Privacy Policy

Privacy Notice for TMG's Media Literacy Programme

Introduction

This privacy notice describes how we process personal data provided by you for TMG’s Media Literacy Programme ("MLP" or "Programme"), in accordance with data protection laws. It is important that you read this notice so that you are aware of how and why we are using such personal data.

Telegraph Media Group Holdings Limited ("TMG") is the data controller of your personal data. This means that the Telegraph decides what your personal data is used for, and the ways in which it is processed. As the data controller, the Telegraph has the responsibility to comply, and to demonstrate compliance with, data protection laws.

MLP is an educational initiative that provides insight into what it’s like to be a journalist. It highlights the importance of trusted and accountable news and equips participants with some of the tools and skills to think critically about world events.

Why do we collect your personal data?

We collect your personal data for the purpose of your MLP application and participation in the Programme. 

What personal data will TMG collect and how will we use it?

TMG will collect and process your personal data to facilitate your application and participation in the Programme. 

Personal data

We will collect the following personal data:

• Name

• Email address

• Telephone number

• Address

• Gender 

• Other personal data you provide to us that is not included in the special category data list provided below. 

The lawful basis for TMG to process the above personal data for the purpose as described above, is legitimate interest.

Special category data

You may also share the following categories of personal data, as part of our diversity monitoring initiatives:

• Health (disability)

• Sexual orientation 

• Religious or philosophical beliefs

• Race or ethnic origin

The lawful basis for TMG to process the above special category data is your consent. By submitting such information you are consenting to processing of this type of data.

MLP Google Site

When you visit the MLP Google Site ("Site"), TMG may use Google Analytics to help us understand how users interact with the Site. These analytics services use cookies to collect data on users behaviour and activity on the Site. Information generated by Google Analytics (e.g., your IP address and other Site usage information) may be transmitted to and stored by Google Analytics on servers in the U.S. (or elsewhere) and they may use this information for purposes such as evaluating your use of the Site, compiling statistical reports on the Site’s activity. To see Google Analytics Privacy Policy click here https://policies.google.com/technologies/cookies 

Retaining your personal data

If your application is unsuccessful, your personal data will be deleted three months after receipt.

If your application is successful and you completed the MLP we may retain your name and email address for up to eight years to monitor your progress from completion of the MLP to graduate schemes. Any other personal information will be deleted within six months of completing the MLP.

Sharing your personal data

TMG works with our approved third-party providers who help us to provide some of our services. These partners only use your personal data on behalf of TMG and not independently of TMG.

We use Workable, an online application process provided by Workable Software Limited, to assist with our recruitment process. We use Workable to process personal information as a data processor on our behalf. Workable is only entitled to process your personal information in accordance with our instructions.

We may also share personal data with a third party where required or permitted by law. 

Where we store your personal information

When we store your personal information in our own systems, it is stored in the United Kingdom. The data that we collect from you and process using Workable’s Services may be transferred to, and stored at, a destination outside the European Economic Area ("EEA"). It may also be processed by staff operating outside the EEA who work for ss or for one of our suppliers. 

In particular, your data may be accessible to i) Workable’s staff in the USA or ii) may be stored by Workable’s hosting service provider on servers in the USA as well as in the EU. The USA does not have the same data protection laws as the United Kingdom and EEA. A Data Processor Agreement has been signed between Workable Software Limited and its overseas group companies, and between Workable Software Limited and each of its data processors. These data processor agreements are designed to help safeguard your privacy rights and give you remedies in the unlikely event of a misuse of your personal information. If you would like further information please contact Us (see ‘Contact’ below).

Security

We take appropriate measures to ensure that all personal information is kept secure including security measures to prevent personal information from being accidentally lost, or used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.

We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so. 

Your rights

Under the UK GDPR you have a number of important rights. In summary, those include rights to:

• access to your personal information and to certain other supplementary information that this Privacy Notice is already designed to address

•  require us to correct any mistakes in your information which we hold

• require the erasure of personal information concerning you in certain situations

• receive the personal information concerning you which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to a third party in certain situations

• object at any time to processing of personal information concerning you for direct marketing purposes

• object to decisions being taken by automated means which produce legal effects concerning you or similarly significantly affect you

• object in certain other situations to our continued processing of your personal information

• otherwise restrict our processing of your personal information in certain circumstances

• claim compensation for damages caused by our breach of any data protection laws.

For further information on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals rights under the General Data Protection Regulation.

If you would like to exercise any of those rights, please:

  ●   contact us using our Contact details below,
  ●   let us have enough information to identify you,
  ●   let us have proof of your identity and address, and
  ●   let us know the information to which your request relates.

Contact

Questions and comments regarding this Privacy Notice and rights requests should be addressed to the Data Protection Officer by email dataprotectiongroup@telegraph.co.uk or by post to: Data Protection Officer, Data Protection Officer, 111 Buckingham Palace Road, London SW1 0DT.

How to complain

We hope that we can resolve any query or concern you raise about our use of your personal information. However if you are not satisfied with how we have dealt with your enquiry/complaint you make a complaint with a supervisory authority. The supervisory authority for data protection in the UK is the Information Commissioner whose contact details can be found at http://ico.org.uk/concerns/ or by telephone: +44303-123-1113.