The Shropshire Art Society takes its Data Protection obligations seriously and always works to comply with the latest legislation.
1. Some specific information for our members:
The personal information you give us, on your Membership Application Form, on your Annual Subscription Form, and on any other forms or in any other ways, throughout the membership year, is stored securely and is only accessible to authorised Shropshire Art Society Committee Members; your details may be disclosed to other people for the purposes of Shropshire Art Society business only, and will not be given to others for any other purpose.
When you join the Shropshire Art Society and when you renew your Annual Subscription, we ask you to sign to give your consent to your personal data being used by the Shropshire Art Society as described here, as required by the General Data Protection Regulation (GDPR) 2018. If you want us to completely remove/erase you from our systems, please email your request to our Secretary Frank Hilton at email@example.com
2. Regarding the general use of this website
a. Personal data
i. In general, we don’t collect any personal data e.g. name, email addresses via this website, as we do not use a Contact Form or Mailing List Subscription Form. We do not have a blog comment facility. If you email us for any reason via the email addresses given on this website, the email you send us, and any responses to it, will be stored in our G-Suite system; although G-Suite encrypts emails, we cannot guarantee that your email will be encrypted at all stages of its life. We will only use the information you send us to respond to your request. If you email us to ask us to add you to our Exhibition Preview Guest List we will contact you by email to gain the required consent to add you to that list.
iii. We do not collect IP addresses for tracking purposes; we do not use tracking software.
iv. The website uses Limit Login Attempts Reloaded security software which notes IP addresses to limit the number of login attempts from any IP address. This helps to prevent brute force attack login attempts by unauthorised users. We do this to keep our website protected and secure. However, we opt to turn on GDPR compliance, so all logged IP addresses get obfuscated (md5-hashed), which means you can’t be personally identified.
v. For your protection, we use Secure Sockets Layer (SSL) – a standard security technology for establishing an encrypted link between a server and a client – to encrypt any data sent between your browser and our website. You can tell we do this because our website url starts with https:// rather than http:// and your browser will tell you that our website is secure by showing the word ‘Secure’ and/or a green padlock icon or similar.
b. Cookies: our website does not place cookies.
3. How to contact us
Thank you for visiting our website.