Privacy Policy
Crimestoppers Scotland (“we”, “our”, or “us”) is fully committed to protecting your privacy and safeguarding your personal information. This Privacy Policy outlines how we collect, use, disclose, store, and safeguard personal data obtained through our website, crimestoppersscotland.com (the “Website”), and your rights in relation to that data, in accordance with applicable privacy legislation including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
1. Commitment to Privacy and Data Protection
We respect and protect the privacy of all users of our services. We are committed to maintaining the confidentiality, integrity, and availability of your personal data. All collection and processing activities are conducted with transparency and in accordance with the highest standards of data protection law.
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through your interaction with our Website. Crimestoppers Scotland is the data controller responsible for your personal data under applicable data protection laws.
By accessing and using crimestoppersscotland.com, and by submitting your personal data, you acknowledge that you have read this policy and understand how we process your data.
3. Categories of Data Processed
We collect and process the following categories of personal data:
a. Usage Data
Includes data about your interaction with our Website such as browser type and version, IP address, access times, pages viewed, and other usage patterns.
b. Account Data
Includes your name, email address, phone number, and postal address when you create an account or submit a contact form.
c. Profile Data
Includes information about your preferences, interests, behavioral data, and any purchases made, if applicable.
d. Communication Data
Includes details provided in communications with us, such as support requests, feedback, and contact history.
e. Technical Data
Includes information about your device, operating system, browser configuration, time zone, and other system settings.
f. Transaction Data
Includes details of donations, payments, billing information, and delivery address (where goods or services are obtained).
g. Preference Data
Includes records of your preferences for marketing communications, subscriptions, and selections of interests.
4. Legal Bases for Processing
We process your personal data pursuant to one or more of the following legal grounds under GDPR and applicable CCPA provisions:
– Consent: Where required, we request your explicit consent to process certain data (e.g., email subscriptions, cookies).
– Contract: When processing is necessary for the performance of a contract to which you are a party.
– Legal Obligation: When processing is necessary to comply with a legal requirement.
– Legitimate Interests: When it is in our legitimate interest to use your data to operate, improve, and secure our Website and services without adversely affecting your rights.
5. Your Rights
Under GDPR and CCPA, you have the following rights:
– Right of Access: Request access to the personal data we hold about you.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of your data, subject to certain conditions.
– Right to Restriction: Request limitation of processing of your data.
– Right to Data Portability: Request a structured, machine-readable copy of your data to transfer to another party.
– Right to Object: Object to certain processing, including for direct marketing or profiling.
– Right to Withdraw Consent: Where consent is the lawful basis, withdraw it at any time.
– Right Not to Be Subject to Automated Decision-Making: You have the right to opt out of decisions made solely by automated processing that affect you legally or significantly.
To exercise any of these rights, contact [email protected].
6. Security Measures
We implement appropriate technical and organizational measures to safeguard personal data, including but not limited to:
– Data encryption in transit and at rest.
– Access control and user authentication protocols.
– Secure data storage with regular encrypted backups.
– Role-based access for internal personnel, with mandatory privacy awareness training.
– Continuous monitoring and vulnerability testing procedures.
7. International Transfers
Wherever personal data is transferred outside the United Kingdom or European Economic Area (EEA), we ensure an adequate level of protection by:
– Utilizing European Commission Standard Contractual Clauses.
– Ensuring compliance with UK and international data protection regulations.
– Evaluating transfer risks and data handling practices of third-country recipients.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements:
– Usage Data: Retained for 12 months.
– Account Data: Retained until user account is deactivated or 24 months after inactivity.
– Communication Data: Retained for 36 months post-resolution.
– Transaction Data: Retained for 7 years to fulfill tax and audit obligations.
– Technical and Preference Data: Retained for 12 months or until consent is withdrawn.
Once data is no longer required, it will be securely deleted or anonymized.
9. Cookie Policy
The Website employs cookies and similar technologies for functionality, analytics, and user experience improvement. Categories include:
– Essential Cookies: Required for basic website functionality.
– Functional Cookies: Enable site personalization and retain user preferences.
– Analytics Cookies: Track user interactions for performance insights.
– Performance Cookies: Improve load speed, responsiveness, and usability.
10. Cookie Management and Compliance with GDPR & CCPA
Upon first visit, users are presented with a cookie consent banner allowing acceptance or management of individual cookie categories.
You may also manage or disable cookies through your browser settings or modifiable consent preferences available on the Website at any time. Refusing cookies may affect your ability to access certain functions.
In compliance with GDPR and CCPA, all non-essential cookies are disabled by default unless consent is explicitly provided.
11. Special Protections for Children Under 13
We do not knowingly collect, use, or disclose personal data from children under the age of 13. If we become aware that such data has been collected without verified parental consent, it will be deleted promptly. If you believe that we may have collected personal information from a child, please contact us at [email protected].
12. Policy Updates and User Notification
We reserve the right to modify or update this Privacy Policy at our discretion to ensure compliance with legal obligations and best practices. Material changes will be conveyed through appropriate channels (e.g., notices on the Website or direct email communication when feasible). Continued use of crimestoppersscotland.com following such changes constitutes acceptance of the revised terms.
13. Contact Information
For any inquiries, requests, or complaints regarding this Privacy Policy or your personal data, you may contact us at:
Email: [email protected]
Website: https://crimestoppersscotland.com
We are committed to full compliance with applicable data protection laws and to resolving any concerns you may have regarding your privacy. Please do not hesitate to reach out for assistance or clarification.