(alt ? Switchboard Logo : null)Donate

Privacy Policy

Scope of this Privacy Policy

[ 1 ] This policy explains how and why Switchboard collects and uses your personal data when you visit our website or use our instant messaging, telephone and email services.

[ 2 ] This policy should be read in conjunction with the Confidentiality Policy and Terms of Service.

[ 3 ] Everything that we do is guided by our Values, including how we use your personal data. We use personal data for many reasons, from understanding how our service users engage with us to informing our fundraising. Ultimately, this allows us to do our job of supporting the LGBT+ community.

[ 4 ] These are the main reasons why we collect and use personal data about our service users:

[ 4.1 ] To improve service user experience;

[ 4.2 ] To provide and manage our services appropriately;

[ 4.3 ] To carry out data analysis and send you communications when we have your permission; and

[ 4.4 ] To enable us to target some services to those most in need of them.

[ 5 ] We think carefully about our use of personal data, and below are details of what we do to protect your privacy. This policy covers, among other topics:

[ 5.1 ] Information about your rights and our obligations;

[ 5.2 ] Clarity about our dealings with you and transparency about how we collect and use your personal data;

[ 5.3 ] Commitments on how we protect your personal data; and

[ 5.4 ] Commitments on how we will facilitate your rights and respond to your questions.

About this Privacy Policy

[ 6 ] This policy explains how we at Switchboard collect, use, share and transfer your personal data when you use the services provided by us or help us provide these services. When we refer to “we” or “us” in this privacy notice we are referring to Switchboard LGBT+ (registered charity number 296193). We are registered with the Information Commissioner Office with registration number Z8372307.

[ 7 ] Personal data is any information about you by which you can be identified. This can include information such as:

[ 7.1 ] Your name, date of birth, email address, postal address, phone number, mobile number;

[ 7.2 ] Debit card details;

[ 7.3 ] Information about your device (such as the IP address, which is a numerical code to identify your device that can provide information about the country, region or city where you are based);

[ 7.4 ] Information relating to your personal circumstances and how you use our site, apps and services; or

[ 7.5 ] Special category data is personal data about your race, ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, health, sex life or sexual orientation..

[ 8 ] Sometimes, as part of our services, we may provide links to third party sites and services. These sites and services have their own privacy policies. If you follow a link to a third party, you should read the privacy policy shown on their site.

Who We Are and How to Contact Us

[ 9 ] The designated Data Protection Officer for our sites and apps is the Secretary of Switchboard. If you want to contact us, you can Contact the Switchboard Office via our website or email using the email address admin@switchboard.lgbt.

What Personal Data We Collect and How We Use It

[ 10 ] We collect personal data, which we anonymise, when you use our services and when you browse our site or use our instant messaging service. This information is used to provide and improve our services and analyse how visitors use our site or instant messaging.

[ 11 ] We will only collect personal data for the purposes of providing specific services which need this, or for fundraising purposes. In each of these cases your permission will be sought to hold or use this information. Personal data provided for safeguarding referrals will be deleted after the referral has been made. All data is retained for no longer than 2 years from last contact.

[ 12 ] Personal data that we may collect from you could include any of the following:

[ 12.1 ] Your name;

[ 12.2 ] Your email address;

[ 12.3 ] Personal characteristics;

[ 12.4 ] Data needed for requested referrals and support e.g. geographical location, medical diagnosis.

[ 13 ] When you use our site or instant messaging, we may also use cookies or similar technology to collect extra data e.g. for Google Analytics, including:

[ 13.1 ] Your IP address – a numerical code to identify your device and which can provide information about the country, region or city where you are based; and

[ 13.2 ] Your browsing history of the content you have visited on our sites, including information on how you were referred to our sites via another website.

[ 14 ] Some of our services may give you the option of providing more information about your preferences, so that we can tailor your experience. Signing up to the mailing list or for a regular donation may also mean that we ask you for further details.

[ 15 ] We will only collect special category data if you have chosen to provide that information to us.

Using Your Social Media Details To Contact Us

[ 16 ] When you sign into our social media using your Facebook login details, you give permission to Facebook to share with us your email address and certain aspects of your Facebook profile if you have made these public on your Facebook profile. This only includes your first and last name, age range, link to your Facebook profile and profile picture. We do not have access to updates on your Facebook profile.

[ 17 ] When you sign into our social media using your Google login details, you give Google permission to share the information that you have made public in your Google profile. This only includes your first and last name, your email address and whether your email address has been validated, your age range, a link to your Google profile and, if you have one, your profile picture.

Using our Website and Instant Messaging

[ 18 ] Our instant messaging service and website may use information, which we later anonymise, on the content you have viewed. A list of the information that you have recently viewed is also cached in the local storage on your mobile or other device. You can delete this reading history in the settings.

How We Collect Personal Data

[ 19 ] We may collect identifiable personal data when you:

[ 19.1 ] contact us via phone, instant message or email to use our service and speak with one of our listening volunteers. For more information about this, please view our Terms of Service;

[ 19.2 ] Become a supporter;

[ 19.3 ] Contribute to funding and supporting Switchboard; and

[ 19.4 ] Attend our events.

[ 20 ] We may also collect personal data, which we anonymise, for example when you:

[ 20.1 ] Request information from us that requires specific personal details;

[ 20.2 ] Access our website; and

[ 20.3 ] Contact us via email, social media, instant messaging or similar technologies.

Why We Use Your Personal Data

[ 21 ] We use personal data for a number of purposes, including the following:

[ 21.1 ] To provide our listening volunteers service by phone, instant message or email or any other services you sign up for, such as sending out newsletters; and

[ 21.2 ] To send fundraising communications when we have your permission, or when permitted by law and for related internal administrative purposes – such as our accounting and records – and to make you aware of any changes to our services;

[ 21.3 ] To improve our fundraising communications, we use a similar technology to cookies to confirm whether you have opened a fundraising email or clicked on a link in the email;

[ 21.4 ] To respond to your queries and to resolve complaints;

[ 21.5 ] For security and fraud prevention, and to ensure that our sites and apps are safe and secure and used in line with our terms of use;

[ 21.6 ] To ensure that services offered by you or your organisation are genuine, non-exploitative and appropriate for our service users; and

[ 21.7 ] To comply with applicable laws and regulations.

[ 22 ] We also use personal data, which we anonymise, for a number of purposes, including:

[ 22.1 ] To carry out service research and fundraising analysis; for example we look at what you have viewed on our site, and what types of queries have been made, to better understand what the LGBT+ communities require from us, and to improve our services by making them more relevant to your needs; and

[ 22.2 ] For statistical purposes such as analysing the performance of our sites and apps and to understand how visitors use them.

Legal Grounds For Using Your Personal Data

[ 23 ] We will only use your personal data where we have a legal ground to do so. We determine the legal grounds based on the purposes for which we have collected and used your personal data. In every case, the legal ground will be one of the following:

[ 23.1 ] Consent: For example, where you have provided your consent to receive information from us. You can withdraw your consent at any time. In the case of fundraising emails or newsletters you can withdraw your consent by clicking on the “unsubscribe” link at the bottom of the email. We also ask for your explicit consent for any special category data that you choose to share with us.

[ 23.2 ] Our legitimate interests: Where it is necessary for us to understand our service users, promote our services and operate our services efficiently. For example, we will rely on our legitimate interest when we analyse what content has been viewed on our sites and apps, so that we can understand how they are used. It is also in our legitimate interest to carry out fundraising analysis to determine what products and services may be relevant to the interests of our supporters.

[ 23.3 ] Performance of a contract or agreement with you (or in order to take steps prior to entering into a contract with you): For example, where you have become a volunteer, staff member or trustee of the organisation.

[ 23.4 ] Compliance with law: In some cases, we may have a legal obligation to use or keep your personal data.

Personal Data That We May Receive About You From Other Organisations

[ 24 ] From time to time, another organisation may disclose your personal data to us while seeking appropriate advice or referral information. Where this is part of an ongoing organisational relationship, Switchboard will seek to ensure that the third-party organisation has appropriate privacy and data protection policies which it abides by. Any such information disclosed to us by third party organisations will be kept only for as long as needed to perform the task required.

Using Children’s Personal Data

[ 25 ] We do not aim any of our products or services directly at children under the age of 13 and we do not knowingly collect personal data about children under 13 except in exceptional circumstances for safeguarding purposes.

Security Of Your Personal Data

[ 26 ] We have implemented appropriate technical and organisational controls to protect your personal data against unauthorised processing and against accidental loss, damage or destruction. Volunteers are responsible for choosing a secure password when asked to set up a password to access parts of our site. Unfortunately, sending information via the internet is not completely secure. Although we will do our best to protect your personal data once with us, we cannot guarantee the security of any personal data sent to our site while still in transit and so you provide it at your own risk.

[ 26.1 ] In order to deliver our service, we engage with providers and technical support staff in other countries, including the United States of America. In some instances, they may have to access your personal information. We rely on relevant “adequacy regulations” from the UK Government by which they recognise that certain countries outside of the UK ensure an adequate level of protection for personal information. For example, we transfer personal information to the United States of America. Where personal information is transferred to recipients located in countries that have not been recognised as providing an adequate level of data protection (such as the United States of America), we put in place appropriate safeguards with the data recipients, such as the UK approved Standard Contractual Clauses. The Standard Contractual Clauses are a set of contractual terms approved by the UK Government that can be entered into by two or more parties. They allow a UK-based organisation to legally transfer personal information to a recipient (or recipients) located in a country that has not been recognised as providing an adequate level of protection to personal information.

Who We Share Your Personal Data With

[ 27 ] If you are going to one of our events hosted by an event partner, we may share your personal data with that partner for event administration purposes.

[ 28 ] Sometimes we may receive a letter, email or another form of communication from you that we consider to be significant to the history of Switchboard. We may decide to share this with the Switchboard Archive for historic and archiving purposes.

[ 29 ] We do not share your personal data with other people or organisations that are not directly linked to us except under the following circumstances:

[ 29.1 ] We may share your data with other organisations that provide services on our behalf (for example, service providers dealing with online payments and other forms of payment processing, i.e. credit card transactions and preventing fraud) or with our professional advisers (for example, our auditors, insurers and lawyers).

[ 29.2 ] We may also share your data with referral organisations, but this will always be with your explicit consent in advance.

[ 29.3 ] In exceptional circumstances such as imminent danger to life or ongoing safeguarding needs, we may reveal your personal data to any law enforcement agency, Local Authority Designated Officer (LADO) or Local Safeguarding Adults Board in England, or their equivalents in Scotland, Wales and Northern Ireland.

If we are required to share your personal data with a court, regulator, government authority or other organisation to meet a legal or regulatory obligation, or otherwise to protect our rights or the rights of anyone else.

How Long We Keep Your Personal Data

[ 30 ] Our standard retention policy is to retain data for two years after the last contact. However, how long we need your personal data depends on what we are using it for, as set out in this privacy policy. For example, we may need to use it to answer your queries about a service and as a result may keep personal data while you are still using our services. We may also need to keep your personal data for accounting purposes, for example, where you are a regular donor.

We will only keep your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of a legal claim connected to our relationship with you.

If we no longer need your personal data, we will delete it or make it anonymous by removing all details that identify you. If we have asked for your permission to process your personal data and we have no other lawful grounds to continue with that processing, and you withdraw your permission, we will delete your personal data. However, when you unsubscribe from fundraising communications, we will keep your email address to ensure that we do not send you any fundraising emails in future.

How We May Contact You

[ 31 ] We may contact you directly for a variety of purposes including the following:

[ 31.1 ] To communicate information requested on our services or as part of these services;

[ 31.2 ] To raise funds;

[ 31.3 ] To inform subscribers to our newsletters;

[ 31.4 ] To undertake market research; and

[ 31.5 ] If you have raised a query or a complaint with us, we may contact you to answer your query or to resolve your complaint.

Cookies And Similar Technology

[ 32 ] Our website uses both session and persistent cookies. A cookie is a file containing an identifier (a string of letters and numbers) that is sent by a web server to a web browser and is stored by the browser. The identifier is then sent back to the server each time the browser requests a page from the server.

[ 33 ] A persistent cookie will be stored by a web browser and will remain valid until its set expiry date, unless deleted by the user before the expiry date; a session cookie, on the other hand, will expire at the end of the user session, when the web browser is closed.

[ 34 ] Cookies do not typically contain any information that personally identifies a user, but personal information that we store about you may be linked to the information stored in and obtained from cookies.

[ 35 ] Most browsers allow you to refuse to accept cookies. Blocking all cookies will have a negative impact upon the usability of many websites.

[ 36 ] If you block cookies, you will not be able to use all the features on our website.

[ 37 ] You can delete cookies already stored on your computer. Deleting cookies will have a negative impact on the usability of many websites.

Your Rights With Regard To The Personal Data That We Hold About You

[ 38 ] You can contact us with regard to the following rights in relation to your personal data. We will normally deal with requests within one calendar month but, if your request is complicated or if you have made a large number of requests, it may take us longer, and we will let you know if we need longer than one month to respond. You will not normally have to pay a fee to exercise your rights, but we may charge a reasonable fee if your request is unfounded, repetitive or excessive.

You have the right to:

  • Request access to your personal data (commonly known as a subject access request). This enables you to receive a copy of the personal data we hold about you and to check that we are lawfully processing it.
  • Ask us to correct personal data that we hold about you which is incorrect, incomplete or inaccurate.

In certain circumstances, you also have the right to:

  • Ask us to erase your personal data from our files and systems where there is no good reason for us continuing to hold it.
  • Object to us using your personal data to further our legitimate interests (or those of a third party) or where we are using your personal information for direct marketing purposes.
  • Ask us to restrict or suspend the use of your personal data, for example, if you want us to establish its accuracy or our reasons for using it.
  • Ask us to transfer your personal data to another person or organisation.

[ 39 ] Where you have provided us with consent to use your personal data, you can withdraw this at any time.

[ 40 ] If you want to make any of these requests, please contact the Secretary. We may need to request specific information from you to help us confirm your identity. This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.

Contacting Us For Information About How We Use Your Personal Data

[ 41 ] If you have any questions about how we use your personal data or if you have a concern about how your personal data is used, please contact the Secretary. Complaints will be dealt with by the Secretary and will be responded to in line with legal requirements. If you are not satisfied with the way your concern has been handled, you can refer your complaint to the Information Commissioner’s Office.

Changes To The Privacy Policy

[ 42 ] If we decide to change our privacy policy we will post the changes here. If the changes are significant, we may also choose to email all our registered users with the new details. If required by law, we will get your permission or give you the opportunity to opt out of any new uses of your data.