Privacy notice - Barnardo’s The Charity

August 2023

This Privacy Notice was last updated on 12th August 2023.

Cliciwch yma am fersiwn Gymraeg o’r Hysbysiad Preifatrwydd

Barnardo’s respects your privacy and is committed to protecting your personal data and being transparent about how we collect and use it. This Privacy Notice explains how we use the personal data that you provide, or which is provided to us by third parties.  We use cookies on our website. Please see our Cookie Notice for more information on how we use cookies.

This Privacy Notice applies to all Barnardo’s legal entities and subsidiaries known as “The Barnardo Group”, which includes:

  • Barnardo Events Limited (2270706)
  • Barnardo Services Limited (1227919)
  • Barnardo Trading Limited 886425

If you make purchases from our stores, including online stores, you can review our Retail Privacy Notice here.

This Privacy Notice is structured as follows:

1. Important information about who we are

This website is owned and operated by Barnardo’s (The Charity), who is the Data Controller. In some circumstances the local authority or agency that funds the service being delivered by Barnardo’s may also be a Data Controller with respect to the personal data we collect.

Barnardo’s is a registered charity (registered in England No. 216250, registered in Scotland No. SC037605) and a company limited by guarantee (61625 England).

The registered office is:

Barnardo’s

Tanners Lane

Barkingside

Ilford

Essex

IG6 1QG

Barnardo’s Data Protection Officer (DPO), Martine King, is responsible for answering any questions you have about this Privacy Notice. Martine may be contacted at the above address, by email: [email protected]

You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK’s supervisory authority for data protection issues (www.ico.org.uk).  We would, however, appreciate the chance to deal with any concerns you may have before you approach the ICO, so please feel free to contact us first.

We may update this Privacy Notice from time to time.  If we make significant changes, we will post a notice on our websites.

2. The personal data we collect from you, how we collect it and how we use it

a. People who use our services or provide family placement

b. People who support us

c. Visitors to our stores and website

d. Job and Volunteer applicants

e. Our current and former employees, volunteers and trustees

a. People who use our children and young people’s services and provide family placement

This section explains what information Barnardo’s collects, keeps and stores about you and/or your family if you receive one of our services, or if you provide care or supported lodgings. You may also be given information by your service regarding the personal data they keep about you and what happens to it. Further information is available in the 'Your Data Your Rights' leaflet (a service-specific information leaflet that provides you with details of the personal data Barnardo’s holds about you and how this is processed during service delivery).

What personal data do we collect?

Barnardo’s holds personal data about you which may include:     

  • Your name, address and contact details, including email address and telephone number, as well as contact preferences;
  • Date of birth, age;
  • Gender, sex, sexual orientation, sexual identity, ethnicity, religion, nationality and languages spoken;
  • Disabilities;
  • Emergency contact information;
  • School or organisation name;
  • Marketing preferences with respect to contact from corporate departments and opportunities you’d like to hear about.

We will also record information about your capability to care for children (where appropriate), your support needs and the service provided to you, including case reporting, plans and reviews, as well as your contact preferences and consents, if relevant.

For foster carers and adopters, Barnardo's is required to seek information about criminal convictions, offences and health data. This is necessary for the purposes of carrying out the appropriate checks during assessments, in line with fostering and adoption regulations.

Barnardo’s uses CCTV in some of its services to keep children, young people and staff safe. If you access one of the services where this is the case, you will be told about it.  Further information is available on Barnardo’s CCTV and Monitoring Devices Policy.

Why do we collect your personal data?

We collect your personal data in order to provide services to you, to offer opportunities that may be of value and interest to you, to ensure the safety of our staff, volunteers and children under our care, and to make sure our services meet your needs.

We process your data in accordance with our legitimate interests in providing high quality, safe and efficient services. If we have a contract with you, we will also process your data in order to deliver our services under that contract. Where relevant, we also carry out processing in order to perform tasks that are in the public interest, and if required (and where appropriate) we may also obtain your consent to process your data. Where we rely on your consent for processing, you have the right to withdraw your consent at any time. This does not affect the lawfulness of our processing before such withdrawal.

Barnardo’s Research and Evaluation team use personal data, including sensitive personal data, in their research activities, which will include evaluation of our services. Research allows us to ensure our services, programmes and campaigns support children and families as effectively as possible. We rely on our legitimate interest in providing the best possible service as our lawful basis for such research.

Who do we share your personal data with?

We share your personal data with the organisation that pays for your service or with external agencies that inspect our work, and with third party service providers. You will be given a 'Your Data Your Rights' leaflet that will provide you with more detail. We may be required to share your data with other agencies for legal reasons, a court order for example, or with other organisations if we believe that you are at risk of harm or may harm someone else.

There may be occasions when we will ask you for consent to use your data, for example to provide you with information and opportunities to have a voice or influence, to help us inform the public about our work, to help you access other services, or for the purpose of academic research. If this is the case, we will explain to you exactly what your data will be used for. You can withdraw your consent at any time, and, wherever possible, any of your data that has been used for publicity purposes will be deleted.

Sometimes Barnardo’s is required to transfer your data to the local authority that has commissioned us to provide your service, or to another organisation providing you with a service. The 'Your Data Your Rights' leaflet will give you more details about what will happen to your data.

How long do we keep your personal data?

Barnardo’s will keep your personal data for a specified period of time once we have finished working with you depending on the nature of the service and our legal obligations. The 'Your Data Your Rights' leaflet will tell you how long we keep your data and why.

b. People who support us

This section explains what information Barnardo’s collects, keeps and stores about you if you inquire about our activities, make a donation to us, support a campaign, take part in Barnardo’s lotteries or raffles, express an interest in or inform us of your intention to leave a gift in your Will, or ask a question about our services.

What personal data do we collect?

The personal data we collect may include:

  • Your name, address, email address, telephone numbers;
  • Age, date of birth;
  • Location;
  • Gender;
  • Your prior involvement with our fundraising campaigns;
  • Contact preferences and consents;
  • Gift aid status, fundraising status, reason for donating/fundraising/entering a lottery or raffle, information about events you’re taking part in and your fundraising activities, access to facilities;
  • School or organisation name;
  • Employee or NI number (for the purposes of the Winners Club Workplace Lottery);
  • Social media handles; and
  • Details of executors and beneficiaries and your family relationships.

We do not store your credit or debit card details.

We may collect sensitive data, such as health information, religious beliefs and political opinions, about our supporters where there is a clear reason for doing so, such as participation in a run, walk or similar fundraising event, or where we need to ensure we provide the appropriate facilities or support to enable you to participate in an event.

We may obtain your personal data from third party data suppliers, but only if they provide appropriate evidence that you have agreed that your personal data may be shared with other organisations. We also gather general information about the use of our websites such as pages visited and areas that are of most interest to users. For further information please see section 2c. Visitors to our stores and website.

Occasionally we obtain publicly available information, such as contact information, or we research information to help us perform due diligence checks to ensure we are not being abused by fraudsters or criminals posing as genuine donors, or to ensure that there are no conflicts of interest from potential supporters or organisations prior to our engagement. We do these checks to help protect Barnardo’s from abuse.

Why do we collect your personal data?

We use your personal data in order to:

  • Deal with your enquiries (including family history enquiries), requests and complaints;
  • Process your donations and orders made online or through our shops;
  • Administer our lotteries and raffles;
  • Provide you with information about our work activities, research, events and services;
  • Comply with our legal obligations, policies and procedures, for example claiming Gift Aid;
  • Provide and personalise our services;
  • Administer bequests in your Will;
  • Conduct our campaigns, fundraise and send marketing;
  • Tailor the advertising and marketing you see on social media and digital channels to share the most appropriate and relevant information with you;
  • Measure the effectiveness of digital marketing and advertising; and
  • Conduct market research.

We process your personal data for these purposes in accordance with our legitimate interests in conducting fundraising processing payments, promoting our charitable activities, customising our social media communications, and responding to you when you make an enquiry. We also process your data when required under law or with your consent, such as when you consent to receive marketing from us. We will never pass your personal data on to other organisations for them to use for their own marketing purposes.

We use your personal data to tailor the advertising you see on social media, and to measure its effectiveness. This may be by providing a third party platform with a list of email addresses or phone numbers which they use to target individuals with, or exclude them from seeing, our advertisements.

On occasion, we may also provide third party platforms with a list of email addresses or phone numbers to create Lookalike audiences (where we can target ads to audiences who are most like our existing audiences).  We will only include audiences in these lists if they have opted in to receive our advertising. You can change your settings on social media to stop this kind of targeting from specific or from all advertisers.

We will only email or phone you where we have your consent to deliver marketing to you. You can indicate your marketing preferences when you make a donation, take part in our lotteries or raffles, or register your interest in our work.  If you no longer wish to receive marketing communications or appeals asking for a donation to help change children’s lives, it’s quick and easy to let us know at the Supporter Care Team contact details provided at the bottom of this Privacy Notice. You may opt-out also of our marketing communications at any time by clicking the ‘unsubscribe’ link at the end of our marketing emails or sending us an "opt-out" text message following the instructions we provide you in our initial text. We will never pass your personal data on to other organisations for them to use for their own marketing purposes.

Barnardo’s has a legitimate interest in keeping lists of people who no longer wish to be contacted (known as a suppression list) to ensure that we do not unintentionally contact them in the future.  The suppression list also collects emails that bounce, are blocked, or invalid. Barnardo’s also keeps suppression lists of supporters and prospects who have requested removal from our postal mailing or marketing lists for the same reason.

We are committed to protecting the privacy of the children and young people that engage with us through our website, digital services, fundraising events, lotteries, marketing materials and communication lists. Where children and young people fundraise or take part in events for Barnardo’s, we will seek parental/guardian consent for their participation when they are under the age of 16.  Where the child is under the age of 13, we will contact a parent/guardian to seek permission to communicate with the child prior to any engagement.

Prospect Research

Barnardo's undertakes prospect research under its legitimate interest, which is the identification of, and subsequent research into, prospective major donors and influencers – individuals, trusts and companies – with a view to maximising their support for us. It involves the gathering and analysis of biographical, financial, corporate and philanthropic information from a wide variety of sources, both publicly available and those unique to Barnardo's.

The nature of data collected includes:

  • Contact Details
  • Home Address
  • Personal Email
  • Donation History
  • Professional Memberships
  • Education and Training History

Personalisation and profiling

We carry out targeted fundraising and campaign activity to ensure that we are contacting you with the most appropriate and relevant communications, for example by providing timely news about our work, and letting you know the different ways you can support us and help us to raise funds. In order to do this, we may use profiling techniques and engage with insight companies to provide us with general information about you, about your lifestyle and purchasing habits.

We may also use your personal data to understand the likelihood of you responding to a fundraising communication from us, and potentially donating. For example, we use systems such as Mosaic to create supporter categories within our database based on postcodes and we will, where appropriate, store this information on your record. We will also use broad demographic information such as statistics and analysis from third parties to better understand how our own supporter base compares to the general population. 


Who do we share your personal data with?

We may share your personal data with third parties who provide a service to us. This includes trusted partners that work with us in connection with our charitable purposes, and other entities that act as fundraisers for Barnardo’s, sell Barnardo’s products, take part in Barnardo’s lotteries or raffles (e.g. the Winners Club Workplace Lottery) or provide Barnardo’s information and marketing services. We also share your data when we need to perform due diligence checks to ensure we are not being abused by fraudsters or criminals posing as genuine donors.

How long do we keep your personal data?

We keep your personal data for as long as required to operate the service in accordance with legal requirements and tax and accounting rules. Where your information is no longer required, we will ensure it is destroyed in a secure manner. This will generally be within six years of your last donation.

c. Visitors to our stores and website

This section explains what information Barnardo’s collects, keeps and stores about you when you visit our premises, website or online stores, including the Barnardo’s eBay shop. We use cookies on our shopping site. Please see our Cookie Notice for more information on how we use cookies.
 

What personal data do we collect?

The personal data we collect may include:

  • Name
  • Address
  • email address
  • telephone numbers
  • date of birth (optional)
  • gift aid status
  • contact preferences
  • purchase history and
  • images captured through CCTV
     

Why do we collect your personal data?

We collect your data in order to receive and fulfil customer orders and to administer and enhance the websites and services. We will also use your data to provide you with an order confirmation and invoice of sale. We conduct this processing in accordance with our contractual obligations to provide goods and services to you, and in accordance with our legitimate interests in efficiently running and improving our websites and stores.

If you donate items to one of our retail outlets, and are a UK tax payer, we may ask your permission to claim Gift Aid on those items. If you sign up to Gift Aid, we will write to you when your pre-loved items sell to advise how much we were able to claim in Gift Aid against the value of goods sold.

If you use your credit or debit card to buy something, we will ensure this is done securely. We do not store your credit or debit card details following the completion of your transaction. All card details are securely destroyed once the payment or donation has been processed. Only authorised staff trained to process payments can see your card details.
 

Barnardo’s uses CCTV in some of its retail outlets in accordance with its legitimate interests in keeping staff, volunteers and customers safe. Further information is available in Barnardo’s CCTV and Monitoring Devices Policy.

We may use your contact details to send you marketing where we have your consent, or are otherwise permitted to do so by applicable law. You can indicate your marketing preferences when you make a purchase. If you no longer wish to receive marketing communications it’s quick and easy to let us know at the Supporter Care Team contact details provided at the end of this Privacy Notice.

You may opt-out also of our marketing communications at any time by clicking the ‘unsubscribe’ link at the end of our marketing emails or sending us an "opt-out" text message following the instructions we provide you in our initial text. We will never pass your personal data on to other organisations for them to use for their own marketing purposes.

Who do we share your personal data with?

In some instances when you purchase goods from Barnardo’s online retail store or eBay shop, the fulfilment of your order may be undertaken by a third party. In these instances, we will provide them with the details of the goods ordered and your name and address for dispatch purposes. We also share your contact details with our suppliers, warehouse and logistics providers to complete your order. 

Your financial and/or personal data may be passed to third-party organisations in order to process your transactions with Barnardo’s, such as credit card companies, banks and the companies that handle shipping on our behalf. We will also share your data with HMRC if you give us permission to claim Gift Aid on your donation.

How long do we keep your personal data?

We keep your personal data for up to six years, except financial data which we are required to retain for seven years. Where your information is no longer required, we will ensure it is destroyed in a secure manner.

d. Job and Volunteer applicants


This section explains what information Barnardo’s collects, keeps and stores about you when you apply for a role with us.

What personal data do we collect?

We will collect a range of information about you, including:

  • Your name, address and contact details, such as email address and telephone number;
  • Your contact preferences;
  • Date of birth, age, gender, nationality, residency status, criminal convictions, outstanding disciplinary proceedings and languages spoken;
  • Referee information;
  • Details of your qualifications, skills, experience, education and employment history;
  • Information about your current salary;
  • Whether or not you have a disability for which we need to make reasonable adjustments during the recruitment process;
  • Information about your entitlement to work/volunteer in the UK; and
  • Equal opportunities monitoring information, including information about your ethnic origin, sexual orientation, health, and religion or belief. We will only collect this sensitive information with your explicit consent, which can be withdrawn at any time.
     

We collect this data in a variety of ways. For example, you may have filled in an application form, submitted a CV or resume, provided your passport details or other identification documents, or we may have collected it through interviews or other forms of assessment, like online tests.

We may also collect information about you from third parties, such as references supplied by former employers. For job applicants, Barnardo’s will only seek information about you from third parties once we have made you an offer of employment. The exception is for roles based in schools, which require us to obtain references prior to interview. In all cases the application process will make clear at what point we will be contacting third parties. For volunteer applicants, Barnardo’s will seek information from third parties during the volunteer recruitment process. 

Why do we collect your personal data?

We process your personal data in order to administer your job or volunteer application and to monitor recruitment statistics. In some cases, we need to process your data to ensure we are complying with our legal obligations, e.g. checking an individual’s right to work in the UK.

We have a legitimate interest in processing your personal data in order to manage our recruitment process, assess and confirm your suitability for the position and decide who to offer a role to. We may also need to process data from job and volunteer applicants in accordance with our legitimate interest in responding to, and defending against, legal claims.

We process health information if we need to make a reasonable adjustment to the recruitment process for applicants who have a disability.  This is to carry out our obligations and exercise specific rights in relation to employment.

For some roles Barnardo’s is obliged to seek information about criminal convictions and offences.  This is necessary to carry out our obligations and exercise specific rights in relation to employment and volunteering.

  • when applicants are asked to confirm they have the right to work in the UK;
  • when applicants confirm that they are not barred from undertaking roles working within regulated activity; and
  • when confirming that the applicant has a clean and valid driving licence where driving is an essential requirement for the role.
     

If an applicant is unable to fulfil these requirements, they will not be able to progress any further with their application. Should an applicant wish to challenge any automated decision within the recruitment process they should contact the recruitment team via email at [email protected] or volunteer team at [email protected].

Who do we share your personal data with?
 

As part of the recruitment process, we may need to share your data with third parties in order to conduct any necessary background checks and vetting processes, such as contacting previous employers/referees to obtain a reference, and/or the Disclosure and Barring Service to conduct criminal record checks. As part of the recruitment process, we will make clear to you which checks will be required and at what stage of the process.

How long do we keep your personal data?

Personal data about unsuccessful candidates will be held for one year after the recruitment exercise has been completed. The exception to this is in Northern Ireland, where we have a legal obligation to retain the data for Fair Employment reporting purposes for three years. Interview notes for all unsuccessful job applicants are destroyed after six months. Unsuccessful volunteer applicants are anonymised on Barnardo’s volunteer management system after one year.  We retain de-personalised statistical information about applicants to help inform our recruitment activities, but no individuals are identifiable from that data.

If you set up an account on our online employment or volunteer recruitment systems, we will hold your data on file until you delete your account, when your data will be deleted and destroyed. If your  application is successful, personal data gathered during the recruitment process will be transferred to your personnel file and will be retained in accordance with our retention policy. If your volunteer application is successful, personal data gathered during the recruitment process will be held on your volunteer file on our volunteer management system.

e. Our current and former employees, volunteers and trustees

This section explains how Barnardo’s collects and processes personal data relating to its staff and volunteers in order to manage the working relationship with you.

What personal data do we collect?

Barnardo’s collects and processes a range of information about you that is appropriate to the role you perform with us. This will vary depending on whether you are an employed member of staff, casual worker (‘As and When’), volunteer, contractor, agency worker or student, and may include:

  • Your name, address and contact details, including email address and telephone number, as well as contact preferences;
  • Date of birth, age;
  • Gender, sex, sexual orientation, ethnicity, religion, nationality, residency status, criminal convictions and languages spoken
  • Location;
  • Your image if you work in an office, service or store which has CCTV;
  • The terms and conditions relating to the work you are doing for Barnardo’s;
  • Details of your qualifications, skills, experience and employment history, including start and end dates with previous employers and with us;
  • Information about your salary, including entitlement to benefits such as pensions or death in service insurance cover;
  • Details of your bank account and national insurance number;
  • Information about your marital status, next of kin, dependents and emergency contacts;
  • Information about your nationality and entitlement to work in the UK;
  • Information about your criminal record;
  • Relevant information if you drive a fleet vehicle, your own vehicle for business purposes or if we hire a car for you;
  • A record of your entry and exit to Barnardo’s premises and work locations where permits and sign-in procedures exist for security and health and safety reasons;
  • Details of your schedule (days of work and working/volunteering hours) and attendance at work/volunteering;
  • Details of periods of leave taken by you, including holiday, sickness absence, family leave and extended leave, and the reasons for the leave;
  • Details of any staff disciplinary or grievance procedures, or volunteer problem solving procedures, in which you have been involved, including any warnings issued to you and related correspondence;
  • Assessments of your performance, including appraisals, performance reviews and ratings, training you have participated in, performance improvement plans and related correspondence;
  • Information about medical or health conditions, including whether or not you have a disability for which the organisation needs to make reasonable adjustments; and
  • Equal opportunities monitoring information, including information about your ethnic origin, sexual orientation, health and religion or belief.

We collect your information in a variety of ways. For example:

  • From an application form, or CV or resume;
  • From your passport or other identity documents;
  • From forms completed at the start or during your employment or volunteering opportunities with us;
  • From correspondence with you; or
  • Through interviews, meetings or other assessments.

We may also collect information about you from third parties, such as recruitment agencies, references supplied by former employers, and information from criminal records checks as permitted by law.

Why do we collect your personal data?

Barnardo’s needs to process your data in order to enter into a working or volunteering relationship with you and to meet our contractual obligations under any agreement with you. For example, if you are an employee, we need to process your data to provide you with an employment contract, to pay you in accordance with that contract and to administer any benefits. 

In some cases, Barnardo’s needs to process data to ensure that we are complying with our legal obligations. For example, it is required to check a worker’s right to work or volunteer in the UK, to deduct tax, to comply with health and safety laws and to enable employees to take periods of leave to which they are entitled. For certain positions, it’s necessary to carry out criminal records checks to ensure that individuals are permitted to carry out the role in question.

In other cases, Barnardo’s has a legitimate interest in processing personal data before, during and after the end of the working relationship. Processing staff and volunteer data allows the organisation to:

  • Run recruitment and talent management processes;
  • Maintain accurate and up-to-date records and contact details (including details of who to contact in the event of an emergency), and records of contractual and statutory rights;
  • Operate and keep a record of disciplinary, grievance or problem solving processes, to ensure acceptable conduct within the workplace;
  • Operate and keep a record of performance and related processes and workforce management processes;
  • Operate and keep a record of absence and absence management procedures, to allow effective workforce management and ensure that employees are receiving the pay and other benefits to which they are entitled;
  • Obtain occupational health advice, to ensure that it complies with duties in relation to individuals with disabilities, meet its obligations under health and safety law, and ensure that workers are receiving the sick pay or other benefits to which they are entitled;
  • Operate and keep a record of other types of leave (including maternity, paternity, adoption, parental and shared parental leave), to allow effective workforce management, to ensure that Barnardo’s complies with duties in relation to leave entitlement, and to ensure that workers are receiving pay or other benefits to which they are entitled;
  • Ensure effective general HR, volunteering and business administration;
  • Provide references on request for current or former employees and volunteers;
  • Respond to and defend against legal claims; and
  • Maintain and promote equality, diversity and inclusion in the workplace.

Barnardo’s uses CCTV in some of its retail outlets.  The purposes for which we use CCTV include:  

  • Monitor staff and volunteer compliance with our policies and procedures;
  • Improve the security of our premises and property;
  • Aid in preventing, detecting or prosecuting criminal acts; and
  • Improve the personal safety of staff, volunteers and customers and to act as a deterrent against crime.

Some special categories of personal data, such as information about health or medical conditions, are processed to carry out employment law obligations (such as those in relation to employees with disabilities and for health and safety purposes). Information about trade union membership is processed to allow Barnardo’s to operate check-off for union subscriptions (where this is processed through payroll).

Where we process other special categories of personal data, such as information about ethnic origin, sexual orientation, health or religion or belief, this is done with your explicit consent or where it is in the public interest to do so, such as to ensure meaningful equal opportunity or diversity monitoring.

Who do we share your personal data with?

Barnardo’s shares your data with third parties in order to obtain pre-employment or volunteer references from other employers and, if applicable to your role, to obtain necessary criminal records checks from the Disclosure and Barring Service, Disclosure Scotland and AccessNI. Barnardo’s may also share your data with third parties in the context of TUPE transfers. In those circumstances the data will be subject to confidentiality arrangements. The services we provide to children and young people are subject to external regulation, so if you work in a service your personal data will be shared with inspectors, and commissioned service data may be shared with the commissioner.

Barnardo’s also shares your data with third parties that process data on our behalf, in connection with payroll, the provision of benefits, the provision of occupational health services, our volunteer management system and the off-site archiving of personal data once you have left Barnardo’s employment.
 

How long do we keep your personal data?

If you are an employee or volunteer, we will hold your personal data for six years after the end of your working relationship with us, unless you work in children’s services. In this case due to the nature of our work and in order to meet our safeguarding commitments, we may hold some of your data until your 75th birthday depending on your role.

3. Sharing your data and transfers to other countries

In addition to the third parties described in each relevant section above, we may share your personal data:

  • With members of our group, which means the registered charity, its holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006;
  • With business partners, suppliers and sub-contractors, including:
    • Providers of our online shops and fundraising pages, advocacy, email marketing, and events;
    • Our Customer Relationship Management systems;
    • Archive and storage systems;
    • Commissioners, printers, fulfilment houses, photographers, videographers, creative designers, creative agencies, and online survey providers;
    • Insurers, solicitors, brokers, loss adjusters, managing agents and landlords; and
    • Analytics and search engine providers that assist us in the improvement and optimisation of our site;
  • Where we are under a duty to disclose or share your personal information in order to comply with any legal obligations, or in order to enforce or apply our Terms of Use and other agreements, or to protect the rights, property, or safety of Barnardo’s, our donors, beneficiaries or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction;
  • With a prospective seller or buyer of our business or assets in the event we sell or buy any such business or assets, including where Barnardo’s or substantially all of its assets are acquired by a third party, in which case personal data will be one of the transferred assets;
  • Where required to do so by law, or where the disclosure is ‘necessary’ for purposes of national security, taxation and criminal investigation;
  • For employees, with payroll agencies, HMRC, pension, insurance companies and statutory bodies; and
  • Where we have your written consent.

The data that we collect from you may be transferred to, and stored in, a location outside of the United Kingdom (UK). Some of our partners run their operations outside of the UK and these countries may not provide the same standard of data protection as the UK. Your data may also be processed by staff operating in these locations who work for us or for our service providers. This includes staff engaged in, among other things, the hosting of the site and the provision of support services. In these instances, we will take the necessary steps to make sure appropriate protections are in place (in accordance with UK Data Protection Law) and that information is safeguarded. These safeguards include ensuring the Barnardo’s and the relevant recipient enter into Standard Contractual Clauses. If you would like to receive a copy of these safeguards, please contact us as indicated below (see Section 5).

Third Party Websites

Our websites may contain links to third party websites. This notice only applies to this site so if you follow a link to a third-party site, please make sure you read the privacy policy on that site. We do not accept any responsibility for third party sites.

 4. How do we keep your data safe?

We take the security of your personal data very seriously. We have internal policies, controls and security measures in place to ensure that your data is not lost, accidentally destroyed, misused or disclosed, and is not accessed except by our employees or volunteers in the proper performance of their duties.

We work hard to make sure that our security procedures do the job they are designed to do and any communications between you and our websites are protected by encryption (this means that communications are turned into codes that only Barnardo’s websites can understand, which stops unauthorised people seeing them). We work closely with industry leading technical partners to make sure that all your personal data, including payment data, is safe and secure.

Please be aware that any personal data you choose to post on the public areas of our websites can be read, collected, or used by other users. We are not responsible for the personal data you choose to make public. In addition, we are not responsible for the content you publicly post on the site that can be found via web-based search engines.

Where we have given you (or where you have chosen) a password which enables you to access certain parts of the site, you are responsible for keeping this password confidential. We ask you not to share that password with anyone.

5. Your legal rights

You have the following rights in relation to your personal data:

  • The right to be informed about the data we hold and share about you. This is described to you through this Privacy Notice and in the service-specific information leaflet we provide to you if you are a service user, or through your line manager if you are a member of staff or a volunteer.
  • The right to access your personal data. By making a subject access request you can find out what personal data we hold about you, why we hold it and who we disclose it to. You can make a subject access request to us in writing, via email, or by calling your point of contact in the organisation or our Supporter Care Team.  We may require you to provide proof of your identity – you can download a standard form from this website to help make the process quicker and easier.
  • The right to edit and update your personal data. Please keep us informed if your personal data changes during the duration of your relationship with us.
  • In certain cases, the right to request to have your personal data deleted.
  • In certain cases, the right to restrict processing of your personal data.
  • The right to data portability, i.e. to receive a copy of the personal data you have provided to us in a way that is accessible and machine-readable, for example as a csv file, and to request the transfer of this data to another organisation where technically feasible.
  • The right to object to our processing, including automated decision-making and profiling.

If you wish to exercise your rights, please contact our DPO at the contact details provided in Section 1, providing as much information as possible about the nature of your contact with us to help us locate your records. Any changes you have requested may take 30 days before they take effect. Once we have received your request, and verified your identity if necessary, we will respond within one month, unless a longer period is permitted by applicable law, such as where the request in question is complex.

You can object to our use of your personal data for marketing at any time by contacting the Supporter Care Team. Please address requests to:

Supporter Care Team

Telephone: 0800 008 7005 

Email: [email protected]