Data Protection Policy

The Animal Focused Alliance Logo

Data Protection Policy

Animal Focused Alliance is committed to protecting the privacy and security of personal data in compliance with the General Data Protection Regulation (GDPR) and relevant UK data protection legislation. This policy outlines our procedures for collecting, using, storing, and disposing of personal data to ensure the rights and privacy of individuals are upheld. 

This policy applies to all staff, contractors, learners and stakeholders of Animal Focused training courses, qualifications and canine intervention services. It covers all personal data processed by Animal Focused Alliance, including electronic and paper records. 

Data Collection and Use

We collect and process personal data based on one or more of the following lawful bases: 

  • Consent: The individual has given clear consent for us to process their personal data for a specific purpose.

  • Contract: The processing is necessary for a contract we have with the individual, or because they have asked us to take specific steps before entering into a contract.

  • Legal and Contractual Obligation: The processing is necessary for us to comply with the law or requirements of an awarding body. 

Animal Focused Alliance may collect and store the following types of personal data: 

  • Personal identification information (e.g., name, address, email, phone number)

  • Business related information (e.g., business name and address, legal entity, website and social media handles) 

Data Protection Principles

Animal Focused adheres to the following data protection principles as outlined in the data protection regulations: 

  • Lawfulness, Fairness, and Transparency: Personal data shall be processed lawfully, fairly, and in a transparent manner. 

  • Purpose Limitation: Personal data shall be collected for specified, explicit, and legitimate purposes and not further processed in a manner incompatible with those purposes.

  • Data Minimisation: Personal data shall be adequate, relevant, and limited to what is necessary in relation to the purposes for which it is processed. 

  • Accuracy: Personal data shall be accurate and, where necessary, kept up to date. 

  • Storage Limitation: Personal data shall be kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data is processed. 

  • Integrity and Confidentiality: Personal data shall be processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction, or damage. 

Data Subject Rights

Individuals have the following rights regarding their personal data: 

  • Right to be Informed: Individuals have the right to be informed about the collection and use of their personal data. 

  • Right of Access: Individuals have the right to access their personal data and supplementary information.

  • Right to Rectification: Individuals have the right to have inaccurate personal data rectified or completed if it is incomplete. 

  • Right to Erasure: Individuals have the right to have their personal data erased in certain circumstances. 

  • Right to Restrict Processing: Individuals have the right to request the restriction or suppression of their personal data in certain circumstances. 

  • Right to Data Portability: Individuals have the right to obtain and reuse their personal data for their own purposes across different services. 

  • Right to Object: Individuals have the right to object to the processing of their personal data in certain circumstances. 

  • Rights Related to Automated Decision-Making and Profiling: Individuals have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning them or similarly significantly affects them. 

Data Security

Animal Focused implements appropriate technical and organisational measures to ensure the security of personal data. These measures include: 

  • Access controls to restrict who can access personal data. 

  • Encryption of personal data where appropriate. 

  • Regular security assessments and audits. 

  • Training and awareness programs for staff on data protection principles and practices. 

Data Breach Response

In the event of a data breach, Animal Focused will follow our data breach response plan, which includes: 

  • Identifying and containing the breach. 

  • Assessing the risk and impact of the breach. 

  • Notifying affected individuals and the Information Commissioner's Office (ICO) if required by law. 

  • Taking steps to prevent future breaches. 

Data Retention and Disposal

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law. When personal data is no longer needed, we will securely dispose of it through appropriate methods such as shredding paper records or securely deleting electronic records. 

Review and Updates

This Data Protection Policy will be reviewed regularly and updated as necessary to ensure compliance with applicable data protection laws and regulations. Any changes to the policy will be communicated to all staff, participants, and stakeholders. 

Contact Information

For any questions or concerns about this Data Protection Policy or the handling of personal data, please contact: 

Vicky Skinner (Owner) 
Vicky@animalfocused.co.uk