We at Sonnet Care Homes (Essex) Ltd, known as Sonnet Care Homes, are a company incorporated in England and Wales. Our company number is 2041750 and our registered address is Deanery Hill, Bocking, Essex CM7 5SR.
Sonnet Care Homes is committed to ensuring that your privacy is protected. We will continue to comply with the provisions of the Data Protection Act (“DPA”) until 25 May 2018, after which we will comply with the General Data Protection Regulation ((EU) 2016/679) (“GDPR”) unless and until the GDPR is no longer directly applicable in the UK, together with any national implementing laws, regulations and secondary legislation as amended or updated from time to time in the UK, and any successor legislation to the GDPR and the DPA (together “Data Protection Legislation”).
We are the data controller of data you pass to us pursuant to this policy. The people responsible for data protection are :Julia Clinton firstname.lastname@example.org and Jo Moore email@example.com
Information you give Sonnet Care Homes: You may give us information about you by completing enquiry forms on the website or by requesting via the website that we send you marketing information, or by applying for or enquiring about employment with Sonnet Care Homes. The information you give us may include your name, email address, address/location and phone number, the type of care you are looking for.
We will retain this information while we are corresponding with you or providing services to you or to a Service User you represent. We will retain this information for eight years beyond the end of your contract of residency or six years beyond the end of your contract of employment, as applicable. If you do not enter into a contract of employment or residency we will retain this information for one year, we do this to allow us to review admission and employment decisions in the event of a complaint or repeat contact.
Information Sonnet Care Homes collects about you: Sonnet Care Homes may collect the following information from you when you visit the website:
We retain this information for one year.
Information we receive from other sources: This includes information we receive about you when you use other websites operated by us or other services we provide. This information may include your name, email address, postal address and phone number. We will retain this information for one year.
Visitors (including contractors)
It is a legal requirement of NHS Test and Trace that we collect names and contact details for all visitors to our care homes. This information is retained in hard copy only for 21 days and then securely destroyed. In the event of an outbreak at the home we will share the contact details of any visitors deemed to have close contact with an infected person within 21 days of the first positive case.
For residents and our team
During the pandemic we are required to offer regular testing to our team and our residents. Each test performed is registered in the coronavirus section of www.gov.uk along with the details of the person who has tested. The results of each test and the contact details of the person who has tested are subsequently shared with NHS test and Trace.
Throughout the pandemic we are from time to time required to share team and resident details with public bodies that have a legitimate interest in this information, for example, CQC, PHE, ECC, NHS, CCG including GP practices. To date information requests from these bodies have been in respect of any positive cases of COVID-19 and/or the vaccination programme.
Sonnet Care Homes may use the information we receive and/or collect about you to:
Sonnet Care Homes processes personal information for certain legitimate business purposes, which include some or all the following:
If we obtain consent from you to do so, we may provide your personal details to third parties so that they can contact you directly in respect of services in which you may be interested.
Where we are processing personal data we have obtained via the website on the basis of having obtained consent from you, you have the right to withdraw your consent to the processing of your personal data at any time. If you would like to withdraw your consent or prefer not to receive any of the above-mentioned information (or if you only want to receive certain information from us) please let us know by contacting us via the following webpage: https://www.thenewdeanery.co.uk/gdpr-information-requests/. Please bear in mind that if you object, this may affect our ability to carry out the tasks above for your benefit.
If you wish to have your information removed from our database or if you do not want us to contact you for marketing purposes, please let us know by clicking the “Unsubscribe” option in any email we send to you and providing the details requested or by contacting us via the following webpage https://www.thenewdeanery.co.uk/gdpr-information-requests/ and we will take steps to ensure that this information is deleted as soon as reasonably practicable.
We will not share, sell or distribute any of the information you provide to us (other than as set out in this policy) without your prior consent, unless required to do so by law.
Where we have given you (or where you have chosen) a password which enables you to access certain parts of the website, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Protecting your security and privacy is important to us and we make every effort to secure your information and maintain your confidentiality in accordance with the terms of the Data Protection Legislation. The website is protected by various levels of security technology, which are designed to protect your information from any unauthorised or unlawful access, processing, accidental loss, destruction and damage.
We will do our best to protect your personal data but the transmission of information via the Internet is not completely secure. Any such transmission is therefore at your own risk.
We may share your personal information with any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the Companies Act 2006. We may share your information with selected third parties including:
Please note we may need to disclose your personal information where we:
We may transfer your data outside of the EEA. If we transfer your personal data out of the EEA, we do our best to ensure a similar degree of security of data by ensuring at least one of the following safeguards is implemented:
If none of the above safeguards is available, we may request your explicit consent to the specific transfer. You will have the right to withdraw this consent at any time.
If any of the information you provide to us via the website changes, please let us know as soon as possible so that we can make the necessary changes to the information we hold for you on our database. If you wish to make any changes to your information, please contact us via the following webpage: https://www.thenewdeanery.co.uk/contact-us/
If you wish to access or rectify the information we hold about you, or request that such information be transmitted directly to another data controller, please contact us via the following webpage: https://www.thenewdeanery.co.uk/gdpr-information-requests/. We shall process your request to access your information within one month of receipt, or we’ll let you know within that time frame if we need more information from you. We will process your request free of charge.
To request that your information is deleted or if you wish to restrict or object to the processing of your information, please contact us via the following webpage: https://www.thenewdeanery.co.uk/gdpr-information-requests
If you have any complaints about our use of your personal data, please contact us. You also have the right to complain to the relevant supervisory authority in your jurisdiction. In the UK, the supervisory authority is the Information Commissioner’s Office. Contact details for the ICO can be found at https://ico.org.uk/.