Who we are
Our website address is: https://izwizrobotics.co.uk
Our contact email is: firstname.lastname@example.org
Our contact address is: 7 Thirlmere Drive, Tingley, WF3 1PU
What personal data we collect and why we collect it
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Visitor comments may be checked through an automated spam detection service.
How we protect your data
Data Protection Policy
At IzWiz Robotics we respect the privacy of the children attending the Club and the privacy of their parents or carers, as well as the privacy of our staff. Our aim is to ensure that all those using and working at IzWiz Robotics can do so with confidence that their personal data is being kept secure.
Our lead person for data protection is Emma Park. The lead person ensures that the Club meets the requirements of the GDPR, liaises with statutory bodies when necessary, and responds to any subject access requests.
Within the Club we respect confidentiality in the following ways:
• We will only ever share information with a parent about their own child.
• Information given by parents to Club staff about their child will not be passed on to third parties without permission unless there is a safeguarding issue (as covered in our Safeguarding Policy).
• Concerns or evidence relating to a child’s safety, will be kept in a confidential file and will not be shared within the Club, except with the designated Child Protection Officer and the manager.
• Staff only discuss individual children for purposes of planning and group management.
• Staff are made aware of the importance of confidentiality during their induction process.
• Issues relating to the employment of staff, whether paid or voluntary, will remain confidential to those making personnel decisions.
• All personal data is stored securely on a password protected computer and a passcode-locked phone. Any paper records and stored safely in a locked filing cabinet.
• Students on work placements and volunteers are informed of our Data Protection policy and are required to respect it.
Information that we keep
The items of personal data that we keep about individuals are documented on our personal data matrix. The personal data matrix is reviewed annually to ensure that any new data types are included.
Children and parents: We hold only the information necessary to provide a childcare service for each child. This includes child registration information, medical information, parent contact information, attendance records, incident and accident records and so forth. Our lawful basis for processing this data is fulfilment of our contract with the child’s parents. Our legal condition for processing any health-related information about a child, is so that we can provide appropriate care to the child. Once a child leaves our care we retain only the data required by statutory legislation and industry best practice, and for the prescribed periods of time. Electronic data that is no longer required is deleted and paper records are disposed of securely or returned to parents.
Staff: We keep information about employees in order to meet HMRC requirements, and to comply with all other areas of employment legislation. Our lawful basis for processing this data is to meet our legal obligations. Our legal condition for processing data relating to an employee’s health is to meet the obligations of employment law. We retain the data after a member of staff has left our employment for the periods required by statutory legislation and industry best practice, then it is deleted or destroyed as necessary.
Sharing information with third parties
We will only share child information with outside agencies on a need-to-know basis and with consent from parents, except in cases relating to safeguarding children, criminal activity, or if required by legally authorised bodies (eg Police, HMRC, etc). If we decide to share information without parental consent, we will record this in the child’s file, clearly stating our reasons.
We will only share relevant information that is accurate and up to date. Our primary commitment is to the safety and well-being of the children in our care.
Some limited personal information is disclosed to authorised third parties we have engaged to process it, as part of the normal running of our business, for example in order to take online bookings, and to manage our payroll and accounts. Any such third parties comply with the strict data protection regulations of the GDPR.
We use Mailchimp to gather contact details and a wordpress plugin for online bookings. Detailed privacy policies can be found on their websites.
Subject access requests
• Parents/carers can ask to see the information and records relating to their child, and/or any information that we keep about themselves.
• Staff and volunteers can ask to see any information that we keep about them.
• We will make the requested information available as soon as practicable, and will respond to the request within one month at the latest.
• If our information is found to be incorrect or out of date, we will update it promptly.
• Parents /carers can ask us to delete data, but this may mean that we can no longer provide care to the child as we have a legal obligation to keep certain data. In addition, even after a child has left our care we have to keep some data for specific periods so won’t be able to delete all data immediately.
• Staff and volunteers can ask us to delete their data, but this may mean that we can no longer employ them as we have a legal obligation to keep certain data. In addition, even after a staff member has left our employment we have to keep some data for specific periods so won’t be able to delete all data immediately.
• If any individual about whom we hold data has a complaint about how we have kept their information secure, or how we have responded to a subject access request, they may complain to the Information Commissioner’s Office (ICO).
We comply with the requirements of the General Data Protection Regulation (GDPR), regarding obtaining, storing and using personal data.
This policy was adopted by: IzWiz Robotics
To be reviewed: Annually on 17th October
Signed: Emma Park
Written in accordance with the Statutory Framework for the Early Years Foundation Stage (2017): Safeguarding and Welfare Requirements: Information and records [3.68 -3.71].