Privacy Policy

Privacy Policy


Introduction


The Guernsey Choral & Orchestral Society (“we”, “our”, “us”) is committed to protecting and respecting your privacy. This policy explains how we collect, use, and safeguard your personal information in accordance with the Data Protection (Bailiwick of Guernsey) Law, 2017.



Information We Collect


We may collect and process the following data:


• Contact information (name, email address, phone number)

• Membership details

• Rehearsal and event participation records

• Payment information


If you are a holder of a GCOS bursary or an applicant for a GCOS bursary we may also hold information concerning your education (both musical and otherwise), background and achievements – which you will have provided with your application for the GCOS bursary. 


We may also take photographs of concerts and other events. This may include photographs of you.


We ask that you do not provide sensitive information (such as race or ethnic origin; political opinions; religious or philosophical beliefs; trade union membership; physical or mental health; genetic data; biometric data; sexual life or sexual orientation; and, criminal records) to us when using our website. If you choose to provide sensitive information to us for any reason, the act of doing so constitutes your explicit consent for us to collect and use that information in the ways described in this privacy statement or as described at the point where you choose to disclose this information.



How We Use Your Information


We use your data to:


• Manage memberships and event participation

• Process payments and donations

• Communicate important information about our activities

• Improve our services and website

•To comply with any legal obligations that we might have


If you are a the holder of a GCOS bursary or an applicant for a GCOS bursary, we may use the data provided as part of your application in making any decision relating to the award of a GCOS bursary. 


We may use photographs taken of concerts or other events in our publicity.



Data Retention

Personal data collected via this website will be retained by us for as long as it is necessary (e.g. for as long as we have a relationship with you). 



Legal Basis for Processing


Our legal bases for processing your personal data include:


  • Contract performance: where your information is necessary to enter into or perform any contract with you.
  • Legal obligation: where we need to use your information to comply with our legal obligations.
  • Legitimate interests: where we use your information to achieve a legitimate interest and our reasons for using it outweigh any prejudice to your data protection rights.
  • Legal claims: where your information is necessary for us to defend, prosecute or make a claim against you, us or a third party.
  • Consent: where you have consented to our use of your information (you may withdraw your consent as set out below)



Data Sharing


We do not sell or share your personal data with third parties except for service providers who assist us in our operations, under strict confidentiality agreements.


We may also share your personal data with a variety of the following categories of third parties:


  • Our professional advisors (e.g. legal, financial, business, risk management or other advisors), bankers and auditors.
  • Our insurers and insurance brokers.
  • Third party service providers (we have agreements in place with these service providers to protect the confidentiality and security of information (including personal data) shared with them).


We have agreements in place with these professional advisers, insurers, insurance brokers and service providers to protect the confidentiality and security of information (including personal data) shared with them.


We may also process your personal data to comply with our legal or regulatory requirements or in the course of dialogue with any governmental or regulatory bodies as applicable, which may include disclosing your personal data to government, regulatory or law enforcement agencies in connection with enquiries, proceedings or investigations by such parties anywhere in the world or where compelled to do so. Where permitted, we will direct any such request to you or notify you before responding.



Data Security


We implement appropriate technical and organisational measures to protect your data against unauthorised access, loss, or misuse.



Your Rights


You have the right to:


  • Access the personal data we hold about you. This right may be exercised by emailing us – we will aim to respond to any requests for information promptly, and in any event within the legally required time limits.
  • Request correction or deletion of your data. To update personal data submitted to us, you may email us. When practically possible, once we are informed that any personal data processed by us is no longer accurate, we will make corrections (where appropriate) based on your updated information.
  • Withdraw your consent at any time Where we process personal data based on consent, you may withdraw consent at any time. We do not generally process personal data based on consent (as we can usually rely on another legal basis). To withdraw consent to our processing of your personal data or to stop receiving emails from us, please email us. 
  • Object to or restrict the processing of your data. If you object to our processing of your personal data or wish us to restrict it in any way, please email us. 



Complaints


We hope that you will never need to, but if you do want to complain about our use of personal data, please send us an email with the details of your complaint. 


We will look into and respond to any complaints we receive.


You also have the right to lodge a complaint with the Office of the Data Protection Authority (the Guernsey data protection regulator). For further information on your rights and how to complain to the ODPA, please refer to the ODPA website.


The ODPA's address is Block A, Lefebvre Court, Lefebvre Street, St Peter Port, Guernsey GY1 2JP


Their contact email for general enquiries is info@odpa.gg



Cookies


Our website uses cookies to enhance user experience. You can control cookie settings through your browser.



Contact Us


The "controller" of the personal data that you provide is Guernsey Choral and Orchestral Society. 


If you have any questions about this privacy policy or your personal data, please email us.


We can be contacted at gcosguernsey@gmail.com



Changes to This Policy


We may update this policy periodically. Changes will be posted on this page.



Effective Date


This policy is effective as of 01/07/2024.



Share by: