Who we are
Our website address is: https://www.kingsdykenaturereserve.com.
HOW WE PROTECT YOUR DATA
We employ a variety of physical and technical measures to keep your data safe and to prevent unauthorised access to, or use or disclosure of your personal information.
Electronic data and databases are stored on secure computer systems and we control who has access to information (using both physical and electronic means). Our staff receive data protection training and we have a set of detailed data protection procedures which personnel are required to follow when handling personal data.
We will never sell your personal data. If you have opted-in to marketing, we may contact you regarding our own marketing materials (e.g. advertisements in magazines or newsletters).
We will also ensure you are not presented with unnecessary marketing communications from us. You can also contact us with any queries at the details.
WHERE WE SEND YOUR DATA
We don’t send it anywhere.
WHAT DATA BREACH PROCEDURES WE HAVE IN PLACE
Personal data breach
A personal data breach is a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure, theft, or unauthorised access, to personal data.
Examples of personal data breaches
- Loss or theft of personal data or equipment (encrypted and non-encrypted devices) on which personal data is stored, e.g. loss of paper record, laptop, iPad or USB stick
- Inappropriate access controls allowing unauthorised use, e.g. make unauthorised changes to personal data
- Equipment failure
- Human error, e.g. email containing personal data sent to the incorrect recipient
- Unauthorised disclosure of sensitive or confidential information, e.g. document posted to an incorrect address or addressee
- Unforeseen circumstances such as a fire or flood
- Hacking attack
- Insecure disposal of paperwork containing personal data
Why should breaches be reported?
Impacted data subjects have a right to know that their data may have been compromised and that they could then take steps that could minimise an adverse impact on them.
Understanding the cause of breaches allows us to develop and implement systems and processes that are more robust to prevent future breaches and protect personal data.
Purpose and scope
Procedure for reporting a personal data breach incident
The primary point of contact for reporting a data breach incident is the Data Protection Officer (DPO).
Responsibility for reporting a suspected breach lies with the person who discovered the breach.
Suspected personal data breach incidents should be reported immediately upon discovery, in writing (or by phone if that is not possible), to the Data Protection Officer (DPO).
The DPO (or nominated deputy) will investigate the breach.
Breach notification – data subject
Where the personal data breach, or suspected personal data breach, is likely to result in impacting the rights and freedoms of the data subject Philip Parker Associates Ltd shall notify the affected data subjects, without undue delay.
WHAT THIRD PARTIES WE RECEIVE DATA FROM
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Who we share your data with
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Visitor comments may be checked through an automated spam detection service.