The Forensics Capability Network (which we’re going to call FCN in these privacy policies) is committed to respecting the privacy of everyone who we interact with – whether that is because:
- you have enrolled with us to participate in the development of the FCN and be kept informed
- you would like more information about becoming an FCN member or
- you are a journalist or stakeholder who we communicate with
In respect of these privacy policies, FCN is acting as the Data Controller and acting within the legal requirements of the Data Protection Act 2018 (DPA 2018).
If you work, or have worked, at FCN and have a question about the use of data relating to you, or you would like to exercise your rights in respect of that data, please contact www.dorset.police.uk/news-information/about-dorset-police/accessing-information/data-protection/.
The FCN is a community of all its members’ forensic science capabilities and expertise - still owned and managed locally but benefitting from a level of collective investment, focus, networking and support that has never been possible before.
These privacy policies explain how we use personal data as the Data Controller. They may be amended from time to time so please check back on a regular basis.
Keeping you informed about FCN
You have the option of asking to be kept informed of FCN activities by registering via this website (the “site”). When you do this, we will send you updates about the FCN which we think may be of interest to you. We won’t provide data relating to you to anyone else, and if you’d like us to stop sending you email, then you just need to ask.
We also use your information:
- to administer any services we provide to you including FCN services
- to compile statistical analysis of the pages of the site which you visit
- to help us develop our business, products, services and the site
- for internal administration and/or analysis
- to consider any applications or requests for information or advice made by you
- to comply with any legal or regulatory obligations
The use of this information is necessary to support the legitimate interests of the FCN to develop the FCN community. We will retain your information until you ask us to no longer send you news and updates or participate in our activities.
If your police force joins as a member of the FCN, we will collect the name, job title, email address and phone number for your nominated primary contact (also known as the SPOC) as well as any additional contacts you may wish to have access to the FCN. We require this information for each member and member user.
This information will be used by FCN to communicate with you about your participation in the FCN. The contact information will also be made available to other members in the FCN to enable them to contact you directly about your participation when necessary (e.g. to share good practice, request support on a forensic issue, etc).
We collect the following information every time you interact with the FCN:
- User name
- Date and time of each successful login and unsuccessful login attempt
- The IP addresses and protocols used to communicate with the FCN
- Technical information such as information about the browser or identity of the system used to access the FCN
- Technical information about the device used for two factor authentication which may include phone number, device ID and any other technical information used to authenticate a login
- Details of all activities performed while logged in
The use of this information is necessary to support the legitimate interests of FCN to protect the operations, security and integrity of the community and comply with legal and regulatory obligations.
Your information will be retained for six years from the time of collection as it may be required for establishment, exercise or defence of legal claims.
Journalists and stakeholders
One of FCN’s core activities is to explain how FCN works and our role in improving the national forensics capability. To facilitate this, FCN team members maintain contact information (name, email address, phone numbers) of journalists and stakeholders. Generally we have this information because you gave it to us. If you’d like us to stop talking to you about FCN then please let your contact know or alternatively email email@example.com and we’ll make sure this happens.
Sharing your information
We use a number of other companies to help us provide FCN services. These third parties act on our instructions and carry out services on our behalf (they are “processors”). Where we do this we require them not to use your information for any other purposes. The third parties we use to provide services which involve processing personal data include:
- Website hosting providers
- IT Service Management providers
- Cloud-based CRM software as a provider
- Web content distribution and security provider
- Web collaboration software
And if you enrol to use FCN, your data will also be processed by these third parties:
- Certificate issuance and management service provider
- Identity verification provider
- Cloud-based Authentication and identification service provider
Where it is strictly necessary and allowed by law, we will also share your information:
- with our professional advisers and external auditors
- with forensic investigators
- in response to requests from law enforcement authorities or regulators
- with other FCN members (if applicable)
Your information will generally be stored and processed within the UK or the EEA. FCN itself will not process your information in any other country. We will also take reasonable steps to make sure that our suppliers process your information within the UK or the EEA. However, some of our suppliers and FCN members will sometimes need to transfer or process your information in other countries, for example if they are part of a worldwide group of companies and need to access data from another country to provide support or for law enforcement purposes. Where this is the case and where such countries are not recognised as providing the same standard of protection to individuals in respect of their personal information, we will take reasonable steps to put in place measures to protect your information. In some cases this is the participation of the third party in the Privacy Shield Framework and in other cases we make sure there are contractual provisions in place based on standard data protection clauses. If you would like further information in respect of a particular processing operation please contact firstname.lastname@example.org
If you wish to access, correct or delete any of your personal information as held by us, object or restrict the processing of data relating to you; or if you have any questions or concerns about our Privacy Policies or information we hold about you please contact email@example.com