All employees, trainees and directors of The Montefiore Endowment who interact with data subjects are responsible for ensuring that this notice is drawn to their attention and their consent to the processing of their data is secured.
The Law on data protection sets out a number of different reasons for which a company may collect and process your personal data, including:
In specific situations we can collect and process your data with your consent. For example when you fill in an application form for one of our courses.
If the law requires, we may need to collect and process your data such as passing on details of people involved in fraud or other criminal activity.
Sometimes we require your data to pursue our legitimate interests in a way which might be reasonably expected as part of the running of our services and which does not materially impact your rights, freedom or interests, e.g. by using your personal information when interviewing for scholarships and grants.
When do we collect your personal data?
- When you complete our application forms
- When you send us your CV
- When you send us banking details for payment
- When you purchase a ticket for one of our events
- When you send us your details to update the General register of past students
What type of personal data do we collect?
- home address;
- contact details (such as telephone number and email address);
- date of birth;
- marital status;
- copies of passport, driving licence and similar documents;
- education history;
- languages spoken and level of proficiency;
- other information given in your CV;
- bank details
Why we process your data and how do we store it?
The personal data we collect will be used for the following purposes.
- To contact you by post, email or telephone.
- To make decisions regarding allocation of scholarships and grants
- We may also process your personal data without your knowledge or consent, where we are legally required or permitted to do so, in accordance with this notice,
- To make payments via our secure accountants (Grunberg & Co ltd)
Once processed your personal data is stored
- On our secure network
- In locked and secure cabinets.
We will only retain your personal data for as long as is necessary to fulfil the purposes for which it is collected.
- Up to four years for personal data of applicants who have been rejected. (specifically for our courses that run on a four-year cycle)
- Up to six years for personal data of students after graduating or having left the course. Thereafter only contact details will be retained if still required.
- Some details may be kept for an indefinite period if deemed to have a legitimate purpose.
- Bank details will be deleted immediately after use or retained on secure network if needed.
Ultimately you have control over your personal data which is retained by us. At any time, you can request information about the personal data we collect, request that we correct or erase certain personal data, or request that we stop processing your personal data in certain ways. Please note that these rights are not absolute and we may be entitled to refuse requests where exceptions apply. This can be done by contacting our GDPR controller. Please see below.
Information we collect automatically
Our website, in the same way as many others, collects information about your visit. We log which pages you look at and when, and we collect basic technical information such as the type of web browser you are using and your Internet address. None of this information can be linked to you personally, and we only analyse it in aggregate form.
A cookie is a small text file that a website places on your computer, we use the following cookies: