The Bell Educational Trust Limited and The Bell Foundation is committed to compliance with all national UK laws in respect of personal and sensitive data, and to protecting the rights and privacy of individuals. Email messages and any files transmitted with them are strictly confidential and intended solely for the use of the individual or entity to whom they are addressed. The Bell Educational Trust Limited is registered as a Data Controller with the Information Commissioner’s Office, to access further information about our Policy, please see below.
If you are not the named addressee of an email you should not disseminate, distribute or copy it. Please notify the sender immediately by email if you have received an email by mistake and delete it from your system. Please note that any views or opinions presented in emails are solely those of the author and do not necessarily represent those of the organisation. Finally, the recipient should check this email and any attachments for the presence of viruses. We accept no liability for any damage caused by any virus transmitted by this email.
The Bell Educational Trust Limited and The Bell Foundation, Hillscross, Red Cross Lane, Cambridge, CB2 0QU, United Kingdom.
Data protection policy statement
The Management of The Bell Educational Trust Limited is committed to compliance with all national UK laws in respect of personal and sensitive data, and to protecting the rights and privacy of individuals. This includes partner organisations, programme participants, learners, staff and others in accordance with the Data Protection Act. The Bell Educational Trust is registered as a Data Controller with the Information Commissioner’s Office to process information about its staff, participants, learners and other individuals with whom it has dealings for administrative purposes. To comply with the law, information about individuals must be collected and used fairly, stored safely and securely and not disclosed unlawfully to any third party.
In particular we will;
a) only process personal information where this is strictly necessary for legitimate organisational purposes;
b) collect only the minimum personal information required for these purposes and not processing excessive personal information;
c) provide clear information to individuals about how their personal information will be used and by whom;
d) only process relevant and adequate personal information;
e) process personal information fairly and lawfully;
f) maintain an inventory of the categories of personal information processed by the organisation;
g) keep personal information accurate and, where necessary, up-to-date;
h) retain personal information only for as long as is necessary for legal or regulatory reasons or for legitimate organisational purposes;
i) respect individuals’ rights in relation to their personal information, including their right of subject access;
j) keep all personal information secure;
k) only transfer personal information outside the EEA in accordance with data protection legislation and where it can be adequately protected;
l) only apply the various exemptions allowable by data protection legislation where applicable;
m) develop and implement a Personal Information Management System (PIMS) to enable this policy to be implemented;
n) where appropriate, identify internal and external stakeholders and the degree to which these stakeholders are involved in the governance of the organisation’s PIMS; and
o) identify those workers with specific responsibility and accountability for the PIMS.
The policy applies to all employees/staff, contractors, participants and programmes. Any breach of the Data Protection Act 1998 or this Policy will be dealt with under the Trust’s disciplinary policy and may also be a criminal offence, in which case the matter will be reported as soon as possible to the appropriate authorities. Partners, other agencies and any third parties working with or for the Trust, and who have or may have access to personal information, will be expected to have read, understood and comply with this policy. No third party may access personal data held by the Trust without having first entered into a data confidentiality agreement which imposes on the third party obligations no less onerous than those to which the Trust is committed and which gives the Trust the right to audit compliance with the agreement.
This policy statement is communicated to all persons working for or on behalf of the Trust who are expected to comply with this policy.
The Data Protection Act specifies that any person who has personal or sensitive data held by the Trust has the right to access their data. On satisfactory submission of a subject access request form and a processing fee, the Trust will respond appropriately within 40 days. To request a Subject Access Request Form please either e-mail DPO@bellenglish.com or contact the Bell Foundation.