GPC

Privacy Policy

Who we are

Gloucestershire Printmakers Co-operative offers extensive printmaking facilities at its studios at Griffin Mill, Stroud, GL5 2AZ. Our website address is: https://www.gpchq.co.uk.

Comments

We do not open this website for comments, and therefore do not store any such associated information.

Cookies

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

For users that register on our website as Members. When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

For users that register on our website as Members. If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

For users that register on our website as Members, we also store the personal information they provide in their user profile. All users can request to see, edit, or delete their personal information at any time. Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

 
Internal Data Protection Complaints Procedure
1. Purpose & Scope
This procedure outlines how [Company Name] receives, investigates, and resolves complaints regarding personal data processing under the UK Data Protection Act / UK GDPR.
2. Receipt and Acknowledgement (Strict 30-Day Deadline) [1]
  • Central Registry: All data complaints must be logged immediately in the Data Protection Complaints Register.
  • Timeline: The Data Manager must send a formal acknowledgment to the complainant within 30 days of receipt.
  • Content: The acknowledgment must confirm receipt, provide a reference number, and state the target resolution date. [1, 2]
3. Triage & Investigation
  • Assessment: The Data Manager will assess the nature of the complaint (e.g., SAR delay, data inaccuracy, unlawful processing).
  • Information Gathering: Relevant department heads must provide requested data logs or evidence within 5 working days.
  • Stop-the-Clock: If further clarification is needed from the complainant, the investigation clock pauses until they respond. [1]
4. Resolution & Communication
  • Outcome Report: The Data Manager will draft a formal response detailing the findings and any corrective actions taken.
  • Escalation Rights: Every final response must explicitly inform the individual of their right to lodge a complaint with the Information Commissioner’s Office (ICO)