PRIVACY POLICY
Dumbarton Credit Union Privacy Notice
We are committted to protecting the privacy and security of our members' personal information.
Any information marked as mandatory for membership is required to either meet legal obligations or to enable us to perform our contract with you. Where you are unable to provide us with this information, we may not be able to open an account for you. Where we request further information about you not required for these reasons, we will ask you for your consent.
How we use your personal information
Dumbarton Credit Union may process, transfer and/or share personal information in the following ways:
For legal reasons, to:
For performance of our contract with you, to:
For our legitimate interests, to:
With your consent, to:
Sharing your personal information
We will disclose information outside the credit union to:
Where we send your information
Dumbarton Credit Union does not directly send information to any country outside the European Economic Area, however, any party receiving personal data may also process, transfer and share it for the purposes set out above and in limited circumstances this may involve sending your information to coutries where data protection laws do not provide the same level of data protection as the UK. For example, when complying with international tax regulations we may be required to report personal information to the HM Revenue and Customs which may transfer that information to tax authorities in coutries where you are a connected person may be tax resident.
Retaining your information
Dumbarton Credit Union will need to hold your information for various lengths of time depending on what we use your data for. In many cases we will hold this information for a perid of time after you have left the credit union.
Credit Reference Agencies
To process credit applications that you make we will supply your personal information to credit reference agencies (CRAs) and they will give us information about you, such as about your financial history. We do this to assess credit worthiness and product suitability, check your identity, manage your account, trace and recover debts and prevent criminal activity.
We will continue to exchange information about you with CRAs on an ongoing basis, including about your settled accounts and any debts not fully repaid on time. CRAs will share your information with other organisations. Your data will also be linked to the data of your spouse, any joint applicants or other financial associates. This may affect your ability to get credit.
The identities of the CRAs, and ways in which they use and share personal information, are expalined in more details on:
YOUR RIGHTS
Your duty to inform us of changes
It is important that the personal information we hold about you is accurate and current. Please keep us informed if your personal information changes.
Your rights in connection with personal information
Under certain circumstances, by law you have the right to:
If your want to review, verify, correct or request erasure of your personal information, object to the processing or your personal data or request that we transfer a copy of your personal information to another party, please contact us as follows:
What we may need from you
We may need to request specific information from you to help us confirm your identity and ensure your right to access the information (or to exercise any of your other rights). This is another appropriate security measure to ensure that personal information is not disclosed to any person who has no right to receive it.
Time limit to respond
We will aim to respond to all legitimate requests within one month of receivng them and verifying your identity. Occasionally it may take us longer than this if your request is particularly complex and you have made a number of requests. In this case, we will notify you and keep you updated.
Complaints to the regulator
If you do not think that we have processed your data in accordance with this notice you have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues. You can contact them by going to their website at ico.org.uk, phoning them on 0303 123 1113 or by post to: Information Commissioner's Office, Wycliffe House, Water Lane, Wilsmlow, SK9 5AF.