Data Protection Register

Registration Number: Z3318712

Date Registered: 03 December 2012    Registration Expires: 02 December 2022

Data Controller: Police and Crime Commissioner for Gloucestershire

Address:

No 1 Waterwells
Waterwells Drive
Quedgeley
Gloucester
GL1 2AN

This data controller states that it is a public authority under the Freedom of Information Act 2000 or a Scottish public authority under the
Freedom of Information (Scotland) Act 2002

This register entry describes, in very general terms, the personal data being processed by:

Police and Crime Commissioner for Gloucestershire

Nature of work – Police and Crime Commissioner

Description of processing

The following is a broad description of the way this organisation/data controller processes personal information. To understand how your own personal information is processed you may need to refer to any personal communications you have received, check any privacy notices the organisation has provided or contact the organisation to ask about your personal circumstances.

Reasons/purposes for processing information

We process personal information as a police and crime commissioner to improve accountability within the police force and ensure that our local police force is combating issues important to our local community; managing our staff, maintaining our accounts and records, promoting our services and activities, carrying out research, and use of CCTV systems for crime prevention.

Type/classes of information processed

We process information relevant to the above reasons/purposes. This may include:

• personal details
• education and employment details
• financial details
• goods and services
• family details
• lifestyle and social circumstances
• visual images, personal appearance and behaviour

We also process sensitive classes of information that may include:

• offences and alleged offences
• criminal proceedings, outcomes and sentences
• racial and ethnic origin
• religious or similar beliefs
• trade union membership
• physical or mental health or condition

Who the information is processed about

We process personal information about:

• staff
• clients
• suppliers
• advisers and professional experts
• complainants, enquirers
• members of the public
• individuals captured by CCTV images
• recipients of police services

Who the information may be shared with

We sometimes need to share the personal information we process with the individual themself and also with other organisations. Where this is necessary we are required to comply with all aspects of the Data Protection Act (DPA). What follows is a description of the types of organisations we may need to share some of the personal information we process with for one or more reasons.

Where necessary or required we share information with:

• business associates, advisers
• consultants and other professional experts
• other P.C.C.s
• family, associates and representatives of the person whose personal data we are processing
• suppliers and providers of goods and services
• healthcare and social and welfare advisers or practitioners
• financial organisations
• police forces and security organisations
• local and central government
• credit reference agencies, debt collection and tracing agencies
• research organisations
• data processors
• traders in personal data
• employment and recruitment agencies
• ombudsmen and regulatory authorities
• press and the media

Transfers

It may sometimes be necessary to transfer personal information overseas. When this is needed information is only shared within the European Economic Area (EEA). Any transfers made will be in full compliance with all aspects of the data protection act.