top of page

Data Protection Policy

 

Effective Date: 7th September 2023

 

1. Introduction

 

This Data Handling and Protection Policy outlines how CareShared.org ("we," "our," or "the platform") handles and protects personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

 

2. Definitions

 

- **Personal Data:** Any information relating to an identified or identifiable natural person ("data subject").

 

3. Data Collection and Processing

 

a. Data Collection Purpose: We collect and process personal data for the primary purpose of facilitating childcare exchange connections between users on our platform.

 

b. Data Minimisation: We only collect and process personal data that is necessary for the intended purpose. Users are encouraged to provide accurate and up-to-date information.

 

c. Consent: Users are informed and must provide explicit consent for the collection and processing of their personal data when using our platform.

 

4. Data Security

 

a. Data Encryption: Personal data is encrypted in transit and at rest using industry-standard encryption protocols.

 

b. Access Control: Access to personal data is restricted to authorized personnel with a legitimate need-to-know basis.

 

c. Data Breach Response: In the event of a data breach, we will promptly assess the breach, take appropriate remedial actions, and notify affected individuals and regulatory authorities as required by GDPR.

 

5. User Rights

 

a. Access and Rectification: Users have the right to access their personal data and request corrections or updates.

 

b. Data Portability: Users can request the transfer of their personal data to another data controller.

 

c. Data Erasure: Users have the "right to be forgotten" and can request the deletion of their personal data, subject to legal retention obligations.

 

6. Data Sharing and Disclosure

 

a. Third-Party Processors: We may engage third-party processors to assist in data processing, but we ensure they comply with GDPR requirements.

 

b. Legal Obligations: Personal data may be disclosed to comply with legal obligations, including requests from law enforcement or regulatory authorities.

 

7. International Data Transfers

 

a. EU Adequacy: If we transfer personal data outside the European Economic Area (EEA), we ensure adequate safeguards are in place, such as using standard contractual clauses or relying on GDPR-approved mechanisms.

 

8. Data Protection Officer (DPO)

 

We have appointed a Data Protection Officer responsible for overseeing data protection efforts and ensuring GDPR compliance. You can contact the DPO at info@sueredmond.com

 

9. Policy Review

 

This Data Handling and Protection Policy will be reviewed regularly to ensure compliance with GDPR and any relevant changes in data protection laws.

 

10. Contact Information

 

For any questions or concerns regarding data protection and this policy, please contact us at info@careshared.org

 

By using CareShared.org, you acknowledge and accept the terms of this Data Handling and Protection Policy.

CareShared.org

bottom of page