In the course of making a booking for a group visit with us, you have provided information about yourself (‘personal data’). We (the University of Oxford*) are the ‘data controller’ for this information, which means we decide how to use it and are responsible for looking after it in accordance with the General Data Protection Regulation and associated data protection legislation.
How we use your data
We will use your data to process your booking for a group visit. We need to process your data for this purpose in order to fulfil our contractual obligations to you or to take steps at your request prior to entering into a contractual relationship. We will only use your data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another related reason and that reason is compatible with the original purpose. If we need to use your data for an unrelated purpose, we will seek your consent to use it for that new purpose.
Who has access to your data?
Access to your data within the University will be provided to those who need to view it as part of their work in carrying out the purposes described above.
Retaining your data
We will only retain your data for as long as we need it to meet our purposes, including any relating to legal, accounting, or reporting requirements.
Your data will be held securely in accordance with the University’s policies and procedures. Further information is available on the University’s Information Security website.
Where we store and use your data
We store and use your data on University premises, in electronic form.
Information on your rights in relation to your personal data.
If you wish to raise any queries or concerns about our use of your data, please contact us at email@example.com or Data Protection, GLAM, Clarendon Building, Broad Street, Oxford OX1 3BG
*The University’s legal title is the Chancellor, Masters and Scholars of the University of Oxford