Privacy Notice
Privacy Notice for www.napic.ac.uk
This privacy notice has been updated in line with the General Data Protection Regulation.
1. Purpose of this Notice
This Notice tells you how NAPIC will collect and use your personal data when you access this website. The University of Leeds is the ‘controller’ of this personal data for the purposes of the data protection legislation.
Note that additional information will be provided where you are requested to enter personal information and this will vary between our various websites. (Information will be provided through the relevant privacy notice for that website).
It is important that you read this Notice together with any other privacy notice we provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data. This Notice supplements the other notices and is not intended to override them.
2. Changes to this Notice
We keep the information provided in this Notice under review. This Notice may be updated from time to time. If we make any substantial updates, we will draw these to your attention.
We will not use your personal data in any manner that is incompatible with the purpose for which the data were collected originally, unless we have obtained your consent to that additional use.
3. Purpose of processing your data
Where we request personal data from you on our website you will be informed at that time of the purpose for which the data will be processed and how it will be processed, its legal basis for processing as well as any transfers to third parties. The University is committed to keeping your personal data safe, our responsibilities are set out in our Data Protection Code of Practice
4. Purpose of processing - automated collection of personal information
Where we request personal data from you on our website you will be informed at that time of the purpose for which the data will be processed and how it will be processed, its legal basis for processing as well as any transfers to third parties. The University is committed to keeping your personal data safe, our responsibilities are set out in our Data Protection Code of Practice
5. Third-party access
The personal data that you have provided will not routinely be sent to third parties (unless notified – see section 3).
Exception: 100% online distance learning postgraduate courses
The University works with third party partners (Pearson PLC) who handle admissions enquiries and recruitment for some of our 100% online distance learning postgraduate courses. If you submit an enquiry through the online form published on the associated course pages, our partner organisation will use your personal data to respond to your enquiry, and provide you with information on relation opportunities, if you opt-in to receive them. If you choose to apply for the course, your data will be entered into the University’s application system so we can consider your application. These partners are only allowed to use your data in accordance with the strict instructions of the University. Neither partner will use your data in any other way nor will they share it with any other organisation.
6. Data retention
The University’s policies on retaining data for prospective and current students, staff and job applicants are detailed in our Data Retention Schedule.
In other cases, for example, if you subscribe to news or events, any retention of data will be made clear at the point of collection.
7. Cookies
You can use the cookie settings pop-up — the ‘review cooking settings’ button on this page — to manage your cookies.
Cookies are small text files that are placed on your device by websites that you visit.
We use cookies for the following purposes:
- Essential: To help our website function
- Performance tracking: Track how our website is used and help us make improvements
- Marketing: To inform targeted advertising.
Further information about cookies can be found on the Information Commissioner’s Office website.
8. Your duty to inform us of changes
It is important that the personal data the University holds about you is accurate and current. Please keep us informed if the personal data you have provided to us needs to be updated.
9. Your rights as a data subject
Under the GDPR, in certain circumstances, you have the right to:
- withdraw your consent to our processing of your personal data where that is the legal basis for such processing
- access any of your personal data which we hold
- have your personal data which we hold corrected if it is inaccurate
- have any of your personal data which we hold erased
- restrict the ways in which we process your personal data
- object to our processing of your personal data
- receive a copy of any of your personal data which we hold in a structured and commonly used machine-readable format
- in certain cases not be subject to a decision based solely on automated decision making
- lodge a complaint with a supervisory authority.
10. Queries and complaints
If you have any queries or concerns relating to this privacy notice or the way your data is being processed through this website then please contact the University’s Data Protection Officer, Rebecca Messenger-Clark.
Email the Data Protection Officer: dpo@leeds.ac.uk
The UK’s regulator for the Data Protection Act (DPA) and GDPR is the Information Commissioner’s Office (ICO). The University is registered as a Data Controller with the ICO.
Should you be dissatisfied with our handling of your concerns you have the right to complain to a supervisory authority. In the case of the UK this is the Information Commissioner’s Office.