Privacy Policy

LGB International respects the privacy of anyone who shares their data with us and is committed to protecting personal information.

What information do we collect?

We collect the personal information which people voluntarily give us. This may be when they sign up to receive updates, register to attend events, make a donation, or otherwise express interest in the work of LGB International. The personal data we collect will depend on the reason it has been given to us and may include names, email addresses, phone numbers, countries of residence and addresses. When someone donates to us, their payment information is collected by Squarespace. When information is given to us, we will only use it for the purposes for which it was provided, for any compatible purposes and to fulfil our legal and regulatory obligations, unless agreed otherwise by the data subject.

Special category data regarding racial or ethnic origin, political opinion, religious or philosophical belief, trade union membership, genetic or biometric data, health data or data regarding sexual orientation or the sex life of an individual will not be processed except in circumstances where processing such data has a clear and explicit legal basis, as laid out below.

Lawful basis for collecting and processing personal data

GDPR requires us to have a lawful basis for collecting and processing personal information. The grounds on which we may process this data are as follows:

  • Consent - when a person has given us permission to use their personal information in a certain way (for example, if they were to sign up to receive email updates, that is what we would use their information for). We would also require express consent to share that data with other parties.

  • Legal obligation - if it is necessary to process or share a person’s information in order to comply with our legal obligations enforced by regulatory bodies.

  • Contract - we may need to process a person’s data in order to perform a contract with them (for example - if hiring an employee, it would be necessary to collect and retain some personal information of theirs to facilitate their role and ensure they are paid).

  • Legitimate interests - we may process data where it is reasonably necessary to achieve our interests as an organisation.

  • Vital interests - we may use and share an individual’s data to protect the vital interests of that individual, other people, or LGB International (for example, when doing so is necessary for the preservation of an individual’s safety or to investigate, prevent or take action regarding a crime or other policy violation which may affect LGB International)

Will information be shared with anyone?

In general, we will not share people’s personal information with external agencies. However, we may pass personal information to our national affiliates and associate member organisations. We will generally only do so with the consent of the data subject or upon another lawful basis set out in this notice.

How long will we keep personal information?

We keep personal information for as long as it is needed to fulfil the purposes for which it was collected, unless a longer retention period is required or permitted by law. When we no longer have a need for a person’s data, we will delete or anonymise the data or, if this is not possible, we will securely store it separately so it cannot be processed further. We will store it there until it can be deleted.

A data subject has the right to request their information be removed from our database, at which point we will delete any data on the subject which it is not legally necessary to retain.

Will we collect children’s data?

LGB International does not knowingly collect or hold the personal information of children under 18 years of age. If we become aware of any data of a child being held in our databases, we will promptly delete that data.

Privacy rights

Under UK and EEA GDPR, a data subject has the right to:

  • Request details of the information we hold about them and how it is being used

  • Access their personal data - people can request a copy of the data we hold about them

  • Access a portable version of their data

  • Have incorrect data corrected and updated

  • Have their data erased

  • Stop or restrict the processing of their personal data

  • Object to how their data is processed in certain circumstances

LGB International will ensure any data we hold on a particular data subject can be processed in accordance with these rights. For a data subject to request any of the data processing laid out above, they should email admin@lgbinternational.org.

Data breaches

In the event of a data breach, the person who becomes aware of the breach must report it to the Data Controller immediately. The Data Controller will then report it to the necessary authorities in the country where the data breach occurred. The Data Controller will follow all the necessary steps to address the breach, as set out by the appropriate authority.

Upon notification of a data breach, the Data Controller will notify the relevant authority within 72 hours of becoming aware of the breach, with no undue delay. In collaboration with these authorities, the Data Controller will notify the data subjects whose data security has been affected and give them the opportunity and necessary advice to mitigate any adverse effects resulting from the breach.

How to contact LGB International regarding personal data

People can contact the Data Controller for LGB International by emailing admin@lgbinternational.org