OUR PRIVACY NOTICE
Who we are
Dig & Delve takes your privacy seriously, and in accordance with the General Data Protection Regulation we commit to the following. We will never share our email lists with other companies and businesses for marketing purposes. We ensure that all personal details are stored securely. In this Privacy Notice, we provide information on when and why we collect your personal information, how we use it, the limited conditions under which we may disclose it to others and how we keep it secure.
​
Types of data we collect
Personal Information
We may ask for personal data about you and your child/ren in order to provide a childcare service to you. We must have a lawful basis for collecting this data, and there are six lawful bases. We may be processing your information under any or all of the following bases.
Consent: the individual has given clear consent for you to process their personal data for a specific purpose.
Contract: the processing is necessary for a contract you have with the individual, or because they have asked you to take specific steps before entering into a contract.
Legal obligation: the processing is necessary for you to comply with the law (not including contractual obligations).
Vital interests: the processing is necessary to protect someone’s life.
Public task: the processing is necessary for you to perform a task in the public interest or for your official functions, and the task or function has a clear basis in law.
Legitimate interests: the processing is necessary for your legitimate interests or the legitimate interests of a third party unless there is a good reason to protect the individual’s personal data which overrides those legitimate interests.
Where we require consent, we will provide a way for you to positively make a decision about the information that you make available and how this is shared.
This information will be collected by our Data Controller prior to the child/ren’s attendance at a Dig & Delve event.
The information that we will require will be:
-
Personal details – name, DOB, address
-
Contractual details including attendance registers and fees information
-
Emergency details including your contact details and records of your child’s health and care needs.
-
Any records required to support your child such as shared information from other agencies and professionals
We will store this information for a maximum of 3 years after which time we will delete it from our records, with the exception of accident reports which we are legally obliged to keep until the child is 21 years and 3 months old.
Parental Consent
Prior to children attending our events, we ask parents for consent for the following aspects:
-
Participation in our activities
-
Emergency medical treatment
-
Use of photos for marketing and publicity purposes
-
Application of creams / ointments / face-paints
Where we require consent, we will provide a way for you to positively make a decision about the information that you make available and how this is shared. You can withdraw consent at any time by contacting our Data Controller, Rowan Wynne-Jones
Google Analytics
When someone visits www.digdelve.co.uk we use a third party service, Google Analytics, to collect standard internet log information and details of visitor behaviour patterns. We do this to find out things such as the number of visitors to the various parts of the site. This information is only processed in a way which does not identify anyone. We do not make, and do not allow Google to make, any attempt to find out the identities of those visiting our website.
Mailing Lists
As part of the registration process for our newsletters, we collect personal information, (i.e. your name and email address). We use that information to tell you about upcoming events and to contact you if we need to obtain or provide additional information. We don't share email lists with other organisations and businesses.
We use a third-party provider, Wix, to deliver our newsletter. We gather statistics around email opening and clicks using industry standard technologies to help us monitor and improve our e-newsletter. For more information, please see Wix’s privacy notice . You can unsubscribe to general mailings at any time by clicking the unsubscribe link at the bottom of any of our emails or by emailing our data protection officer Rowan Wynne-Jones
Emails
We use Zoho Mail to send and receive emails. We may store completed forms containing personal information in our email accounts for up to 3 years before deleting it permanently. View Zoho's security policy, click here.
Ticketing Data
When you purchase tickets via www.digdelve.co.uk your name, address data, email and contact number will be stored in our Box Office system, Bookwhen. Please be assured that we do not share your personal details with any other company without your consent. Payments can be made through PayPal and Stripe. To view their privacy policies please follow the links.
​
How we store your information:
We store information on a computer system protected by a password. We may store paper copies of your information in a secured filing cabinet.
​
Third Parties
We will not share your data with other third parties, unless we are lawfully required to do so, ie. for Covid-19 Track and Trace, safeguarding reasons, or tax purposes.
​
Access to your personal information
You are entitled to view, amend, or delete the personal information that we hold. Email your request to our data protection officer Rowan Wynne-Jones at rowan@digdelve.co.uk, or 07187 490413
​
How you can make a complaint
We are required to inform you about how you can make a complaint about a data breach or if you think we are not processing your data appropriately. You can contact the Information Commissioners Office here: https://ico.org.uk/for-the-public/
​
Changes to this Privacy Notice
This Privacy Notice is reviewed periodically and as required. We will not explicitly inform our clients or website users of these changes. Instead, we recommend that you check this page occasionally for any policy changes.
Updated : 24/07/21