Our commitment to privacy
Information privacy is important to the NAEP and this notice explains our information practices and the choices available about the way the NAEP uses the information we collect.
The information we collect
This notice applies to all information collected by or submitted to NAEP. The type of information collected by NAEP relates to business relationships with members of NAEP and of membership administration, finance and billing, customer care, delivery of services and NAEP’s own marketing and research purposes, the information we collect may include:
- Job titles
- Business address
- Business email address and phone numbers
- Organisation details
- Services offered
- Non-identifying and aggregate information
The way we use information
We collect and process information in a fair and proportionate manner from the organisation’s and staff who join NAEP, who make enquiries about NAEP services or attend our events. We use this information to help manage the day-to-day administration of NAEP membership or to send information that is requested as part of our normal business relationships.
Our processing may involve the reproduction or display of members’ business contact information in paper or digital form on private networks or display systems, including the NAEP web site. We may also use this information for marketing purposes relating to NAEP activities.
The information we collect will never be used to identify individuals outside of their business interaction with us – for example, we will never request personal contact details.
Processing of data relating to NAEP business is done fairly so it does not materially impact the rights, privacy or interests of anyone. We rely on one of three legal bases to undertake data processing, these are:
- Consent (for example where someone has requested to receive an email newsletter from us)
- Contractual Obligation (for example we may need to send legal agreements or invoices relating to services provided)
- Legitimate Interest (for example situations where it will be in our legitimate interests as part of running our business to contact members about NAEP activities)
If you agree, from time to time, NAEP may provide mailing services to selected third parties to introduce their products or services to NAEP members. We may also run online polls or surveys to improve the information we provide to members through our various channels of communication or to evaluate the quality of our services.
If you prefer not to receive any information other than that you have specifically requested you may choose to opt-out of future contact by using the appropriate unsubscribe link found on all of our marketing correspondence or by making a direct request as detailed below.
Cookies and other tracking devices
Cookies are information and other tracking devices that are sent to and stored on your computer. They are used to identify you when you visit our website. Cookies are used to remember passwords, usernames and your preferences as well as for example to correlate the number of individuals that visit a certain area on our website or social media channels.
How you can access your information (Subject Access Request)
You can request a copy of the information that we collect and maintain about you and your business by sending us an email to firstname.lastname@example.org
If you request your information to be edited or removed from our systems we will do this free of charge.
Links to third-party websites
There are links on the NAEP website and from our social media channels to third party websites and social media channels which we have no control over. We accept no responsibility or liability for any third party practices on third party websites. Data transmission over the Internet is never totally secure and whilst NAEP tries to protect your personal information, we cannot warrant the security of any information you transmit to us and you do so at your own risk.
NAEP is a data controller and data processor. We collect data as highlighted above and we process this data in accordance with the regular administration of membership services, quality certification and communication.
All information held by us and within our systems is protected through:
- Robust physical processes and procedures
- Encryption that adheres to all current data security protocols and international legislation
Electronic information about our members and business partners is held on our systems indefinitely unless we receive a request to remove this data. Paper-based information will be destroyed after a period of 12 months.