Privacy

Tante Marie Limited (‘Tante Marie’ or ‘we’) is committed to protecting your personal information when you are using our websites and applications (our ‘services’). Whenever you provide such information, we are legally obliged to use your information in line with all laws concerning the protection of personal information, including the Data Protection Act 1998.

We collect and use different information depending on whether you are using our websites or mobile apps and this Privacy Policy explains how we use that information and in particular the following:

  • TYPES OF INFORMATION WE MAY COLLECT ABOUT YOU
  • HOW WE LOOK AFTER YOUR INFORMATION
  • HOW WE USE YOUR INFORMATION
  • SHARING YOUR INFORMATION WITH OTHER PEOPLE
  • YOUR RIGHTS AND FURTHER INFORMATION

Please note that our services may contain links to websites or apps that are owned and operated by third parties. These websites and apps will have their own privacy policies that govern the collection and use of your personal information which you should review. We are not responsible for the privacy practices of third party websites so your use of such websites is at your own risk.

Types of information we may collect about you

When you sign up to our services, such as our website forums, mobile applications, regular newsletters, enter competitions, buy a magazine subscription, order products or take up a reader offer we may ask for personal information about you. This can include information such as your name, e-mail address, postal address, telephone or mobile number or date of birth. Different services may ask for different types of information.

If you are aged 16 or under, you must get your parent/guardian’s permission before you provide us with your personal information. Unless you have this consent you are not allowed to give us your information.

Here is some more specific detail about the information we may collect:

  • Information you give to us: information that you provide by filling in forms on our services. This includes information provided at the time of enrolling, registering to use an app or website, subscribing to any services, posting material, filling in a survey or requesting further services. We may also ask you for information when report a problem with our services;
  • Information about your use of our websites: we may collect your IP address and use cookies on our websites. For full information about our use of cookies please see our Cookies Policy;
  • Information about the device you are using: if you download one of our apps we may collect information about the device you use to access the app, including, where available, the device’s unique identifiers, operating system, browser type and mobile network information as well as the device’s telephone number, for system administration and to report statistical information to our advertisers;
  • Information about your use of our app: We may also collect information about your use of the app such as what pages you look at and what elements you tap or pages you interact with;
  • Information about your location: when you use one of our location-enabled services, we may collect information about your actual location but we will always ask you about this first. You can change your mind at any time by updating your preferences on your device.
  • Information about transactions: if you purchase something from us such as a magazine subscription or an app, we will make a record of the details of that transaction;
  • Contact information: if you contact us, we may keep a record of that correspondence.

How we look after your information

Unfortunately, the transmission of information via the internet is not completely secure. Any information we hold about you is stored internally on our secured servers. Although we will do our best to protect your information, we cannot guarantee its security and when giving us your information you do so at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.

We will hold your information on our systems for as long as is necessary for the relevant service, or as long as is set out in any relevant contract you hold with us. If you change your registration profile to opt-out of receiving communications from us, your record will stay on the system so we can ensure that we do not contact you in the future. If you wish to cancel your registration with any of Tante Marie’s websites, you may do so by contacting us using the details available in the ‘Contact Us’ section of the website or by emailing info@tantemarie.co.uk

How we use your information

We will use your information for a number of purposes including the following:

  • to send you carefully selected information updates and promotions from the service you are using/title you have purchased and from Tante Marie by email, post, telephone, SMS or push notification (where applicable and permitted by the app store you use). You can opt-out of these marketing messages at any time by sending an email to info@tantemarie.co.uk including your full name, user name (if applicable) postcode, details of the service you are using and/or magazine subscription information. Please note that it may take up to two weeks to implement this change in your preferences. You will always be given a straightforward way to opt out of our marketing messages each time you receive a communication from us.
  • we may use your IP address to identify your location, the number of visits from different countries and also to block disruptive use;
  • if we need to contact you for reasons related to the service you have signed up for e.g. to provide you with password reminders or to notify you that a particular service has been suspended for maintenance;
  • to tell you about changes to our service;
  • to contact you about a submission or contribution you have made to our websites, message boards or magazines, including any content you provide;
  • to personalise or improve the way our content and advertising is presented to you online:
  • to analyse and improve the services we offer e.g. to provide you with the most user-friendly navigation experience or the most relevant information;
  • to manage our competitions and contact the winners;
  • to meet product orders, requests for services or information and to process payments and any other requests you make of us;
  • to keep our records up to date;
  • to invite you to participate in surveys about our services (participation is always voluntary);
  • to enable other people or businesses to carry out work on our behalf;
  • where you have given us your permission, to pass your information to carefully selected organisations to allow them to tell you about their special offers or products and services that may be of interest to you;
  • to ensure that any advertising you see is relevant to you. Please see our Cookies Policy for more information about this; and we may use third-party advertising companies to collect data and/or serve ads when you visit our websites or mobile apps. These companies may use information (not including your name, address, email address or telephone number) about your visits to this and other websites or mobile apps in order to provide advertisements about goods and services of interest to you. If you would like more information about this practice and to know your choices about not having this information used by these companies, visit http://networkadvertising.org/;
  • Internal record keeping;
  • To improve our products and services.

Cookies Policy

A cookie is a small file which asks permission to be placed on your computer’s hard drive. Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.

We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.

Overall, cookies help us provide you with a better website, by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us.

You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.

Links to other websites

Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.

Sharing your information with others

Generally, we will only use your information within the Tante Marie group of companies in order to provide the service/product you have requested.

We will only disclose your information to third parties (including Tante Marie group companies and other trusted companies) with your consent or where we need to do so in order to provide a service you have requested or improve the service and advertising that your receive (on both our websites and apps, and third party websites and apps). We will also disclose your information to third parties when the disclosure is required or permitted by law (for example to government bodies and law enforcement agencies). Please note that if you post or send offensive, inappropriate or objectionable content anywhere on our services, or otherwise engage in any disruptive behaviour, we may use your information to stop such behaviour. In this instance we may use your information to inform relevant third parties such as your employer, school e-mail/internet provider or law enforcement agencies about the content and your behaviour.

We require all third parties with whom we share your information to treat it with the same protection we do. Unless you consent we also require that they do not use your information for their own business purposes.

Your rights and further information

Under the Data Protection Act you have the right to request a copy of the information we hold about you and to have any inaccuracies corrected. We charge £10 for information requests and will require you to prove your identity with 2 pieces of approved photographic identification. We will use reasonable efforts to supply, correct or delete personal information about you on our files.

This privacy policy may be updated from time to time so you should check it each time you submit information to any of our services. The date of the most recent revisions will appear at the bottom of this page.

If you have any questions or comments about this privacy policy please contact:

The Managing Director, Tante Marie Limited, 57 Commercial Way, Woking. Surrey. GU21 6HN. United Kingdom

Tel: +44(0)1483 726957

Email: info@tantemarie.co.uk

Last updated: July 2017

Data Protection

Policy statement

Tante Marie Limited (TML) is committed to a policy of protecting the rights and privacy of individuals in accordance with The Data Protection Act 1998. The policy applies to all employees and customers. Any breach of The Data Protection Act 1998 is considered to be an offence and in that event, disciplinary procedures apply.

As a matter of good practice, other organisations and individuals working with TML, and who have access to personal information, will be expected to have read and comply with this policy. It is expected that any staff who deal with external organisations will take responsibility for ensuring that such organisations sign a contract agreeing to abide by this policy.

Legal Requirements

Data are protected by the Data Protection Act 1998, which came into effect on 1 March 2000. Its purpose is to protect the rights and privacy of individuals and to ensure that personal data are not processed without their knowledge, and, wherever possible, is processed without their consent.

The Act requires us to register the fact that we hold personal data and to acknowledge the right of ‘subject access’ – voluntary and community group members and staff must have the right to copies of their own data.

Managing Data Protection

We will ensure that our details are registered with the Information Commissioners Office.

Purpose of data held by the Community Association

Data may be held by us for the following purposes:

  1. Staff administration
  2. Student administration
  3. Accounts & Records
  4. Advertising, marketing & Public Relations
  5. Information administration
  6. Journalism and media
  7. Research

Data Protection Principles

In terms of the Data Protection Act 1998, we are the ‘data controller’, and as such determine the purpose for which, and the manner in which, any personal data are, or are to be, processed. We must ensure that we have:

  1. Fairly and lawfully processed personal data

Data will be processed in accordance with The Data Protection Act 1998 and other relevant UK law.

  1. Processed for limited purpose

We will not use data for a purpose other than those agreed by data subjects. If the data held by us are requested by external organisations for any reason, this will only be passed if data subjects agree. External organisations must state the purpose of processing, agree not to copy the data for further use and sign a contract agreeing to abide by The Data Protection Act 1998 and TML Data Protection Policy.

  1. Adequate, relevant and not excessive

TML will monitor the data held for our purposes, ensuring we hold neither too much nor too little data in respect of the individuals about whom the data are held. If data given or obtained are excessive for such purpose, they will be immediately deleted or destroyed.

  1. Accurate and up-to-date

We will provide our members with a copy of their data upon request for information and updating where relevant. All amendments will be made immediately and data no longer required will be deleted or destroyed. It is the responsibility of individuals and organisations to ensure the data held by us are accurate and up-to-date. Completion of an appropriate form (provided by us) will be taken as an indication that the data contained are accurate. Individuals should notify us of any changes, to enable personnel records to be updated accordingly. It is the responsibility of TML to act upon notification of changes to data, amending them where relevant.

  1. Not kept longer than necessary

We discourage the retention of data for longer than it is required. All personal data will be deleted or destroyed by us after one year of non-membership has elapsed.

  1. Processed in accordance with the individual’s rights

All individuals that TML holds data on have the right to:

  • Be informed upon the request of all the information held about them within 40 days.
  • Prevent the processing of their data for the purpose of direct marketing.
  • Compensation if they can show that they have been caused damage by any contravention of the Act.
  • The removal and correction of any inaccurate data about them.
  1. Secure
    Appropriate technical and organisational measures shall be taken against unauthorised or unlawful processing of personal data and against accidental loss or destruction of data.

All TML computers have a log in system and our Contact Database is password protected, which allow only authorised staff to access personal data. When staff members are using the laptop computers out of the office care should always be taken to ensure that personal data on screen is not visible to strangers.

  1. Not transferred to countries outside the European Economic Area, unless the country has adequate protection for the individual.

Data must not be transferred to countries outside the European Economic Area without the explicit consent of the individual.  TML takes particular care to be aware of this when publishing information on the Internet, which can be accessed from anywhere in the globe.

CCTV

Owner

Tante Marie Limited (TML) has in place and is further developing a CCTV system, “the system” in the Academy’s premises.  The central TML premises comprises for this purpose all TML properties located within the Woking Borough Council area.  Images are not recorded will be used only in strict accordance with this policy. The system is owned by Tante Marie Limited, 57-61 Commercial Way, Woking. Surrey. GU21 6HN.

The Managing Director is responsible for the operation of the system and for ensuring compliance with this policy. The Managing Director may be contacted as follows:

Andrew Maxwell

Tel:                  01483 726957

Email:              info@tantemarie.co.uk

Data Protection Act 1998:

CCTV digital images, if they show a recognisable person, are personal data and are covered by the Data Protection Act, the provisions of which should be adhered to at all times.

The system

The system comprises: Fixed position cameras; Pan Tilt and Zoom cameras; Monitors;

Cameras will be located in the kitchens and demonstration theatre.  No camera will be hidden from view and all will be prevented from focussing on the frontages or rear areas of private accommodation.

Staff, students and visitors will be notified that no images are recorded. Images are for live feed purposes only. Students will be notified in the Student Hand Book and on the Student Notice Boards. Visitors will be notified in the reception signing in book. Signs will be prominently placed at strategic points and at the entrance point of the campus to inform staff, students, visitors and members of the public that a CCTV installation is in use that images are not recorded.

The system is not installed to monitor or capture evidence of incidents.

Purpose of the system

The system has been installed by TML with the primary purpose generating a live feed to fixed monitors for education purposes during demonstrations and marketing to visitors in Reception. These purposes will be achieved by monitoring the system to:

  • Maximise learning benefits
  • Enhance the look, feel and ambience of the Academy reception

The system will not be used:

  • To record images
  • To provide recorded images for the world-wide-web
  • To record sound
  • For any automated decision taking

Covert recording

Covert cameras may be used under the following circumstances on the written authorisation or request of the Managing Director:

  • That informing the individual(s) concerned that recording was taking place would seriously prejudice the objective of making the recording; and
  • That there is reasonable cause to suspect that unauthorised or illegal activity is taking place or is about to take place.
  • Any such covert processing will only be carried out for a limited and reasonable period of time consistent with the objectives of making the recording and will only relate to the specific suspected unauthorised activity.
  • The decision to adopt covert recording will be fully documented and will set out how the decision to use covert recording was reached and by whom.

The Security Control Room

Images captured by the system will be monitored and recorded in the Security Control Room, “the control room”, twenty-four hours a day throughout the whole year. Monitors are not visible from outside the control room.

No unauthorised access to the Building Management Room or Server facilities will be permitted at any time. Access will be strictly limited to TML employees. A list of those members of senior management authorised to access the Building Management Room and Server facilities is given at Appendix 1;

Staff, students and visitors may be granted access to the Building Management Room on a case-by-case basis and only then on written authorisation from the Managing Director. In an emergency and where it is not reasonably practicable to secure prior authorisation, access may be granted to persons with a legitimate reason to enter the Building Management Room or Server facilities;

Before allowing access to the Building Management Room or Server facilities, staff will satisfy themselves of the identity of any visitor and that the visitor has appropriate authorisation.  All visitors will be required to complete and sign the visitors’ log, which shall include details of their name, their department or organisation they represent, the person who granted authorisation and the times of entry to and exit from the centre.

Recording

No images are recorded or stored in any way.

Complaints

It is recognised that members of TML and others may have concerns or complaints about the operation of the system.  Any complaint should be addressed in the first instant to the Managing Director and Principal in accordance with the company’s complaints and grievance procedures as set out in the Student and Employee Handbooks.

Compliance monitoring

The contact point for members of TML or members of the public wishing to enquire about the system will be the Academy Reception which will be available between the hours of 0830 and 1700 Monday to Friday.

Upon request enquirers will be provided with:

  • A summary of this statement of policy
  • An access request form if required or requested
  • A copy of the TML complaints and grievance procedures

All documented procedures will be kept under annual review.

The effectiveness of the system in meeting its purposes will be kept under annual review.

Appendix 1

Authorised access to the Security Control Room

The following have authorised access to the Security Control Room:

  • Managing Director and Principal;
  • Tante Marie Culinary Academy teaching and administration staff.