Bee Network crossings consultation privacy policy

Introduction

Transport for Greater Manchester (TfGM) is committed to making sure that we tell you about the ways in which we use your personal information and that we have the right controls in place to make sure it is used responsibly and kept safe from inappropriate access, theft, or misuse.

TfGM is acting on behalf of the 10 Greater Manchester Local Authorities to undertake consultation activity on a number of new/upgraded crossings and junction improvements to enable more walking and cycling by making the roads safer. There will be a number of separate consultations covering most of the districts. These consultations are being undertaken to give local people the opportunity to have their say on the proposals, which will in turn be considered in the light of any concerns raised.

TfGM will be collecting and analysing feedback from the responses received.

This notice explains how we use your information and tells you about your privacy rights and how to law protects you. For further information about our core data protection obligations and commitments please see TfGM’s primary privacy notice.

What information do we collect and why?

The consultation will ask you questions in relation to crossing proposals as part of the Greater Manchester Bee Network to understand your views. The personal information we process and collect will be provided to us directly by yourself. Whilst it is not compulsory some personal data may be collected in the process of this consultation. Personal data that may be collected includes:

• Postcode
• Gender
• Age

We may also collect some special category personal data within the consultation. Special category data is data that is deemed more sensitive. For the purpose of this consultation we may collect the following special category data:

• Physical or mental health information
• Racial or ethnic group information

This data will help us ensure we hear from a range of voices and help identify any possible barriers for particular groups of people.

Questions in relation to personal data are not mandatory and therefore you do not have to answer them if you do not want to.

How do we keep your information safe?

TfGM is committed to the security of the information we collect, and we use reasonable measures to prevent unauthorised access to that information. We are required to demonstrate that our solutions meet the required levels of personal, procedural, policy, data and technical security. We will only process personal information for the purposes it has been collected or subsequently authorised.

The surveys are hosted by TfGM using SNAP Survey Software. SNAP Surveys is ISO 27001 certified.

More information can be found on the SNAP Surveys website.

All electronic consultation information will be stored in a secure area with restricted access to your personal information.

In relation to consultations sent to us in the post, information will be stored in a secure office with limited access.

How long is the information kept for?

Your information will only be kept for as long as necessary. TfGM will hold any personally identifiable data for no longer than two years after the survey has been completed.

Lawful basis for processing your information

As TfGM is delivering these consultations our lawful basis for processing under GDPR is:

• GDPR Article 6(1)(e): the processing is necessary for the performance of its official tasks carried out in the public interest.

And for the more sensitive data:

• GDPR Article 9(2)(g): the processing is necessary for reasons of substantial public interest.

Who will we share your information with?

The information collected as part of this consultation will only be used by TfGM. Your personal data will not be shared with any other third parties. An anonymised report will be shared with the relevant Greater Manchester Local Authority and may be shared with academic institutions or contractors working on behalf of TfGM for the development of the proposals. This will not contain any personal data. If you are responding on behalf of an organisation. The organisation’s name may be used but you will not be personally identified.

Your rights as a data subject (any individual person who can be identified)The GDPR gives you the following rights over your information:

• Your right to get copies of your information
  You have the right to ask for a copy of any information about you that is used.

• Your right to get your information corrected
  You have the right to ask for any information held about you that you think is inaccurate to be changed.

• Your right to limit how your information is used
  You have the right to ask for the use of any information held about you to be restricted. For example, you can ask this where you think the information TfGM is using is inaccurate.

• Your right to object to your information being used
  You can ask for any information held about you not to be used. This is not an absolute right and TfGM may need to continue to use your information. We will tell you why if this is the case.

• Your right to get your information deleted
  You can ask for any information held about you to be deleted. This is not an absolute right and TfGM may need to continue to use your information. We will tell you why if this is the case.

To find out what information we hold about you, you need to make a Subject Access Request. If you wish to exercise any of your information rights including making a Subject Access Request, please contact us on data.protection@tfgm.com.

If you are not satisfied with the response from us, you can complain to the Information Commissioner’s Office. For further details on this and your information rights please visit the Information Commissioner’s Website.

Data Protection Officer (DPO)

TfGM is required by law to have a DPO. The DPO has several duties, including:

• Monitoring the organisation’s compliance with data protection law;
• Providing expert advice and guidance on data protection;
• Acting as the point of contact for data subjects; and
• Co-operating and consulting with the Information Commissioner’s Office

TfGM’s DPO can be contacted at data.protection@tfgm.com.

Further details of how TfGM process your data and how you can exercise your rights are available on the TfGM privacy policy pages.

Further information about data privacy and your rights under the General Data Protection Regulation (the “GDPR”) can be found at the ICO website.