We are committed to ensuring that personal information is held fairly, lawfully, and securely in accordance with privacy laws.

This privacy notice (together with any other documents referred to and/or linked within it) explains how any personal information we collect about you, or that you provide to us, will be used by us when providing our services and carrying out our functions as a Local Authority. Find more information about how services use your data in their individual privacy notices.

Why we collect personal information

We collect personal information for council business and service provision, including details of customers, employees, suppliers, and other contacts.

How we use your information

We use your data to provide services, communicate with you, plan our services, improve your experience, personalize your experience and for legal purposes including crime and fraud prevention.

Your data may be shared with other government parts, councils, and delivery partners as required for services or by law.

We do not share your data for marketing purposes without your consent.

AI tools such as Microsoft CoPilot may be used for the administration and formatting of data. At no stage will your data be used to train a language model, and all decisions on your data will be made by an employee.  Where an AI tool has been used, it will be clearly stated.

Personal data we collect

We collect various personal data for different purposes including name, contact details, demographic data, financial data, and health and care data.

Reasons we share personal data

We share your data to provide services, prevent crime, and comply with legal obligations with organisations like third-party service providers, central government, health and social care, and police.

Website cookies and similar technologies

Our websites uses cookies for service delivery and analysis. See our Cookie Policy for more information.

Data retention and security

We ensure data security through various measures and dispose of data according to our retention policy.

Download the Records Retention Schedule

Data Protection and GDPR compliance

UK GDPR , The Data Protection Act 2018 and the Data Use and Access Act 2025 govern how we collect, store, process, and distribute personal data. This data management must comply with such legislation, regardless of whether the information is held digitally or on paper.

Under Data Protection law, you have rights to data correction, erasure, access, and complaints about data processing. For more information about Data Protection and your rights, see:

Contact the Data Protection Officer

Was this webpage helpful?