Information Commissioners Office logo

Data protection register - entry details


Registration number:
Z8839704
Date registered:
06 June 2005
Registration expires:
05 June 2018
Data controller:
Carl Les
Address:
Hambleton District Council
Civic Centre
Stonecross
Northallerton
North Yorkshire
DL6 2UU

This register entry describes, in very general terms, the personal data being processed by:

Carl Les

Nature of work - Councillor


Description of processing

The following is a broad description of the way this organisation/data controller processes personal information.  To understand how your own personal information is processed you may need to refer to any personal communications you have received, check any privacy notices the organisation has provided or contact the organisation to ask about your personal circumstances.


Reasons/purposes for processing information

I process personal information to enable me to carry out casework on behalf of individual constituents.


Type/classes of information processed

I process information relevant to the above reasons/purposes. This may include:

  • personal details
  • family, lifestyle and social circumstances
  • financial details
  • education and employment details
  • housing information
  • details of complaints


I also process sensitive classes of information that may include:

  • physical or mental health details
  • trade union membership
  • racial or ethnic origin
  • offences including alleged offences
  • political affiliation of elected members


Who the information is processed about

I process personal information about:

  • constituents
  • elected representatives and others in public office
  • council employees
  • complainants and enquirers
  • relatives, guardians and associates of the person whose personal information I am processing
  • business or other contacts
  • the subject of complaints


Who the information may be shared with

I sometimes need to share the personal information I process with the individual themself and also with other organisations. Where this is necessary I am required to comply with all aspects of the Data Protection Act (DPA). What follows is a description of the types of organisations I may need to share some of the personal information I process with for one or more reasons.


Where necessary or required I share information with:

  • elected representatives and other holders of public office
  • landlords
  • local and central government
  • statutory law enforcement agencies and investigating bodies
  • political organisations
  • the media
  • healthcare, social and welfare advisers or practitioners
  • suppliers
  • the subject of complaints


Transfers

It may sometimes be necessary to transfer personal information overseas. When this is needed information is only shared within the European Economic Area (EEA). Any transfers made will be in full compliance with all aspects of the data protection act.


---

© Copyright