Our website uses cookies. See our cookies page for information about them and how you can remove or block them. Click here to opt in to our cookies

Privacy Notice

Creative Scotland Website: Privacy Notice

Introduction

We are committed to safeguarding the privacy of our website visitors.  In this Privacy Notice we explain how we will access and use your personal information.

To help clarify some of the wording, a ‘Definitions’ Section is located at the bottom of this Privacy Notice.

What personal information does CS collect about me?

We may collect, store and use the following kinds of personal information:

* Information about your computer and about your visits to and use of this website including your IP address, browser type and version, operating system, referral source, length of visit, page views and website navigation paths

* Information that you provide to us including your name and email address to receive email notifications of newsletters and/or other information from one of the following mailing lists located on CS’ website: CS' Newsletter, Research Round Up, Artworks Scotland, Youth Music Initiative

* Information that you provide to us when using the services on our website, or that is generated in the course of the use of those services including the timing, frequency and pattern of service use

* Information contained in or relating to any communication that you send to us or send through our website including the communication content and metadata associated with the communication

Purpose(s) of using your personal information

Personal information submitted to us through our website will be used for the following purposes:

* Administer our website and business

* Personalise our website for you

* Enable your use of the services available on our website

* Send you email notifications that you have specifically requested

* Send you our email newsletter, if you have requested it you can inform us/unsubscribe at any time if you no longer require the newsletter

* Deal with enquiries and complaints made by or about you

* Keep our website secure and prevent fraud

Will CS share my personal data?

We may disclose your personal information to any of our employees, officers, insurers, professional advisers, agents, suppliers or subcontractors insofar as reasonably necessary for the purposes set out in this policy.

We may disclose your personal information:

* To the extent that we are required to do so by law;

* In connection with any ongoing or prospective legal proceedings;

* In order to establish, exercise or defend our legal rights including providing information to others for the purposes of fraud prevention

* To any person who we reasonably believe may apply to a court or other competent authority for disclosure of that personal information where, in our reasonable opinion, such court or authority would be reasonably likely to order disclosure of that personal information.

* Except as provided in this policy, we will not provide your personal information to third parties.

CS’ status

CS shall be the controller of the personal information and shall comply with the Data Protection Laws when processing the personal information.

What is CS’ legal basis for processing your personal information?

You are providing CS with your Consent for us to process your personal information by:

* accepting Cookies

* registering to receive CS’ newsletter and any other information

* providing any personal information to us when communicating through our online website services e.g. enquiries

How long will CS retain your personal information?

We will retain mailing list personal information for as long as you wish to continue to receive information from us. If you no longer wish to receive information from us you can unsubscribe from communications at any time.

We hope you continue to enjoy receiving the information we send you. However, if you have not accessed any of our emails for a period of one year, CS will remove your details from its mailing list(s).

Transfer of personal information outside the European Economic Area

CS shall ensure that if the processing of the personal information, as mentioned above, involves the transfer of the personal information to organisations established in countries outside the European Economic Area, then such transfer(s) shall comply with the Data Protection Laws.

Security of your personal information

We will take reasonable technical and organisational precautions to prevent the loss, misuse or alteration of your personal information.

We will store the personal information you provide on secure servers.

Please be aware that data transmission over the internet is inherently insecure, and we cannot guarantee the security of data sent over the internet.

Your Rights

When personal information about you is processed, you have the right to:

* Receive transparent information e.g. this Privacy Notice

* Access personal information – you have the right to request access to personal information held about you and can do this by contacting CS’ Data Protection Officer (contact details are provided below)

* Erase personal information – you can either request that your personal information be removed or you can unsubscribe from communications

* Rectify inaccurate or incomplete personal information – you can request your information to be updated

* Restrict personal information while, for example, a request for rectification of inaccurate or incomplete personal information is being reviewed by CS

* Object to processing of personal information in defined circumstances

Third party websites

Our website includes hyperlinks to, and details of, third party websites.

We have no control over, and are not responsible for, the privacy policies and practices of third parties.

Changes to this Privacy Notice

Any changes we may make to this Privacy Notice in the future will be posted on this page and, where appropriate, notified to you by e-mail.

Making a complaint

If you have any concerns with how we have processed your personal information, you should contact CS’ Data Protection Officer in the first instance, as we would welcome the opportunity to work with you to resolve any complaint.

The contact details for CS’ Data Protection Officer are as follows:

Vickie Ambrose
Data Protection Officer
Creative Scotland
2-4 Waterloo Place
Edinburgh
EH1 3EG
Telephone: 0131 523 0080
Email: vickieambrose@creativescotland.com

If you are still dissatisfied, you can submit a complaint to the Information Commissioners Office (ICO) either by telephone or by completing an online form. The ICO’s contact details are as follows:

Telephone: 0303 123 1113
Website link: https://ico.org.uk/concerns/

Definitions:

CS, We, Us, Our: Creative Scotland

You, Your, Yourself: means the living individual who the personal information is about

Access to Information Laws: includes the Freedom of Information (Scotland) Act 2002 and the Environmental Information (Scotland) Regulations 2004 and any legislation supplementary thereto introduced in Scotland

Data Protection Laws: includes the Data Protection Act 1998; the Privacy and Electronic Communications (EC Directive) Regulations 2003; any legislation implementing the Data Protection Directive 95/46/EC of 24 October 1995 or the Privacy and Electronic Communications Directive 2002/58/EC of 12 July 2002; the General Data Protection Regulation (EU) 2016/679 of 27 April 2016 (GDPR); and any legislation supplementary to the GDPR introduced in the United Kingdom

Controller: determines the purposes and means of processing personal information

European Economic Area: means the Member States of the European Union, Iceland, Norway and Lichtenstein

Personal Information: means information relating to a living individual who can be identified

Processing: means any act that is performed in relation to the personal information including collecting, recording, organising, structuring, storing, adapting, altering, retrieving, consulting, using, disclosing, aligning, combining, restricting, erasing or destroying