CCTV Privacy Notice For Customers at Unicorn Grocery – May 2018
Data Controller: Unicorn Grocery
Data Protection Coordinator: Personnel Team (email: personnel@unicorn-grocery.co.uk)
Unicorn Grocery operates CCTV security cameras around the store, for the protection of staff, the public and the business.
Information that is collected: Video footage and still images from CCTV cameras around the store.
Why we collect this information: As part of our security procedures, Unicorn has CCTV monitoring the shopfloor and areas surrounding the building, in order to help protect customers and workers, and to deter anti-social or criminal activity.
Who has access to this information: Recorded video or images are only accessed if there is a need to do so, and can only be done so via a password-protected login. A small team of members have access. After analysis, if a crime is suspected, then images may be shared with Unicorn members so that they can watch out for individuals.
Again if a crime is suspected, footage may also be shared with relevant 3rd party authorities, e.g. the police, and with the Chorlton Traders Association ShopWatch group, via WhatsApp. This is a closed group whose purpose is to alert traders in Chorlton to suspected criminal activity taking place in the area.
How long do we hold the information: Apart from live monitoring taking place, recorded footage is routinely stored for 1 week. If a criminal activity is suspected, then the relevant footage may be stored for the time required to resolve the incident.
How we hold the information: CCTV recordings are held in secure password-protected files on Unicorn’s internal file system, or transferred to DVDs held in locked cabinets.
Who to contact: Unicorn Ltd is the controller and processor of data for the purposes of the GDPR.
If you have any concerns as to how your data is processed you can contact a member of the Personnel Team (email: personnel@unicorn-grocery.co.uk)
Your rights: Under the General Data Protection Regulation (GDPR) and The Data Protection Act 2018 (DPA) you have the right to request from us access to and rectification or erasure of your personal data, the right to restrict processing, object to processing as well as in certain circumstances the right to data portability. If you believe that Unicorn has not complied with your data protection rights, you can complain to the Information Commissioner.
Privacy Notice For Customers at Unicorn Grocery – February 2018
Data Controller: Unicorn Grocery
Data Protection Coordinator: Personnel Team (email: personnel@unicorn-grocery.co.uk)
When you visit Unicorn Grocery, there may be information that we need to collect from you in order to operate our business and to protect you as a customer. (note: see our separate privacy notice above for CCTV)
Information that is collected: When you pay via card in the shop, the payment information is sent to our payment services company (we can access anonymized information about your payment to check for example which payments have gone through, but cannot access information in a form from which you could be identified). If you involved in an accident in the shop, then we will need to record your personal details and details about the incident for our records. If you are involved in security incident in the shop, then again we will need to record your personal details and details about the incident for our records.
Why we collect this information: We need to collect payment details in order to collect payments for shopping from you. We are required to keep accident logs, so that we can make reports, and look to see if we can avoid similar accidents happening in the future. For security incidents, we wish to keep details so that we can take action to protect our business, workers and customers.
Who has access to this information: Payment information is available to the finance team staff. Accident information is available to Health and Safety and Personnel Teams, together with other colleagues involved in the incident. Security information is available to the Security Team. It may also be made available to other colleagues if need to protect the business against future incidents. Information may be passed on to the Police and other authorities if they are involved in resolving a case.
How long do we hold the information: We do not retain payment details in a form in which you can be indentified. Anonymised records are kept by our payment services provider, and we keep paper merchant copies for up to 1 year. We keep accident data for 5 years. Security incident data will be kept for a year, or longer if necessary to resolve a case.
How we hold the information: Merchant copies of payment information are keep in paper records. Accident and security incident logs are kept in secure filing cabinets.
Who to contact: Unicorn Ltd is the controller and processor of data for the purposes of the GDPR. If you have any concerns as to how your data is processed you can contact a member of the Personnel Team (email: personnel@unicorn-grocery.co.uk)
Your rights: Under the General Data Protection Regulation (GDPR) and The Data Protection Act 2018 (DPA) you have the right to request from us access to and rectification or erasure of your personal data, the right to restrict processing, object to processing as well as in certain circumstances the right to data portability. If you believe that Unicorn has not complied with your data protection rights, you can complain to the Information Commissioner.
