BAD Privacy policy
The British Association of Dermatologists is committed to protecting your privacy and security. This privacy policy explains how and why we use your personal data and is intended to help ensure that you remain informed and in control of your information.
1. About us
The British Association of Dermatologists was established in 1920 by Sir Archibald Gray, the Editor of the British Journal of Dermatology which had been founded in 1888. Today the British Association of Dermatologists (BAD) is a registered charity (no 258474) funded by the activities of its members. Its charitable objects are the practice, teaching, training and research of dermatology.
The BAD is registered with the Information Commissioner’s Office – ZA150524
The Information Commissioner’s Office (ICO) is the independent supervisory authority set up to promote and oversee compliance with data protection legislation in the UK. On 25 May 2018, a new data protection regime will come into force, through the General Data Protection Regulation (GDPR) and the Data Protection (Charges and Information) Regulations 2018 (the 2018 Regulations).
There are 6 lawful bases for processing and the BAD has identified (a) Consent and (b) Contract to be its lawful bases for processing personal data and will demonstrate compliance in line with Articles 5(2) and 24. As a not-for-profit association the BAD is entitled to process data “for the purposes of establishing or maintaining membership or support for a body or association not established or conducted for profit, or providing or administering activities for individuals who are members of the body or association or have regular contact with it”
2. Your Personal Data
We collect “personal data”, which is information that identifies a living person, or which can be identified as relating to a living person.
3. Personal data we hold
3.1. Personal data you provide
We collect your data when you contact the BAD via email or telephone.
4. How we use your personal data
4.1. General use and administration
We process your personal data to enable us to run our operations and manage our relationship with you effectively, lawfully and appropriately. For example, we may use your information to:
Send you communications which you have requested and that may be of interest to you.
5. Disclosing and sharing your personal data
We do not sell your information to third parties
We do not share your information with third parties for marketing purposes.
6. Data security
6.1. Protection
We employ a variety of physical and technical measures to protect information we hold and to prevent unauthorised access to, or use or disclosure of your personal data.
Electronic data and databases are stored on secure computer systems and we control who has access to information (using both physical and electronic means). Staff receive data protection training and we maintain a set of data protection procedures which our staff are required to follow when handling personal data.
7. Storing your personal data
7.1. Where we store data
We are wholly based in the UK and store data within the European Economic Area.
7.2. Retention of your personal data
We will only retain your personal data for as long as it is required for the purposes for which we collected it (e.g. we have a genuine and legitimate reason and we’re not harming any of your rights and interests). We continually review what information we hold and will delete personal data which is no longer required.
8. Control of your personal data
8.1. Your rights
We want to ensure you remain in control of your personal data and that you understand your legal rights, which are:
• the right to know whether we hold your personal data and, if we do so, to be sent a copy of the personal data that we hold about you (a “subject access request”) within one month;
• the right to have your personal data erased (though this will not apply where it is necessary for us to continue to use the data for a lawful reason);
• the right to have inaccurate personal data rectified;
• (where technically feasible) the right to be given a copy of personal data that you have provided to us (and which we process automatically on the basis of your consent or the performance of a contract) in a common electronic format for your re-use.
There are some exceptions to the rights above and, although we will always try to respond to any instructions you may give us about our handling of your personal information, there may be situations where we are unable to meet your requirements in full.
8.2. Complaints
Should you have a complaint about how we have used (‘processed’) your personal data, you can complain to us directly by contacting our Data Protection Officer in the first instance.
If you are not happy with our response, or you believe that your data protection or privacy rights have been infringed, you can complain to the UK Information Commissioner’s Office which regulates and enforces data protection law in the UK. Details of how to do this can be found at www.ico.org.uk
9. Cookies
Our websites use local storage (such as cookies) in order to provide you with the best possible experience and to allow you to make use of certain functionality. Further information can be found in our Cookies Policy at http://www.bad.org.uk/cookies
Necessary Cookies
Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure
areas of the website. The website cannot function properly without these cookies.
| COOKIE NAME | PROVIDER | TYPE | EXPIRY |
| local_storage_support_test | twitter.com | HTML | Persistent |
| https://platform.twitter.com/widgets.js?ver=4.9.10 |
Statistics cookies
Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting
information anonymously.
| COOKIE NAME | PROVIDER | TYPE | EXPIRY |
| vuid | vimeo.com | HTML | 2 years |
| https://player.vimeo.com/api/player.js?ver=4.9.10 |
Marketing cookies
Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and
engaging for the individual user and thereby more valuable for publishers and third party advertisers.
| COOKIE NAME | PROVIDER | TYPE | EXPIRY |
| __widgetsettings | twitter.com | HTML | Persistent |
| https://platform.twitter.com/widgets.js?ver=4.9.10 |
| COOKIE NAME | PROVIDER | TYPE | EXPIRY |
| _hjIncludedInSample | skinhealthinfo.org.uk | HTTP | Session |
| https://static.hotjar.com/c/hotjar-1234281.js?sv=6 |
Unclassified Cookies
Unclassified cookies are cookies that we are in the process of classifying, together with the providers of individual
cookies.
| COOKIE NAME | PROVIDER | TYPE | EXPIRY |
| (unnamed) | skinhealthinfo.org.uk | HTTP | Session |
| http://www.skinhealthinfo.org.uk/ |
9.1 Links to other sites
Our websites contain links to other external websites. We are not responsible for the content or functionality of any such websites. Please let us know if a link is not working by contacting admin@bad.org.uk. If a third party website requests personal data from you (e.g. in connection with an order for goods or services), the information you provide will not be covered by this privacy policy. We suggest you read the privacy notice of any other website before providing any personal information.
10. Changes to this privacy policy
This privacy policy is subject to amendment to ensure it remains up to date and reflects how and why we use your personal data. The latest version will always be visible on our website.
Any questions regarding this privacy policy should be sent for the attention of the British Association of Dermatologists Data Protection Officer via admin@bad.org.uk and comms@bad.org.uk