Privacy Statement
Who are we?
The Windmill Trust provides specialist, creative therapy to children and young people in Cumbria requiring mental health support.
Our vision is a future where, regardless of economic background, children and young people have access to researched, effective therapeutic interventions to alleviate distress and ward against long-term mental health issues.
The mission of The Windmill Trust is to provide researched, effective therapeutic interventions to children, young people and families in West Cumbria, helping to reshape the impact of trauma, one child at a time.
The Windmill Trust is the controller for the personal information we process unless we state otherwise.
You can contact us about data privacy by email, post or phone via the Charity Manager, The Windmill Trust, 78 Appleby Road, Kendal, Cumbria, LA9 6HF, or email admin@thewindmilltrust.org or call us on 07708 650696.
Our Registered Charity number: 1195160
This Privacy Statement explains how and why we use your personal data, to ensure you remain informed and in control of your information.
What type of personal information do we collect?
We collect, process and store three main types of personal information:
-
clinical records in order to ensure clients are provided with appropriate and supportive services
-
recruitment and HR records about our employees, contracted practitioners and volunteers in order to fulfil our record keeping obligations as employers and contractors
-
supporter records relating to our fundraising activities in order to comply with legal and financial obligations and to keep them informed
​
How do we obtain your personal data?
Most of the personal data we process is provided to us directly by you when you:
-
use our clinical services
-
apply for a practitioner role
-
apply for a job or volunteering role
-
sign up to one of our training sessions
-
request information about our activities and services
-
make a donation to us
-
fundraise on our behalf
-
register for an event
-
enter into a contract with us
-
get in touch with us via phone, website or other method
The type of information we collect will vary according to how you are engaging with us and we always ensure we only collect the information necessary to fulfil this engagement.
Sometimes we collect your personal information indirectly from third-party fundraising organisations including Charities Aid Foundation (CAF) and JustGiving when you use their services to make a donation to us or sign up for school training. These third parties only share your information with us with your consent. You should check their Privacy Notices when you provide your information to understand fully how they will process your data.
You may also provide personal information to us when you visit The Windmill Trust’s pages on social media, e.g. Facebook or Instagram, or when you visit our website. Our website uses cookies to support functionality, improve the security of the site and allow pages to be shared by social networks.
For more information about cookies, please read our Cookies Notice.
How we Handle Clinical Records
We recognise that the information we collect to support our clinical work is likely to include sensitive personal data, so we handle our clinical records very carefully including but not limited to the following ways:
-
we obtain consent to process personal data
-
for children, we obtain parental written consent and a child’s verbal or written consent to process personal data
-
we keep brief and factual notes on children and families which are kept digitally on a password protected, cloud-based system; in a locked filing cabinet or in a portable, locked file box.
-
all information is kept securely and access is highly restricted to trained staff bound by confidentiality agreements
-
information may be used for monitoring and evaluation purposes in order to improve current and future delivery of services
-
information is anonymised when shared or used for evaluation and reporting
-
if diversity information is collected, all reporting will be anonymised
-
data are only shared where The Windmill Trust has a legal obligation to do so or to protect the vital interests of an individual
How we handle HR and recruitment records
We use personal data that you provide to:
-
process an application for employment, volunteering, placement or practitioner role: we may process your data to ascertain suitability and for the performance of contract (or prior to entering into a contract)
-
share appropriately with the third party, external payroll bureau and pension provider and HM Revenue & Customs
-
maintain an employment relationship
The above list is supplied for illustration and is not exhaustive.
How we Handle Fundraising Data
We use personal information to fundraise, process donations and stay in touch with our supporters to:
-
thank them and keep them updated on what we have achieved with their support
-
let them know about any events or opportunities that may be of interest to them
Our electronic marketing (email and telephone) is only undertaken with your prior consent and postal marketing is only undertaken where there are legitimate interests. In order to do this effectively, we sometimes use third parties to store and process personal information linked to our fundraising activities:
-
to process your payments, including donations, to The Windmill Trust, some information may be passed to payment processors. Please refer to their privacy statements
-
when we share our data with these third-party providers, these “data processors” act only under our instructions and are not permitted to use your information for their own purposes