Our core data protection obligations and commitments are set out in Bradford Children and Families Trust’s (the Trust) main Privacy Notice .
This notice provides additional privacy information for those accessing the Trust’s Children’s Social Care services and describes how we use and share personal information about you and the types of personal information needed to process, including information the law describes as ‘special’ because of its sensitivity.
What information do we collect?
We may collect some or all of the following information about you:
- personal information (such as name, date of birth and address)
- characteristics (such as gender, ethnicity and disability)
- information relating to episodes of being a child in need (such as referral information, assessment information, Section 47 information, Initial Child Protection information and Child Protection Plan information)
- episodes of being looked after (such as important dates, information on placements)
- outcomes for looked after children (such as whether health and dental assessments are up to date, strengths and difficulties questionnaire scores and offending)
- adoptions (such as dates of key court orders and decisions)
- care leavers (such as their activity and what type of accommodation they have)
Who uses this information?
Children’s Specialist Services (Children’s Services) officers use this information. It may also be used by other trusts and government departments where it is legal to do so. See the section on ‘Who are we likely to share this information with?’.
We use this personal data to:
- support these children and monitor their progress
- provide them with pastoral care
- assess the quality of our services
- evaluate and improve our policies on children’s social care
- help us work with your to provide an effective service
- help us improve services through research and planning
Why do we use this information?
We use this information to support families and ensure that children and young people can access education and receive the support they require as well as mitigate risks and the effective identification of need.
What authority does the Trust have to collect and use this information?
Under the UK General Data Protection Regulations, the following categories of lawfulness apply:
6(1)(a) Consent of the data subject
6(1)(b) Processing is necessary for the performance of a contract with the data subject or to take steps to enter into a contract
6(1)(c) Processing is necessary for compliance with a legal obligation
6(1)(d) Processing is necessary to protect the vital interests of a data subject or another person
Legal obligation or public task under various UK laws including but not limited to:
- The Children Act 1989, 2004
- The Health & Social Care Act 2012
- The Health and Social Care (Safety and Quality) Act 2015
- The Education Regulations 2013
- The Children and Social Work Act 2017
- The Care Act 2014
- The Mental Capacity Act 2005
- Mental Health Act 1983
- Local Safeguarding Children & Adults Boards Regulations 2006 (SI 2006/90)
- the Localism Act 2011
- The Crime and Disorder Act 1998
- The Welfare Reform Act 2012
- The Childcare Act 2006
- The Equality Act 2010
Who are we likely to share this information with?
We may sometimes share the information we have collected about you where it is necessary, lawful and fair to do so. In each case we will only share the minimum amount of information, only when required, for the following reasons:
With other departments within the Trust, Bradford Council, and partners such as Health, the Police, and the Department for Education (DfE) when needed to:
- Safeguard vulnerable children and young people
- Develop national and local policies, administer and allocate funding and identify and encourage good practice
How do we keep this information secure?
We have appropriate security measures in place to prevent personal information from being accidentally lost, used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
We also have procedures in place to deal with any suspected data security incidents and we will notify you and the appropriate regulator of any incident where we are legally required to do so.
When computers make any decisions about you
Currently we do not have a system that automatically alerts another system. In the near future CP-IS will be implemented that will automatically alert the NHS when a child or young person has a CP plan.
When your data gets sent to other countries
For liaison with courts or when a child is placed abroad.
Rights for individuals under UK GDPR
What are your rights?
Please contact the Corporate Information Governance Team at firstname.lastname@example.org to exercise any of your rights, or if you have a complaint about why your information has been collected, how it has been used or how long we have kept it for.
You can contact our Data Protection Officer at email@example.com or write to: Data Protection Officer, Sir Henry Mitchell House, 4 Manchester Road, Bradford, BD5 0QL
The UK GDPR also gives you the right to lodge a complaint with the Information Commissioner’s Office who are the supervisory authority responsible to regulate and monitor the legislative obligations within the UK and can be contacted on 03031 231113.