Privacy Policy

At Tamworth Co-operative Society Limited we’re working hard to serve local communities a little better every day. Looking after the personal data you share with us is a hugely important part of this. We want you to be confident that your data is safe and secure with us, and understand how we use it to offer you a better and more personalised experience.

1. What this policy covers

The data controller is Tamworth Co-operative Society Limited

We are committed to doing the right thing when it comes to how we collect, use and protect your personal data. That’s why we’ve developed this privacy and cookies policy (“Policy”), which:

  • sets out the types of personal data that we collect;
  • explains how and why we collect and use your personal data;
  • explains when and why we will share personal data
  • explains the rights and choices you have when it comes to your personal data.

We offer a wide range of products and services, so we want you to be clear about what this Policy covers. This Policy applies to you if you use our services (referred to in this Policy as “our Services”). Using our Services means:

• This Policy also applies if you contact us or we contact you about our Services.

Parts of this Policy also apply to our store CCTV systems where they capture footage of you.

2. Personal data we collect

This section tells you what personal data we may collect from you when you use our Services

  • Contact data and identity data, including your first name, surname, postal addresses, email addresses, phone numbers and date of birth, title and gender.
  • Financial data, including bank account details and payment card details.
  • Transaction data for the purpose of members benefits including members points and
    redemption of dividend
  • Photographic data including footage that may be recorded for security reasons on our CCTV systems in stores.
  • Special category personal data such as religion where appropriate for funeral plans.

We may collect data when you engage with us directly via forms, post, phone, email or otherwise. This includes personal data when you;

  • Apply to become a member
  • Request certain information, publications or offers to be sent to you
  • Visit or make a purchase within our stores
  • Use our website or social media pages
  • Enter a competition, promotion or survey
  • Contact us or provide feedback

Please note we are not responsible for any Third- Party link to our website. You should check their privacy policies listed on their webpage.

Our website is not intended for Children.

3. Processing your personal data

We only use your personal data when we have a legal basis to do so, this is likely to include;

  • Contract Necessity, this can relate to fulfilling a contract for the purchase of goods or services or processing and maintaining your membership account. This will require the processing of Contact Data, Identity Data, Financial Data and Transaction Data.
  • Legitimate Interest, this can relate to Members receiving information to assist the Society in achieving our values and principles, aims and objectives and to support and serve our members and local communities, providing such interest does not override your interests or fundamental rights and freedom. This will require the processing of Contact Data, Identity Data and Transaction Data.
  • Legal Obligation, this can relate to information requested by local authorities such as the Police for crime prevention and investigation. This will require the processing of any personal data, as required to comply with the law. We use CCTV to monitor the safety of our stores in order to prevent and detect crime and anti-social behaviour.

4. Protecting and retaining your personal data

We limit your personal data to employees and third parties who require access to process your data as per our instructions.

We have security measures in place to prevent data from being shared, lost or accessed in an
unauthorised way.

We will only retain your personal data for as long as necessary to fulfil the purposes that we collect it for, whilst complying with legal, accounting and reporting retention periods.

We cannot guarantee the security of any personal data that you transfer over the internet to us.

Personal data in relation to Members will be held for the period you have an investment in the society or as required by the appropriate regulatory authority.

5. Sharing personal data

This section explains how and why we share personal data.

When we share personal data with these third-parties we require them to keep it safe, and they must not use your personal data for their benefit. We do not transfer your personal data outside the European Economic Area.

Service Providers

We work with carefully selected Service Providers that carry out certain functions on our behalf. These include, for example, companies that help us with technology services, storing and combining data, processing payments and delivering orders. We only share personal data that enable our Service Providers to provide their services.

Our funeral plans are now administered by Ecclesiastical Planning Services (‘Ecclesiastical’) and, as such, your personal data is shared with Ecclesiastical to allow Ecclesiastical to provide these services to you.

We may be required by law to share your personal data with the authorities, for example the Police or HMRC.

6. Use of Cookies

If you have an account and you log in to our website, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

7. Subject Access Rights

You have the right to see the personal data we hold about you. This is called a Subject Access Request. You will not have to pay a fee to access your personal information. However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternately we may refuse to comply with the request in such circumstances.

If you would like a copy of the personal data we hold about you, please write to:

Data Protection Officer, Tamworth Co-operative Society Ltd, 5 Colehill, Tamworth Staffordshire B79 7HA

Other Data Protection Rights

In relation to your personal data, you also have right to:

a) Have inaccurate information corrected

Summary of the right:

If you believe we hold inaccurate or missing information, please let us know and we will correct it.

b). Object to our use of it:

Summary of the right:

  • General objection – We will then consider your objection to our use of your personal data. If on balance, your rights outweigh our interests in using your personal data, then we will at your request either restrict our use of it (see section c below) or delete it (see section d below).

c). Restrict our use of it;

Summary of the right:

There are several situations when you can restrict our use of your personal data, this includes (but is not limited to):

  • you have successfully made a general objection (listed in section b above).
  • you are challenging the accuracy of the personal data we hold.
  • we have used your personal data unlawfully, but you do not want us to delete it

d). Have us delete it

Summary of the right:

There are several situations when you can have us delete your personal data, this includes (but is not limited to):

  • we no longer need to keep your personal data;
  • you have successfully made a general objection (listed in section 2 above).
  • you have withdrawn your consent to us using your personal data (and we do not have any other grounds to use it);
  • we have unlawfully processed your personal data

8. Complain to the data protection regulator

We’d like the chance to resolve any complaints you have, however you also have the right to complain to the UK data protection regulator (the ICO) about how we have used your personal data. Their website is https://ico.org.uk/.

More Information on your Data Protection Rights

The ICO website https://ico.org.uk/ contains more detail on the data protection rights mentioned above. Or if you would like to speak to us about these rights in more detail, please see the “How to contact us” section below.

How to contact us

If you have any questions about how we collect, store and use personal data please contact us.

Phone : 01827 63711

Email: askus@tamworth.coop

Mail : Data Protection Officer, Tamworth Co-operative Society Ltd, 8 Colehill, Tamworth Staffordshire B79 7HE

We may change this Privacy Policy from time to time. You should check this notice occasionally to ensure you are aware of the latest version.

This Policy was last updated on 7/07/2022.