FOIR & SAR's

Untitled-1-624x237.png

Somercotes Parish Council as a public local authority is regulated by the Information Commissioners Office [ICO] in regards to the requests made to the Council in relation to either Freedom  of Information Requests under the Freedom of Information Act 2000, and Subject Access Requests under the Data Protection Act 2018 and UK GDPR.

FREEDOM OF INFORMATION:

The Freedom of Information Act 2000 and the Enviromental Information Regulations 2004 gives everyone a statutory right of access to information held by public bodies such as Parish and Town Councils.

The Parish Council is required to respond to all requests for information within 30 days of receipt of request. All responses by the Council are published below:

16/04/2025
11/03/2025

Responses by the Council to requests for information made under the Freedom of Information Act 2000 and the Enviromental Information Regulations 2004 are published by the Council inline with the Council's Model Data Publication Scheme.

Freedom of Information Requests should be submitted to the Council ideally by using the Contact Form or by e-mail to [email protected] 

DATA PROTECTION [SUBJECT ACCESS REQUEST]

The General Data Protection Regulation [GDPR] and the Data Protection Act 2018 gives individuals the right to know what information is held about them. It provides a framework to ensure that personal information is handled properly.

The Act works in two ways. Firstly, it states that anyone who processes personal information must comply with the six principles [Article 5 of the GDPR], which makes sure that personal information is:

  1. processed lawfully, fairly and in a transparent manner
  2. collected and processed for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those original purposes.
  3. Adequate, relevant, and limited to what is necessary for the purpose
  4. Accurate and kept up to date
  5. Not kept for longer than is necessary and subject to appropriate technical and organisational measures to safeguard the rights and freedoms of individuals.
  6. processed in a manner that ensures appropriate security of personal data, including protection against unauthorised or unlawful processing; and

Article 5(2) adds that 'the controller shall be responsible for, and be able to demonstrate compliance with Article 5(1) ('accountability') and secondly, it provides individuals with important rights (Articles 13 and 14):

  1. Right to be informed
  2. Right of access
  3. Right to rectification 
  4. Right to erasure (right to be forgotten)
  5. Right to restrict processing
  6. Right to data portability 
  7. Right to object
  8. Rights related to automated decision making including profiling

19/03/2025

Subject Access Requests should be submitted to the Council ideally by using the Contact Form or by e-mail to [email protected]