‘Personal data’ means any information that can be used to identify a living person, either on its own or with any other information that a data controller holds or is likely to come across. The processing of this data is governed by the General Data Protection Regulation 2016 (GDPR).
New Roots acts as the data controller for information we hold about our email subscribers. This means that we decide how that personal data is processed and for what reasons.
We take privacy very seriously, and we will only use your personal data to meet our contractual needs and, where necessary and not in violation of your individual rights, our legitimate interests as an employer and supported housing provider.
All of the personal data that we process about you will come directly from you or be collected when you visit our website.
New Roots complies with our obligations under the GDPR by:
With your permission, we will only use your personal information to keep you informed of our news, events, activities and services by email; and to respond to any enquiries you may make through the New Roots website.
Cookies are small text files that are placed on your computer by websites that you visit. They are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the site.
Your personal data will be kept strictly confidential and only be shared with:
If you do grant consent to receive our newsletter, you can withdraw it at any time by contacting firstname.lastname@example.org or clicking the unsubscribe link on any previous email.
If you contact New Roots through our website’s contact form, we will keep your personal data for a period of 2 years, to allow us to maintain effective records of enquiries for a reasonable period.
Finally, for details on how to disable and delete cookies, please see:
Unless subject to an exemption under the GDPR, you have a number of rights with respect to your personal data:
MailChimp may process your personal data anywhere in the world where it, its affiliates or sub-processors maintain operations, including:
When processing data outside of the EU, compliance with the GDPR will be managed by self-certification with the Privacy Shield Framework.
If we wish to use your personal data for a new purpose, New Roots will provide you with an explanation and set out the relevant purposes and processing conditions, before commencing. Where and whenever necessary, we will also seek your consent.