• value the personal information entrusted to us and make sure that we respect that trust
• go further than the letter of the law when it comes to handling personal information, and adopt good practice standards
• consider and address the privacy risks first when we are planning to use or hold personal information in new ways, such as when introducing new systems
• be open with individuals about how we use their information and who we give it to
• make it as easy as possible for individuals to access and correct their personal information
• keep the personal information that we hold to the minimum necessary
• have effective safeguards in place to make sure personal information is kept securely and does not fall into the wrong hands
• provide training to staff who handle personal information, investigate any information security incidents, and treat it as a disciplinary matter if staff are found to misuse or not look after personal information properly
• put appropriate financial and human resources in place to look after personal information so that we can live up to our commitment
• regularly check that we are meeting our commitment and look for ways to make it even stronger.
When we provide services, we want to make them easy, useful and reliable. Where services are delivered on the internet, this sometimes involves placing small amounts of information on your computer or mobile phone.
These include small files known as cookies. They cannot be used to identify you personally. More information can be found here.