Data Protection Policy

Personal information that Ty-Golau collects and why we collect it

Ty-Golau is a Group for people with slight memory problems, Alzheimer’s/ dementia type Illnesses. In accordance with the new General Data Protection Regulation (GDPR) in force from May 2018, The Ty-Golau Committee is required to seek approval or otherwise from its service users and their carers/ family members to hold, use and store personal information.

The Committee uses your data to carry out the following unless you have already advised that your data is to be withheld. Service users living in Care Homes:

  • Names/ numbers of people attending (for Ty-Golau records)
  • Name of person winning the free prize draw to be entered in Ty-Golau register
  • Service users living within the community ( attending alone or with carers)
  • Name address and contact details required (Possible cancellation of session)
  • Next of kin contact details required (In case of emergency)
  • G.P. details required
  • Problems indicative of risk (e.g. falls/ difficulty swallowing)
In order that the Committee can continue to use your data in this way you are required to provide your consent. Please ask for a consent form. This website collects and uses personal information for the following reasons:

Site visitation tracking

Like most websites, we use Google Analytics (GA) to track user interaction. This data is used to allow us to see who is using our site and to better understand how they find and use our web pages and to see their journey through the website. Although Google Analytics records data such as your geographical location, device, internet browser and operating system, none of this information personally identifies you to us. Google Analytics also records your computer’s IP address which could be used to personally identify you but Google do not grant us access to this. We consider Google to be a third party data processor. Google Analytics uses cookies, you can find details of this at  Google’s developer guides. You can disable cookies in your internet browser which will stop Google Analytics from tracking any part of your visit to pages within our website.

Cookies Policy

Cookies are small pieces of text sent to your web browser by a website you visit. A cookie file is stored in your web browser and allows the Service or a third-party to recognize you and make your next visit easier and the Service more useful to you. Cookies can be "persistent" or "session" cookies. When you use and access www.tygolau.org.uk, we may place a number of cookies files in your web browser. We use cookies for the following purposes: to enable certain functions of www.tygolau.org.uk, to provide analytics, to store your preferences. We use both session and persistent cookies on www.tygolau.org.uk and we use different types of cookies to run www.tygolau.org.uk: We may use essential cookies to authenticate users and prevent fraudulent use of user accounts.
Third-party cookies
In addition to our own cookies, we may also use various third-parties cookies to report usage statistics of www.tygolau.org.uk, deliver newsletters through www.tygolau.org.uk, and so on.
What are your choices regarding cookies
If you'd like to delete cookies or instruct your web browser to delete or refuse cookies, please visit the help pages of your web browser. Please note, however, that if you delete cookies or refuse to accept them, you might not be able to use all of the features we offer, you may not be able to store your preferences, and some of our pages might not display properly.

Contact forms and email links

If you contact us using the contact form on our Contact us page or an email link, none of the data that you supply will be stored by this website or passed to / be processed by any of the third party data processors. Instead the data will be collated into an email and sent to us over the Simple Mail Transfer Protocol (SMTP). Our SMTP servers are protected by TLS (sometimes known as SSL) meaning that the email content is encrypted using SHA-2, 256-bit cryptography before being sent across the internet. The email content is then decrypted by our local computers and devices.

Email newsletter

If you choose to join our email newsletter, the email address that you submit to us will be forwarded to MailChimp who provide us with email marketing services. We consider MailChimp to be a third party data processor. The email address that you submit will not be stored on this website. Your email address will remain within MailChimp’s database while we continue to use MailChimp’s services for email marketing. You also have the ability to remove yourself from the list. You can do this by unsubscribing using the unsubscribe links contained in any email newsletters that we send you or by requesting removal via email. When requesting removal via email, please send your email to us using the email account that is subscribed to the mailing list. If you are under 16 years of age you MUST obtain parental consent before joining our email newsletter. While your email address remains within the MailChimp database, you will receive periodic newsletter-style emails from us.

Where is this website hosted?

This website is hosted by TSOHost within a UK data centre located just outside London. Some of the data centre’s more notable security features are as follows:
  • 3m perimeter fencing.
  • Inergen Fire Suppression - a highly effective gaseous fire suppression agent designed specifically for use in server environments is used.
  • A 2N power management setup means up to 50% of our facility can fail without disrupting service.
  • 25+ CCTV cameras
  • 24x7 personnel and electronic access control systems
  • Safeguards in place for our data hall from unauthorised access.
Full details of TSOHost's data centre can be found here. We use a number of third parties to process personal data on our behalf. These third parties have been carefully chosen and all of them comply with the legislation. Google and Mailchimp third parties are based in the USA and are EU-U.S Privacy Shield compliant.

Data Breaches

We will report any unlawful data breach of this website’s database or the database(s) of any of our third party data processors to any and all relevant persons and authorities within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen.