Who we are
Our website address is: https://1220conference.co.uk.
What personal data we collect and why we collect it
When visitors leave comments on the site or fill in forms, we collect the data shown in the form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you leave a comment/fill in your data on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you edit or publish an article, a cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Who we share your data with
Your data is only used for the purpose of your attendance at the conference and for any meals or events that you have booked for. The people we may need to share certain parts of your information with are, for example, hotel/restaurant staff if you have specified special requirements, or our own members who may be in administrative or organisational roles for committees/events.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register for the conference on our website, we also store the personal information they provide. All users can request to see, edit, or delete their personal information at any time. Website administrators can also see and edit that information.
What rights you have over your data
If you have left comments on this site, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Visitor comments may be checked through an automated spam detection service within the website itself.
Your contact information
We will hold your personal information that you enter into the checkout and registration forms for the purpose of your attendance at the District 1220 Conference and the events held within.
How we protect your data
Rotary District 1220 strongly believes that you have the right to control the use of your personal information, and that your privacy must be respected. We strictly limit the collection and processing of your personal data, and to the best of our abilities we will work only with other organisations who do the same. We will not use personal data that you provide to us in a manner inconsistent with the purposes for which you provided it to us, as set out below.
We do not sell, rent or lease personal data.
We will vigorously challenge any attempts by government agencies or private sector organisations to gain access to any information that you give us.
What data breach procedures we have in place
1. In the case of a personal data breach, the controller shall without undue delay and, where feasible, not later than 72 hours after having become aware of it, notify the personal data breach to the supervisory authority, unless the personal data breach is unlikely to result in a risk to the rights and freedoms of natural persons.
2. Where the notification to the supervisory authority is not made within 72 hours, it shall be accompanied by reasons for the delay.
3. The processor shall notify the controller without undue delay after becoming aware of a personal data breach.
4. The notification referred to in paragraph 1 shall at least:
a) describe the nature of the personal data breach including where possible, the categories and approximate number of data subjects concerned, and the categories and approximate number of personal data records concerned;
b). communicate the name and contact details of the data protection officer or other contact point where more information can be obtained;
c) describe the likely consequences of the personal data breach;
d) describe the measures taken or proposed to be taken by the controller to address the personal data breach, including, where appropriate, measures to mitigate its possible adverse effects.
e) Where, and in so far as, it is not possible to provide the information at the same time, the information may be provided in phases without undue further delay.
f) The controller shall document any personal data breaches, comprising the facts relating to the personal data breach, its effects and the remedial action taken. b) That documentation shall enable the supervisory authority to verify compliance.
What third parties we receive data from
What automated decision making and/or profiling we do with user data