Notify user satisfaction survey privacy notice
Published 1 May 2020
GOV.UK Notify is a service that lets public service teams in the UK send emails, text messages and letters to users of their service.
GOV.UK Notify is designed, built and run by the Government Digital Service (GDS), part of the Cabinet Office.
The data controller for the GOV.UK Notify user satisfaction survey is the Cabinet Office.
For more information see the Information Commissioner’s Office (ICO) Data Protection Public Register. The Cabinet Office registration number is: Z7414053
You can also read the GOV.UK Notify privacy notice.
Why you have received a survey invitation
When you sent us a request to make your service live, we asked if we could contact you when we’re doing research. You have received an invitation to complete our user satisfaction survey because you agreed to be contacted.
If you do not want us to contact you about research, use the unsubscribe link in your survey invitation.
What data we collect from you
The survey will ask about:
- your use of GOV.UK Notify
- your personal opinion and observations about your use of GOV.UK Notify
- health and accessibility conditions that affect your use of GOV.UK Notify
- your job role
Your survey responses are linked to your Notify account, which includes your full name and email address. This means your responses will not be anonymous, although they will not be shared with anyone outside of the GOV.UK Notify team.
Our legal basis for using your data
Our legal basis for processing your data is consent. By completing the survey you are consenting for us to process your personal data.
Why we need your data
We are collecting additional personal data to better understand the needs of people who use GOV.UK Notify and their experience when using the service.
We are legally obliged to ensure GOV.UK Notify is accessible for all users. This is why we are seeking to understand how, if at all, any health conditions you may have affect your use of GOV.UK Notify.
What we do with your data
For analysis, we’ll combine your responses to this survey with some of your Notify user data. We will use:
personal data:
- your name
- your email address
- the organisation(s) you belong to
summary usage data including:
- the number of services you have and permissions
- the last date you last signed in to Notify
usage data for each service associated with your Notify account including:
- data about your use of the current service
- data about your future use of the service
We will not:
- sell or rent your data to third parties
- share your data with third parties for marketing purposes
We will share your data if we are required to do so by law – for example, by court order, or to prevent fraud or other crime.
How long we keep your data
We will securely store the personal data you provide through the user satisfaction survey for up to 3 years.
The personal data you provided when creating a GOV.UK Notify account will be retained for as long as you have an account.
Where your data is processed and stored
We design, build and run our systems to make sure that your data is as safe as possible at any stage, both while it’s processed and when it’s stored.
Your personal data may be transferred outside the European Economic Area (EEA) while being processed by GDS. If this happens, we’ll make sure you’re given the same level of technical and legal protection as you are within the EEA through Model Contract Clauses or US Privacy Shield.
How we protect your data and keep it secure
We are committed to doing all that we can to keep your data secure. To prevent unauthorised access or disclosure we have put in place technical and organisational procedures to secure the data we collect about you – for example, we protect your data using varying levels of encryption. We also make sure that any third parties that we deal with have an obligation to keep all personal data they process on our behalf secure.
Children’s privacy protection
We understand the importance of protecting children’s privacy online. Our services are not designed for, or intentionally targeted at, children 13 years of age or younger. It is not our policy to intentionally collect or maintain data about anyone under the age of 13.
Your rights
You have the right to withdraw consent to the processing of your data at any time. You also have the right to request:
- information about how your personal data is processed
- a copy of that personal data
- that this copy be provided in a structured, commonly used and machine-readable format
- that anything inaccurate in your personal data is corrected without delay
- that your personal data is erased if there is no longer a justification for holding it, and
- that the processing of your personal data is restricted in certain circumstances ((for example, where accuracy is contested)
If you have any of these requests, get in contact with our Data Protection Officer – you can find their contact details below.
Questions and complaints
Contact the GDS Privacy Team if you:
- have any questions about anything in this document
- think that your personal data has been misused or mishandled
- want to make a subject access request (SARS)
Email: [email protected]
The data controller for your personal data is the Cabinet Office. The contact details for our Data Protection Officer are:
If you have a complaint, you can also contact the Information Commissioner, who is an independent regulator set up to uphold information rights.
Information Commissioner's Office
Email [email protected]
Contact form https://ico.org.uk/glo...
Telephone 0303 123 1113
Textphone 01625 545 860
Changes to this notice
We may modify or amend this privacy notice at our discretion at any time. When we make changes to this notice, we will amend the last modified date at the top of this page. Any modification or amendment to this privacy notice will be applied to you and your data as of that revision date. We encourage you to periodically review this privacy notice to be informed about how we are protecting your data.