico.org.uk.
If you have any concerns about our use of your personal information, you can make a complaint to us at email@example.com
You can also complain to the Information Commissioner’s Office if you consider there has been a breach of the Act in connection with your personal data.
Read the Annex to the Policy (opens PDF)