Check out the latest information and advice on coronavirus (COVID-19).
Derby City Council is the local government unitary authority for Derby City. Our address is The Council House, Corporation Street, Derby, DE1 2FS. You can contact our Data Protection Officer on 01332 640763 or by email at email@example.com.
We collect information from you when you visit www.derby.gov.uk; also when you contact us in writing, speak to us on the phone, by email or any other type of electronic communication, or talk to us face to face.
We collect different categories of information about you, depending on the service you want from us and/or the reason why we need to process information relating to you. This could be personal information (for example your photo, name and address), or other more sensitive data that we would only collect and use in very particular circumstances that are set out in law.
If you visit or work at any of Council owned premises you may be asked to sign in. This information is required to maintain building security and to provide information on how many persons are present in the building if there was an emergency.
Information in the visitor and staff system(s) may be shared with the police or emergency services.
We will only collect personal information we need to provide you with the relevant information, services and support. The personal data we will collect includes
We will use this data to:
In accordance with our legitimate interests we may contact you to:
Personal data is provided to FM upon needing access to the Council House to work. Examples of Companies whose staff work from the Council House include DCC employees themselves, Councillors, Police, contractors, NHS, Derby Homes, Healthwatch and the DWP.
We may receive personal information about you from the police or other investigatory bodies for the purposes of assisting them in the prevention and detection of crime and for the purposes of the apprehension and prosecution of offenders.
In accordance with the Council’s, public task health & safety obligations, legal obligations, legitimate interests and Contractual obligations, we may use your information to:
Some special category data is available on sight, and therefore is already in the public domain. As such the primary justification for processing this information is; personal data which are manifestly made public by the data subject, in accordance in Article 9 (e).
This privacy notice, should not be considered in isolation, please also refer to following privacy notices for further information:
Coronavirus has been added as a notifiable disease under the Health Protection (Notification) Regulations 2010. The Council have a legal duty to process and share personal information in accordance with the Coronavirus Act 2020. Any such processing will be done in the public interest to promote health and wellbeing.
The Council have a duty to notify Public Health England and the local authority where the individual resides (if different), where there are suspected Coronavirus cases. In this instance, the Council will disclose the information under Article 9(2)(j) of GDPR (processing is necessary for reasons of public interest in the area of public health, such as protecting against serious cross-border threats to health), and confidential information can be lawfully disclosed in the public interest, without consent, where the benefits to an individual or to society outweigh both the individuals and the public interest in keeping the information confidential.
The Council may contact staff, service users, residents and patients with messages relating to Coronavirus by text, phone, letter or e-mail. This contact is not direct marketing; therefore we do not need your Consent before contacting you. There is more information available on the national Information Commissioners Office approach to the current epidemic here: https://ico.org.uk/
Anonymised and pseudonymised data may be used for research and statistical purposes. Any data collected may be used for research and statistical purposes that are relevant and compatible with the purpose that the data was collected for.
The Facilities Management team have access to the data which is held on a password protected computers.
We may share your information with the following third parties for the reasons detailed;
We may share your information with the following third parties for the reasons detailed above;
We will not sell or rent your information to third parties. We will not share your information with third parties for marketing purposes.
Your information will only be shared for one or more of the purposes stated above and for no other purpose.
We keep and dispose of all records in line with our record retention schedule. We will comply with Data Protection legislation.
We are strongly committed to data security and will take reasonable and appropriate steps to protect your personal information from unauthorised access, loss, misuse, alteration or corruption. We have put in place physical, electronic, and managerial procedures to safeguard the information you provide to us. However, we cannot guarantee the security of any information you transmit to us. We recommend that you take every precaution to protect your personal information.
We want to ensure any information we hold is accurate. You can help us by promptly informing us of any changes to the information we hold about you.
The Council House access control software is programmed to purge access cards for the Council House ten days after expiry.
Cookies are small text files which identify your computer to our servers. They are used to improve the user experience. View what cookies we use and how you can manage them.
If you would like to make a complaint regarding the use of your personal data you can contact our Data Protection Officer;
For independent advice about data protection, privacy and data sharing issues, you can contact the Information Commissioner's Office (ICO):