What is a cookie?
A cookie is a small file that is sent to your computer or mobile phone which contains information that allows us to recognise that you have used our website before. A cookie typically contains:
- The name of the server the cookie was sent from
- The lifetime of the cookie
- A unique identifier (usually a number)
Our website server sends the cookie and uses this number to recognise you when you return to a site or browse from page to page. Only the server that sends a cookie can read it, and therefore use, that cookie. This file is stored on your computer’s (or phone’s) hard drive. All websites can send a cookie to your browser if your browser settings allow it. Many websites do this to track on-line traffic flow.
Cookies can be categorised from their life span:
- Session or temporary cookies: these cookies expire when you close your browser or when the session times out
- Persistent or permanent cookies: these are usually stored on your hard disk and survive across multiple sessions but have a longer expiration date
When you visit our website, the pages that you see, together with a cookie are downloaded to your device. This is a common practice on websites, because it allows website publishers to find out (amongst other things) whether the website has been visited before
The main cookies we use on our website are classed as ‘Strickly Necessary Cookies’. These cookies make our website function correctly e.g. online donations. These cookies do not need consent.
The website does use Google Analytics to store information about how well the website is performing. To opt out of being tracked by Google Analytics across all websites visit – http://tools.google.com/dipage/gaoptout.
How to control or delete Cookies
If you do not want cookies to be stored on your PC it is possible to disable this function within your browser without affecting your navigation around the site.
In Internet Explorer, click on Tools, click on Settings, click on the Privacy tab and then use the slider bar to choose the level of privacy you want.
In Firefox, click on Tools, click on Options, click on Privacy, click on the Cookies tab and choose your level of privacy.
For other browsers, visit allaboutcookies.org.
Permission to Hold and Use Personal Data
Arthritis Action receives personal data from members, volunteers, other individuals, contractors and companies which may include details such as name, address, date of birth, occupation, illness and date of diagnosis. Arthritis Action does not hold personal data without the permission of the person concerned. In the case of a child (under 16 years of age), the parent/guardian has to sign on the child’s behalf.
How and Where Personal Data is Held within Arthritis Action
Personal data is held on the Arthritis Action computer network in Arthritis Action’s offices.
Arthritis Action Groups may hold a file record and/or information on an Organising Team member’s computer about Arthritis Action Group members who have agreed to their personal data being passed from the Arthritis Action Offices to a Group.
Arthritis Action has established security procedures to prevent unauthorised access to personal data in the Arthritis Action Offices or in a Volunteers’ home.
How Personal Data is used
In the Arthritis Action Offices, the personal data is used for:
Sending appropriate information; processing of membership subscriptions, donations and covenants; sending approved questionnaires; sending mailings related to the services and activities of Arthritis Action; Statistical purposes.
At Arthritis Action, the personal data is used for:
Contacting members; sending mailings relating to Group services or activities; sending approved questionnaires; statistical purposes; research opportunities; sending the Arthritis Action Magazine and e-news and general information about Arthritis Action.
Data and Other Organisations
Arthritis Action uses an external company to maintain its website and some personal data (name, address, age, etc.) may be held in a database on the computer which runs the Arthritis Action Website. Arthritis Action has a contract with the external company which governs how data is kept secure and confidential.
Occasionally the Arthritis Action database and Arthritis Action computer system require maintenance support from the supplier companies. Arthritis Action has contracts with both companies that impose confidentiality obligations on them and their staff in relation to Arthritis Action’s data.
Arthritis Action does not provide data to any other organisation and does not exchange mailing lists with other charities or companies.
Time for which Data is kept
Following cancellation of membership with Arthritis Action, the Charity will hold personal data for seven years for financial purposes. To conform to Financial Law requirements and comply with Insurance Company rules, medical records, where applicable, will be kept for 10 years.
Access to Records
Individuals can apply for a printed copy of their records held at Arthritis Action by writing to the Chief Executive. Arthritis Action may make a charge for supplying a copy of such information.
Data Protection Compliance Officer
The Data Protection Compliance Officer for Arthritis Action is the Chief Executive, who can be contacted by writing or telephoning:
The Chief Executive, 56 Buckingham Gate, 2nd Floor, SW1E 6AE
Tel: 0203 781 7120
This policy will be reviewed annually, and amendments will be agreed by the Board of Trustees.
- Does not enter into any commercial agreement that would allow its independence or credibility to be compromised.
- Should not recommend any specific product or service to members and should not encourage members to use a service or buy a product out of loyalty to the charity.
- Does not carry advertisements or accept payments or donations for goods or services referred to in its national newsletter, on its website or in its leaflets.
- May receive an income from companies who provide goods or services for people affected by arthritis, who request a link from the national Arthritis Action website. Approval for such links rests with the Chief Executive whose decision will be based on the potential benefit of the goods or services to people affected by arthritis rather than financial reward for the charity. The inclusion of a link from the national website does not imply an endorsement or recommendation, and a disclaimer to this effect will be included each time a link appears.
Arthritis Action Groups:
- Must not enter into any commercial agreement and if approached should inform the Arthritis Action office immediately.
- Should acknowledge donations and support given for Arthritis Action activities in a way that does not constitute advertising.
- Should not see any reference to goods or services as an implied endorsement or recommendation. A disclaimer to this effect must be included in any media where goods or services are mentioned.