Data Protection Act
We are conscious of our responsibilities as a “data controller” under the Data Protection Act 1998 and we shall endeavour to ensure that the personal information we obtain and use will always be held, used, transferred and otherwise processed in accordance with that Act and all other applicable data protection laws and regulations.
What personal information do we collect?
Personal information is information that can be used to identify you. It can include your name, date of birth, email address, postal address, telephone number, fax number and credit/debit card details. We collect personal information when you ask about our activities, register with us (for example, registering on a discussion board), order products and services (such as publications and email newsletters), or otherwise give us personal information. We do not collect your debit/credit card details.
By submitting personal data manually or in electronic form to this website, or by using this site, you give your consent that all personal data you submit may be processed in the manner and for the purposes described below.
If you do nothing other than read pages or download information while using this web site, we will collect information about your visit. This information will not personally identify you, it relates to (i) the Internet domain and IP address from which you access the web site (ii) the type of browser and operating system you use (iii) the date and time of your visit, (iv) the pages you visit), (v) demographic and interest information from Google and (vi) the address of the website from which you linked to us (if applicable).
Why do we collect personal information?
We collect personal information to make each visit more rewarding, and to provide us with information to help improve our service and the information available to users.
How do we use your information?
We will use your personal information to provide you with the services or information you have requested, for administration purposes and to further our charitable aims, including for fundraising activities. We may need to share your information with our service providers, associated organisations and agents for these purposes.
The data we collect is used in aggregate (and therefore anonymously) to monitor the use of our website and to research our users' behaviour, demographics and interests. This allows us to gain a better understanding of how our users navigate and use the website and therefore improve our service to you. By using the demographic and interest reports, we are able to tailor sections of the website for the people who use it.
Imperial College Healthcare Charity is responsible for collecting your personal information. Any information we collect is stored and processed in the UK. Your personal information is not shared with third parties or used in any other way (other than described in this policy or as required by law) unless you agree.
We reserve the right to share your personal information if we are legally obliged to and to enable us to apply our terms and conditions and other agreements. This includes exchanging information with other organisations for fraud and credit risk reduction and for police investigations.
We use a secure server for any page which requires you to enter personal information. Unfortunately, no data transmission over the internet is 100% secure. As a result, while we use our best endeavours to protect your personal information, contacting Imperial College Healthcare Charity cannot guarantee the security of any information you transmit to us and you do so at your own risk. When we collect your personal information we use strict procedures and security features to prevent unauthorised access.
We use Sage Pay to collect/process transaction information. Please view Sage Pay’s security policy at http://www.sagepay.com/security_policy NDNA are responsible for the transaction. Credit card details are entered on a secured page and they are transferred using SSL. We accept 3D Secure transactions.