top of page

Privacy Policy

Updated: 11-08-2023

Introduction

At Chariots for Children we are committed to keeping your personal data secure and confidential.

 

We do not share personal data with another organisation for their own marketing purposes and we do not sell personal data.

 

We have written this privacy statement to inform you about why we collect and use your personal data, in what circumstances we may share your personal data with another organisation, and your individual rights with regard your personal data.

 

We are committed to being fully open and honest to you about why we collect and use your personal data.  This is the right thing to do and it will also help you understand and exercise your rights over your personal data.

For Supporters

What type of information do we collect?

We receive, collect and store any information you enter on our website or provide us in any other way. In addition, we collect the Internet protocol (IP) address used to connect your computer to the Internet; login; e-mail address; password; computer and connection information and purchase history. We may use software tools to measure and collect session information, including page response times, length of visits to certain pages, page interaction information, and methods used to browse away from the page. We also collect personally identifiable information (including name, email, password, communications); payment details (including credit card information), comments, feedback, product reviews, recommendations, and personal profile.

How we collect the information

When you conduct a transaction on our website, as part of the process, we collect personal information you give us such as your name, address and email address. Your personal information will be used for the specific reasons stated above only.

Why we collect personal information?

We collect such Non-personal and Personal Information for the following purposes:

  1. To provide and operate the Services;

  2. To provide our Users with ongoing customer assistance and technical support;

  3. To be able to contact our Visitors and Users with general or personalized service-related notices and promotional messages;

  4. To create aggregated statistical data and other aggregated and/or inferred Non-personal Information, which we or our business partners may use to provide and improve our respective services; 

  5. To comply with any applicable laws and regulations.

How do we store, use, share and disclose personal information?

Our company is hosted on the Wix.com platform. Wix.com provides us with the online platform that allows us to transact with you as the donator. Your data may be stored through Wix.com’s data storage, databases and the general Wix.com applications. They store your data on secure servers behind a firewall.  

 

All direct payment gateways offered by Wix.com and used by our company adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers. More information.

How do we communicate with you?

We may contact you to notify you regarding your account, to troubleshoot problems with your account, to resolve a dispute, to collect fees or monies owed, to poll your opinions through surveys or questionnaires, to send updates about our company, or as otherwise necessary to contact you to enforce our User Agreement, applicable national laws, and any agreement we may have with you. For these purposes we may contact you via email, telephone, text messages, and postal mail.

Procedure for subject access requests

If you would like to: access, correct, amend or delete any personal information we have about you, you are invited to contact us at info@chariotsforchildren.org or send us mail to:
6 Homer Street, Marylebone, London, W1H 4NT.

Procedure for data breach

In the event of a data breach through our website (hosted on Wix.com), upon discovery all users affected will be contacted and informed. We will to the best of our ability provide information on what the next best steps are.

Privacy Policy Updates

We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it. 

For Employees

Privacy statement for our employees  

This section includes our privacy statement to staff, volunteers, interns, apprentices and contractors (including prospective employees).

​

When do we collect your personal data  

​

You apply for a position with us or contact us in relation to volunteering for us, or fundraising on our behalf.

As part of the everyday administration and management of your contract with us. For example:
– You let us know if there is a change to your personal data.
– You apply for or notify us of leave.
– You complete your appraisal.
– You make a formal complaint or raise a concern about your work with us.

​

As part of the everyday administration of work-related activities. For example:
– You use an ICT approved or ICT provided system or technology.
– You are present (CCTV) at one of our sites or sign in at one of our buildings.
– You register to become involved in work-related activities such as a first aider, fire warden, surge roster staff or registered driver.
– You attend or complete one of our training courses.
– You make a formal complaint or raise a concern

​

​

Why do we collect and use your personal data

​

- To recruit and select employees.

- To enable payment of salary, tax, pension contributions and expenses.

- To manage your contract with us. For example, processing leave requests and maintaining appropriate levels of conduct and performance etc.

- To meet legal obligations. For example, we may process your personal data (including sensitive data such as physical or mental health) to protect your health and safety and to fulfil our equal opportunities obligations etc.

- To take appropriate action in the event that a formal complaint or concern is raised, including safeguarding.

- To run background checks in accordance with our due diligence policies and procedures.

- To plan staffing levels and necessary cover.

- To keep you informed of, and to improve our strategy, plans, activities and services. For example, we welcome and encourage your feedback, and in some cases might actively seek this.

​

Other employees might access your personal data where this is required for work purposes.  Where this is the case, the organisation relies on all employees to access and use personal data in accordance with their obligations under our data protection policy.

 

​

In what situations do we collect personal data from other sources

​

When we run a background check on employees using a third party screening and due diligence service. We might also use sources in the public domain such as Google or the Driver and Vehicle Licensing (DVLA) database for this purpose. We carry out background checks in accordance with our due diligence policies and procedures in order to protect our charitable interests such as the risk of fraud, corruption, bribery, terrorism and money laundering.

​

​

In what situations do we share personal data with other organisations  

​

With Her Majesty’s Revenues & Customs (HMRC) for taxation purposes.

With law enforcement agencies if we receive a valid legal instruction.

With third parties that we contract to administer HR activities on our behalf including payroll, pension and health/insurance cover providers.

If you are involved in an insurance claim, we might share your personal data with insurance companies / brokers.

As part of our recruitment and selection processes, we might run a background check on you. This may include sharing your personal data with employment agencies, previous employers, the Disclosure & Barring Service (DBS), the Driver and Vehicle Licensing Authority (DVLA).

We contract a limited amount of third parties to store data on our behalf. This may include your personal data. Types of third parties we use include cloud storage, website hosting and software providers.

​

We only share personal data with another organisation if we have a legal basis to do so.

In all the above situations, we will ensure that we have a written contract (or valid legal instruction) in place with the organisation that includes data protection clauses to ensure that they do not use personal data for their own marketing purposes, and have security requirements in place to protect your personal data.

​

 

What is our legal basis for collecting and using personal data  

​

Where the processing is necessary to enter into or fulfil the terms and conditions of a contract.  For example, to enable payment of your salary, tax, pension contributions and expenses.

​

Where the processing is required under the law.  For example, collecting your medical information to protect your health & safety.

​

Where the processing is in our legitimate interests.  For example, using your leave details to plan staffing levels and necessary cover. We will only rely on this legal basis if your interests and fundamental rights do not override our interest.

 

Where the processing is in your vital life interest.  For example, sharing your personal data with emergency services in the event of a medical emergency.

©2008 Chariots for Children Charity

bottom of page