Data Subject Access

Glenfield Parish Council takes your data privacy seriously.

If you wish to find out what information Glenfield Parish Council holds about you please contact us providing your contact details, a brief description of the information you require and enclose proof of your identity. This could be a scanned copy of a household bill, passport or driving licence.

You will normally receive a response to your request within 20 days.

Please send your request to:

email address: admin@glenfieldparishcouncil.org.uk

postal address: Park House, Stamford Street, Glenfield, Leicester, LE3 8DL

clearly marked Glenfield Parish Council Subject Access Request

What must we do?

  1. MUST: On receipt of a subject access request we must forward it immediately to the Parish Manager, or in their absence, the Deputy Clerk.
  2. MUST: We must correctly identify whether a request has been made under the Data Protection legislation.
  3. MUST: A member of staff, and as appropriate, Councillor, who receives a request to locate and supply personal data relating to a SAR must make a full exhaustive search of the records to which they have access.
  4. MUST: All the personal data that has been requested must be provided unless an exemption can be applied.
  5. MUST: We must respond within one calendar month after accepting the request as valid.
  6. MUST: Subject Access Requests must be undertaken free of charge to the requestor unless the legislation permits reasonable fees to be charged.
  7. MUST: Councillors and Managers must ensure that the staff they manage are aware of and follow this guidance.
  8. MUST: Where a requestor is not satisfied with a response to a SAR, the Council must manage this as a complaint.

How must we do it?

  1. Notify the Parish Manager, or in their absence, the Deputy Clerk, upon receipt of a request.
  2. We must ensure a request has been received in writing where a data subject is asking for sufficiently well-defined personal data held by the Council relating to the data subject. We should clarify with the requestor what personal data they need. They must supply their address and valid evidence to prove their identity. The Council accepts the following forms of identification (*These documents must be dated in the past 12 months. These documents must be dated in the past 3 months):
  • Current UK/EEA Passport
  • UK Photocard Driving Licence (Full or Provisional)
  • Firearms Licence / Shotgun Certificate
  • EEA National Identity Card
  • Full UK Paper Driving Licence
  • State Benefits Entitlement Document*
  • State Pension Entitlement Document*
  • HMRC Tax Credit Document*
  • Local Authority Benefit Document*
  • State/Local Authority Educational Grant Document*
  • HMRC Tax Notification Document
  • Disabled Driver's Pass
  • Financial Statement issued by bank, building society or credit card company+
  • Judiciary Document such as a Notice of Hearing, Summons or Court Order
  • Utility bill for supply of gas, electric, water or telephone landline+
  • Most recent Mortgage Statement
  • Most recent Council Tax Bill/Demand or Statement
  • Tenancy Agreement
  • Building Society Passbook which shows a transaction in the last 3 months and your address
  1. Depending on the degree to which personal data is organised and structured, we will need to search emails (including archived emails and those that have been deleted but are still recoverable), Word documents, spreadsheets, databases, systems, removable media (for example, memory sticks, floppy disks, CDs), tape recordings, paper records in relevant filing systems etc. which your area is responsible for or owns.
  2. We must not withhold personal data because we believe it will be misunderstood; instead, we should provide an explanation with the personal data. We must provide the personal data in an "intelligible form", which includes giving an explanation of any codes, acronyms and complex terms. The personal data must be supplied in a permanent form except where the person agrees or where it is impossible or would involve undue effort. We may be able to agree with the requester that they will view the personal data on screen or inspect files on our premises. We must redact any exempt personal data from the released documents and explain why that personal data is being withheld.
  3. Make this clear on forms and on the Council website
  4. We should do this through the use of induction, by performance and training, as well as through establishing and maintaining appropriate day to day working practices.
  5. A database is maintained allowing the Council to report on the volume of requests and compliance against the statutory timescale.
  6. When responding to a complaint, we must advise the requestor that they may complain to the Information Commissioners Office ("ICO") if they remain unhappy with the outcome.