PRIVACY POLICY

Your rights when you fill in our application form

The personal data in our application form is being processed in accordance with the EU General Data Protection Regulation (GDPR). The data is being sent to Heathfield (Norwich) Ltd., which is the Data Controller under the terms of the GDPR.
The information we collect means we can allocate you an appropriate room, and it enables us to comply (a) with the law on right to rent and (b) with regulations on council tax.

Your data will be retained for the following period:

  • If you complete an application form but then do not choose to live at Heathfield, we will keep your data until the end of your university studies in case you choose to apply in a subsequent year.
  • If you do chose to live at Heathfield, we will keep your data for seven years as it forms part of our tax documentation for audit purposes, as required by law.

Your data will be stored securely. It is stored digitally and password protected. A paper version is stored in a locked cabinet.
You are entitled at any time to see the information we hold, and if it is inaccurate/incomplete, you are entitled to request that it be corrected/completed.

You are free at any time to withdraw your consent to our processing or retaining your data. You need to be aware that if you do so, we shall not be able to draw up a contract for you to live at Heathfield. To withdraw consent, please email live@heathfieldnorwich.co.uk. Once you have been in contract with us, we are obliged by law to retain the data for the period specified in the Data Security Statement.