Privacy & GDPR Policy
Mission International Ltd (Mission Group) is a UK registered business, Company Number: 7645327.
Contact details for Mission Group are:
Address: | 20-22 Wenlock Road, London, N1 7GU |
Email: | info@missiongroup.org |
Telephone: | +44 (0)20 7043 3422 |
Mission Group is a controller of client and supplier contact information, required to; manage and deliver servicers under contract; manage client requests and incidents. Mission Group is also a controller for personal information in relation to Mission Group company employees.
Mission Group promises to respect any personal data shared with us. We also promise to keep client data safe and secure. We aim to be clear about what we will do with personal data when we collect it and not do anything with it that employees, clients and partners would not reasonably expect. Further, we guarantee that we will never sell or share personal data to a third party who may wish to use if for their own purposes.
Commitment to GDPR Compliance
Mission Group is committed to the principles inherent in the GDPR and particularly to the concepts of privacy by design, the right to be forgotten, consent and a risk-based approach.
In addition, Mission Group aims to ensure:
- Transparency with regard to the use of data;
- That any processing is lawful, fair, transparent and necessary for a specific purpose;
- That data is accurate, kept up to date and removed when no longer necessary;
- That data is kept safely and securely.
Information We Collect
The types of personal information that Mission Group collects may include:
- Name
- Geographic location
- Employer
- Participant responses to assessments questions and any resulting profile generated (including self-selected behaviours, preferences, and characteristics)
- Participant responses to training activities
- Any demographic information participants may provide
Cookies
Information Mission Group collects automatically when people visit our websites. We and our third-party partners, such as our analytics partners, collect information about visits to our websites and interactions with our content, together with information such as users’ IP address, cookies, and other tracking technologies (e.g., web beacons, device identifiers, and pixels).
Google Analytics – Mission Group’s websites use Google Analytics, a web analytics service provided by Google, Inc. ('Google'). Google Analytics uses 'cookies', which are text files placed on your computer, to help the website analyse how you use the site. The information generated by the cookie about use of the website (including a visitor’s IP address) will be transmitted to and stored by Google on servers in the United States. Google will use this information for the purpose of evaluating use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf. Google will not associate a visitor’s IP address with any other data held by Google. Visitors may refuse the use of cookies by selecting the appropriate settings on their browser, however, they may not be able to use the full functionality of the website. By using Mission Group’s websites, visitors consent to the processing of data by Google in the manner and for the purposes set out above.
Safeguarding & Security Measures
Mission Group takes the privacy and security of individuals and their personal information very seriously and are taking every reasonable measure and precaution to protect and secure the personal data that we process.
Mission Group ensures that there are appropriate technical controls in place to protect personal details. For example, Mission Group's network is secure, protected and routinely monitored.
Mission Group has dedicated information and security policies and procedures in place to protect personal information from unauthorised access, alteration, disclosure or destruction. Security measures implements throughout the business include, but not limited to:
- Hardware Firewalls
- Anti-Virus
- Two Factor Authentication (where applicable)
- Software Firewalls
- Data Encryption
- Password Protection
Mission Group undertakes regular reviews of who has access to information that we hold to ensure that personal information is only accessible by appropriately trained staff.
Data Subject Rights
In addition to the policies and procedures mentioned above that ensure individuals can enforce their data protection rights, we provide access to any personal information that Mission Group processes about them.
Such information may include:
- What personal data we hold about them
- The purpose of the processing
- The categories of personal data concerned
- The recipients to whom the personal data has/will be disclosed
- How long we intend to store your personal data for
- The right to have incomplete or inaccurate data corrected
- The right to erasure of personal data
- The right to lodge a complaint or seek judicial remedy and who to contact in such circumstances.
Third Party Processing
Suppliers who process personal data on behalf of Mission Group have been identified and asked to provide details of their state of compliance with the GDPR and where appropriate agree to new contractual arrangements. Any new supplier will not be taken on unless we are satisfied that they comply with the new data protection regulations.
Where we use external companies to collect or process personal data on our behalf, we do comprehensive checks on these companies before we work with them, and put a contract in place that sets out our expectations and requirements, especially regarding how they manage the personal data they have collect or have access to.
Some of our suppliers run their operations outside the European Economic Area (EEA). Although they may not be subject to same data protection laws as companies based in the UK, we take steps to make sure they provide an adequate level of protection in accordance with UK data protection law.
Mission Group may need to disclose details if required to the police, regulatory bodies or legal advisors. Mission Group will only ever share data in other circumstances if we have explicit and informed consent.
International Data Transfers
Mission Group complies with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use and retention of personal information transferred from the European Union and Switzerland to the United States, respectively.
Mission Group will only work with services provided with international providers if they have a GDPR compliant data policy.
Data Protection Officer
Mission Group is registered with the Information Commissioners Office (Reference Number: A8636960) and has appointed a Data Protection Officer (DPO).
The appointed Data Protection Officer for Mission Group is:
Name | Mr Rob Waite |
Email: | dpo@missiongroup.org |
Telephone: | +44 (0)20 7043 3422 |
Make a complaint
If you think your data has been misused, we advise you to contact the Data Protection Officer so the matter can be investigated.
If you are unhappy with our response or if you need any advice you should contact the Information Commissioner’s Office (ICO).
Email: | casework@ico.org.uk |
Telephone: | +44 (0)303 123 1113 |
Textphone: | +44 (0)1625 545 860 |
Address: | Information Commissioner’s Office, Wycliffe House Water Lane, Wilmslow, Cheshire, SK9 5AF |