Our privacy notice tells you what to expect us to do with your personal information when you make contact with us or use one of our services.

This notice is layered. So, if you wish, you can easily select the reason we process your personal information and see what we do with it.

Controller’s contact details

Lancashire Fire and Rescue Service is the controller for the personal information we process, unless otherwise stated.

There are many ways you can contact us, including by phone, email and post. More details can be seen here.

Data Protection Officer’s contact details

Our Data Protection Officer is Dominic Howell. You can contact him at infogov@lancsfirerescue.org.uk or via our postal address.

Please mark the envelope ‘Data Protection Officer’.

You can find out more information about the role of the DPO under ‘Accountability at Lancashire Fire and Rescue Service’

  • How we get information

    Most of the personal information we process is provided to us directly by you for one of the following reasons:

    • You have made an enquiry to us.
    • You have made a complaint to us.
    • You have made an information request to us.
    • You have applied for a job with us.
    • An employee of ours gives your contact details as an emergency contact or a referee.
    • You are representing your organisation.
    • You are a creditor or debtor.
    • You have been referred to us by a partner agency
    • Your information has been obtained from you during an Incident.
    • Your information has been obtained from you during the Home Fire Safety Check process.

    Your data protection rights

    Under data protection law, you have rights we need to make you aware of. The rights available to you depend on our reason for processing your information.

    Your right of access

    You have the right to ask us for copies of your personal information. This right always applies. There are some exemptions, which means you may not always receive all the information we process. You can read more about this right here.

    Your right to rectification

    You have the right to ask us to rectify information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete. This right always applies. You can read more about this right here.

    Your right to erasure

    You have the right to ask us to erase your personal information in certain circumstances. You can read more about this right here.

    Your right to restriction of processing

    You have the right to ask us to restrict the processing of your information in certain circumstances. You can read more about this right here.

    Your right to object to processing

    You have the right to object to processing if we are able to process your information because the process forms part of our public tasks, or is in our legitimate interests. You can read more about this right here.

    Your right to data portability

    This only applies to information you have given us. You have the right to ask that we transfer the information you gave us from one organisation to another, or give it to you. The right only applies if we are processing information based on your consent or under, or in talks about entering into a contract and the processing is automated. You can read more about this right here.

    If we are processing your information for criminal law enforcement purposes, your rights are slightly different. Please see the relevant section of the notice.

    You are not required to pay any charge for exercising your rights. We have one month to respond to you.

    Please contact us at infogov@lancsfirerescue.org.uk if you wish to make a request, or contact us at 01772 866907.

    Service adjustments

    As a public authority and a provider of services to the public, we have a legal duty to comply with the Equality Act (2010).

    This means we need to make service adjustments for anyone with a disability who contacts us in any capacity, to eliminate any barriers to accessing our services. Our legal basis for processing this information is article 6(1)(c) of the GDPR as we have a legal obligation to provide this. Our processing of special category data, such as health information you give us, will be based on article 9(2)(a), which means we need your consent.

    We’ll create a record of your adjustment requirements. These will give your name, contact details and type of adjustment required, along with a brief description of why it is required. Relevant staff can access this to ensure they are communicating with you in the required way.

    How long we keep it?

    For information about this please see our retention schedule

    What are your rights?

    As we need your consent to process your special category data you have a right to withdraw your consent at any time.

    For more information on your rights, please click here.

    Sharing your information

    We will not share your information with any third parties for the purposes of direct marketing.

    We use data processors who are third parties who provide elements of services for us. We have contracts in place with our data processors. This means that they cannot do anything with your personal information unless we have instructed them to do it. They will not share your personal information with any organisation apart from us. They will hold it securely and retain it for the period we instruct.

    In some circumstances we are legally obliged to share information. For example under a court order or where we are required to do so under any act or legislation. We might also share information with other regulatory bodies in order to further their, or our, objectives. In any scenario, we’ll satisfy ourselves that we have a lawful basis on which to share the information and document our decision making and satisfy ourselves we have a legal basis on which to share the information.

    Links to other websites

    Where we provide links to websites of other organisations, this privacy notice does not cover how that organisation processes personal information. We encourage you to read the privacy notices on the other websites you visit.

  • Your right to complain

    We work to high standards when it comes to processing your personal information. If you have queries or concerns, please contact us at infogov@lancsfirerescue.org.uk or at:

    Knowledge and Information Officer (Info Governance)
    Service Development Department
    Lancashire Fire and Rescue Service
    Fire Service HQ
    Garstang Road
    Fulwood
    Preston
    PR2 3LH

    Telephone: 01772 866907

    You can also contact the Information Commissioner’s Office for further guidance or to lodge a complaint at:

    Information Commissioner’s Office
    Wycliffe House
    Water Lane
    Wilmslow
    Cheshire
    SK9 5AF

    www.ico.org.uk

    Telephone: 0303 123 1113

    Changes to this privacy Notice

    We keep our privacy notice under regular review to make sure it is up to date and accurate.

    If we plan to use personal data for a new purpose, we will update our privacy information and communicate the changes to individuals before starting our new processing.

    Managing customer contact

    We may impose a restriction on your access to our services if it’s necessary to protect our staff from unacceptable behaviour.

    The legal basis we rely on to process your personal data is article 6(1)(e) of the General Data Protection Regulation (GDPR), which allows us to process personal data when this is necessary to perform our public tasks.

    If we do this, we’ll explain to you the restriction we have applied and why we feel it’s necessary. We’ll create a record of the restriction for administration purposes, so relevant staff members know the restriction is in place. This will include your name, contact details and a description of why we have imposed a restriction.

    The decision to impose a restriction will be taken, and reviewed, by a manager. We’ll write to you explaining why we’ve applied the restriction. We’ll review the restriction periodically. We’ll remove it if we feel your behaviour has changed or if you no longer communicate with us.

    Single point of contact

    We may provide a single point of contact if you or we (or both) believe it will help to create a better outcome for all concerned.

    If the information you provide us in relation to your single point of contact contains special category data, such as health, religious or ethnic information the legal basis we rely on to process it is article 9(2)(g) of the GDPR, which also relates to our public task and the safeguarding of your fundamental rights, and Schedule 1 part 2(6) of the DPA2018 which relates to statutory and government purposes.

    A decision will be made by a manager to give you a single point of contact. This may be where you have several complaints and we believe it will be more efficient for us to deal with them in this way. We’ll make a record of the fact that you have a single point of contact. All relevant staff will know about using it to manage communications between our office and you. It will include your name, contact details and a description of the need to have a single point of contact. We’ll review this requirement from time to time.

    What are your rights?

    We are acting in our official capacity regarding your contact restriction or single point of contact (or both), so you have the right to object to our processing of your personal data. There are legitimate reasons why we may refuse your objection, which depend on why we are processing it.

    For more information on your rights, please click here.

  • Visitors to our headquarters, training centre, stations and website

    All visitors to our sites will be given a generic visitor badge. You must wear this throughout your visit.

    We ask all visitors to sign in and out at reception and show a form of ID. The ID is for verification purposes only, we don’t record this information.

    Closed-circuit television (CCTV) operates outside the building for security purposes. For further information about this please see our CCTV specific Privacy Notice.

    The purpose for processing this information is for security and safety reasons. The legal basis we rely on to process your personal data is article 6(1)(f) of the GDPR, which allows us to process personal data when its necessary for the purposes of our legitimate interests.

    We have Wi-Fi for visitors. This is setup by the user choosing Visitor guest from the available Wi-Fi IDs whilst on station. This then takes you to a page that enforces the user to register their e-mail account to receive a password. Once the password is received the user can login and start using the Internet.

    When you connect to the Visitor guest Wi-Fi you device will be given an IP address which is viewable whilst you are connected. We do not log traffic information of any kind but we do log against users connected and can generate a report of the users that have been connected within the last 30 days.

    We don’t ask you to agree to terms, just to the fact that we have no responsibility or control over your use of the internet while you are on site, and we don’t ask you to provide any of your information to get this service.

    We ask you to sign in or generate an account that will be e-mailed to you. This process asks for your first and last name followed by an e-mail address. There is then a prompt for you to read the Lancashire Fire and Rescue “Acceptable Use Policy”. You must accept this to continue.

    The purpose for processing this information is to provide you with access to the internet whilst visiting our site. The legal basis we rely on to process your personal data is article 6(1)(f) of the GDPR, which allows us to process personal data when its necessary for the purposes of our legitimate interests.

    For information about how long we hold personal data, see our retention schedule. 

    Visitors to our website

    We use cookies on our website. When you visit our website we tell you that cookies are being used in a pop up. By continuing to use our site you are giving your consent to the use of cookies.

    Cookies are small text files that are placed on your computer by websites that you visit. They are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the site. There are different categories of cookies that can be used and they may be essential or non-essential.

    We use cookies to make our website function properly (such as to control the pop up icon and remember whether you have said you will allow our cookies or not). We also use cookies to collect how many visitors use our website, which pages are visited, and if there are any error messages. This helps us to make improvements.

    We do not use cookies to collect information that identifies our visitors. All the information is aggregated and is therefore anonymous. We do not make any attempt to find out the identities of those visiting our website, for example by matching data collected by cookies with any personally identifying information from any other source.

    We encourage you to accept cookies on our website as they help us to improve the user experience for you and for other users. 

    Website Analytics

    When you visit www.lancsfirerescue.org.uk, we use a third-party service, Google Analytics, to collect standard internet log information and details of visitor behaviour patterns. We do this to find out such things as the number of visitors to the various parts of the site. This information is only processed in a way that does not identify anyone. We do not make, and do not allow Google to make, any attempt to find out the identities of those visiting our website.

  • How you can contact us

    All emergency calls must be made via 999.

    Our address and telephone number is:

    Lancashire Fire and Rescue Service
    Fire Service Headquarters
    Garstang Road
    Fulwood
    Preston
    PR2 3LH

    Telephone: 01772 862545

    We don’t audio record any calls to this number, but we might make notes.

    We use a translation service provided by Language Line Limited for customers when English is not their first language. Neither we nor Language Line retain call scripts. It is processed live for the purposes of translating the call. 

    We operate a textphone service which is particularly useful if you are deaf, hard of hearing or speech impaired. We do not keep any call information or messages left on the phone. 

    Home Fire Safety Check Service

    Our Home Fire Safety Check Service can be contacted on 0800 169 1125 or by clicking here 

    Emailing us

    We’ll also monitor any emails sent to us, including file attachments, for viruses or malicious software. You must ensure that any email you send is within the bounds of the law. 

    Website and Social Media

    Please see our Website and Social Media Privacy Notice for further information by clicking here

  • Accountability at Lancashire Fire and Rescue Service

    As part of our preparations for the requirements of GDPR, we have reviewed how we demonstrate accountability for our processing activities.

    Lancashire Fire and Rescue Service (LFRS) is a public authority and therefore we have appointed a Data Protection Officer (DPO) in compliance with Article 37 of the General Data Protection Regulation.

    Our Data Protection Officer plays a key role in ensuring our accountability, but is not solely responsible.

    The Key Information Governance Roles within the Organisation are as follows:

    Senior Information Risk Owner – Justin Johnston, Director of Strategy and Planning.

    Data Protection Officer – Dominic Howell, Service Solicitor.

    Information Asset Owners – all Heads of Department

    Information Governance Contact – Michael Threlfall, Information Governance Manager.

    Information Asset Administrators – nominated by IAOs, number dependent on volume and nature of processing of information.

    Our SIRO, DPO and IAOs, in conjunction with our Information Governance Team are responsible for making sure that our business processes and decision making are in line with GDPR requirements and good practice.

    Our Information Governance Team provide advice, monitor compliance and carry out key tasks like responding to requests, handling security incidents, assist in managing records and promote good privacy, security and information management practices.

    Our approach has ‘privacy by design and default’ at the forefront. We have an established privacy assessment process led by our Data Protection Officer who is available to provide advice throughout the process. This process is linked to our procurement, supplier assessment and contract management processes.

    We have key accountability documentation including a record of our processing activities, corporate retention schedule and information asset register. Our business processes require that decisions and rationale are documented.

    We are committed to being transparent with people who interact with us and use our services. We regularly review, monitor and update our Privacy Notices in order to accurately reflect our processing activates.

    Training in data protection and governance for new starters and existing staff is ongoing. Where specific training needs are identified, we are committed to providing appropriate training and support. 

    Our Data Protection Officer

    This explains how our Data Protection Officer fits into our governance structure.

    Lancashire Fire and Rescue Service (LFRS) is a public authority and therefore we have appointed a Data Protection Officer (DPO) in compliance with Article 37 of the General Data Protection Regulation.

    This statement explains how the role of the Data Protection Officer works within LFRS.

    Our Data Protection Officer is Dominic Howell. Dominic is also the Service Solicitor. 

    Independence

    Our DPO is free of conflicting priorities and is able to raise issues in the way and in the forum they see fit, without approval from their line manager or others to do so. Our DPO is not penalised for performing their tasks. 

    Reporting to highest level of management

    The DPO is accountable to the Service’s Executive Board. The DPO is responsible for reporting risks or opportunities and recommending appropriate actions in relation to LFRS’s processing of personal information.

    Decision making

    Where the advice of the DPO is not followed, this is documented.

    If you have any queries please email infogov@lancsfirerescue.org.uk

Privacy Notice – CCTV

Download

Privacy Notice – Creditors and Debtors

Download

Privacy Notice – Emergency Calls and Incidents

Download

Privacy Notice – Employee Data

Download

Privacy Notice – Fire Investigation

Download

Privacy Notice –  National Fraud Initiative

Download

Privacy Notice – Photographs and Videos

Download

Privacy Notice – Safe and Well visits

Download

Privacy Notice – Site Specific Risk Information (SSRI)

Download

Privacy Notice – Technical Fire Safety

Download

Privacy Notice – Website and Social Media

Download

Retention Schedule

Download