The council has to process personal data in order to deliver and improve services to the citizens of Leeds. The Data Protection Act 1998 says that any personal data we collect and hold about you has to be;
- processed fairly and lawfully.
- Used only for the purposes we tell you about when you give it to us.
- Accurate, relevant and not excessive.
- Kept secure and not kept any longer than necessary.
- Not shared with anyone else unless you have given your consent, or we are required to do so by law.
The Data Protection Act also gives you the right to access any information that we hold about you. You can get this by making what's called a 'subject access request' using the form which you can download from this page.
Our data protection policy
Leeds City Council will:
- Use personal and private information in the most efficient and effective way possible to deliver services. This includes collecting only the information we need.
- Take the least intrusive approach. Where services can be delivered or improved without affecting personal privacy they will be.
- Securely destroy information which is no longer needed and we will not to keep information for longer than is necessary.
- Only use personal information legally and for the purposes we tell you about when you give it to us. We will respect your rights under data protection and human rights rules.
- Only share information with third parties when you have given us your permission or if we are required to so by law, or when it is genuinely in the wider public interest to do so. We use the Pan-Leeds Information Sharing Protocol between health, social care and other agencies.
- Check and correct inaccurate information as soon this is brought to our attention.
- Take appropriate measures against unauthorised or unlawful use, accidental loss, damage to data and information.
- Give you to access your personal data when you ask for it and keep you informed about your rights under the Data Protection Act.
- Provide guidance for elected members and officers to make sure that we always work within our data protection rules. Our Chief Legal Officer monitors our compliance with data protection and human rights rules. Breaches of this policy are dealt with under the Council’s Disciplinary Rules and Procedures, or by the Standards Committee.
How to make an enquiry or a complaint
If you have any concerns or feel that we have not complied with the Data Protection Act, please contact us at the address on the top right of this page.
If you aren't happy with our response, you can make a complaint to the Information Commissioner's Office which oversees and enforces the Data Protection Act 1998 in the UK. You will need to show them that you have given us the opportunity to put things right before you make your complaint to them. Please visit their website for more information.