Diabetes UK wants to protect and respect your privacy
1. This policy (together with Diabetes UK Website - Terms and Conditions and any other documents referred to in it) sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
2. For the purpose of the Data Protection Act 1998 (the Act), the data controller is the British Diabetic Association (operating as Diabetes UK) of Wells Lawrence House, 126 Backchurch Lane, London, E1 1FH.
Information we may collect from you
3. Information that you provide by filling in forms on our site. This includes information provided at the time of registering to use our site, subscribing to our service, posting material or requesting further services. We may also ask you for information when you enter a competition or promotion sponsored by one of our carefully selected partners or if you report a problem with our site.
4. If you contact us, we may keep a record of that correspondence.
5. We, or our partners or sponsors may also ask you to complete surveys that they or we may use for research purposes, although you do not have to respond to them.
6. Details of transactions you carry out through our site and of the fulfilment of your orders.
7. Details of your visits to our site and the resources that you access.
IP addresses and cookies
8. We may collect information about your computer, including your IP address, operating system and browser type, for system administration, and to report aggregate information to our advertisers. These are statistical data about our users' browsing actions and patterns, and do not identify any individual.
9. For the same reason, we may obtain information about your general internet usage by using a cookie file. Cookies are small text files that are placed on your computer by websites that you visit. They therefore contain information that is transferred to your device, such as computer hard disk or mobile phone.
10. Cookies help us to improve our site and to deliver a better and more personalised service. They enable us:
To estimate our audience size and usage pattern
To store information about your preferences, and so allow us to customise our site according to your individual interests
To increase the speed of your searches
To recognise you when you return to our site.
13. We use several different types of cookies to help the website work. These are listed as follows:
Name of cookie Purpose
__utma Google analytics - Used to identify unique visitors (see http://code.google.com/apis/analytics/
__utmb Google analytics - Used to identify visitor session (see http://code.google.com/apis/analytics/
__utmc Google analytics - Used to identify visitor session - deprecated (see http://code.google.com/apis/analytics/
__utmz Used multiple times - Including being used in the standard site and also by embedded "Storify" and "slideshare" widgets on some news pages. Google analytics - Used to store site visit referral information (see http://code.google.com/apis/analytics/
__utmv Google analytics - Used to store custom information (see http://code.google.com/apis/analytics/
ns_cookietest Used to confirm browser is able to accept cookies.
ns_session Used to identify user session.
ASP.NET_SessionID Standard ASP.NET cookie, used to track identity of user's session
mp_super_properties Used by Storify - Used to track identity of user's session
reg_fb_gate Used by Facebook when recommending a page (see http://dataprotection.ie/documents/facebook%20report/final%20report/Appendices.pdf)
reg_fb_ref Used by Facebook when recommending a page (see http://dataprotection.ie/documents/facebook%20report/final%20report/Appendices.pdf)
YWP_VOLUME Used by Yahoo webplayer on "Audio information" pages to store volume level
ywadp… Two of these with different IDs are used by Yahoo webplayer on "Audio information" pages
fpc… Two of these with different IDs are used by Yahoo webplayer on "Audio information" pages
FormCookie EPiServer cookie. Records "Your free will guide" and other xform entry IDs (see http://world.episerver.com/Documentation/Items/
.EPiServerLogin Standard EPiServer cookie. Used to track login.
.ASPXROLES Standard ASP.NET cookie, used to track identity of user's session
_atuvc Used by "AddThis" social sharing function on news pages (see http://www.addthis.com/privacy)
COOKIE_JOIN_CACHE_ID Bespoke cookie used for sign up process
fc_layout Bespoke cookie used to alter stylesheet on "Kids" page depending on screen resolution
PromptSet Used by QuickAddress lookup functionality to store which prompt set is selected.
PicklistMoniker Used by QuickAddress lookup functionality to recreate the picklist
RefineMoniker Used by QuickAddress lookup functionality to refine picklist
ErrorInfo Used by QuickAddress lookup functionality to store error message info
ns_order_id_... Used to track most recent online shop order number.
Cookies which are necessary to run the site
14. Our sites produce some cookies which are essential to keep the site working and provide the services you need. These include:
Cookies that enable you to stay logged in for an entire visit to the site
Cookies which enable you to add things to a shopping basket and keep them there until you decide to check out.
Cookies which help us improve the site
15. Some cookies help us to see how people are using our sites. These are known as ‘analytics cookies’ or ‘tracking cookies’. They let us know what areas of website are popular and how people are using the site. This information is anonymous – we do not collect anything that would identify a user. We combine this data with the rest of the visitor data and examine it as a whole to build up a picture of how the site is performing. These cookies work only on our site and are not shared.
16. We also place tiny tags (also known as ‘tracking pixels’ or ‘web beacons’) on some of the emails we send out. These do not collect any personal information either, but they let us know how many people are opening and reading our emails so that we can choose more popular content.
18 .On occasion, we also run multiple versions of a page. Some of our visitors will be shown one version of a page and we then use our analytics to see if this has helped people access more information or experience a better user journey with us. To prevent confusion we set a cookie to make sure that our visitors always see the same version of a page instead of all the different ones.
Cookies which help us get value for money from advertising
19. We occasionally use other cookies to track how our advertisements perform. As with all our analytics cookies, all the information we collect is anonymous. These cookies are used solely to let us know which site a visitor clicked on for our advertisement, that they have come through to our site and completed whatever action we wished to see promoted - such downloading a leaflet or ordering an information pack.
Can I decline to accept cookies?
20. You are not obliged to accept a cookie that we (or any other web server) send to you. Most browsers accept cookies automatically but you can modify the settings in your browser to turn off this feature. However, cookies are integral to some areas of the website and to certain online services offered by Diabetes UK, so if you choose not to accept cookies from us, you may not be able to utilise some areas of the website and we may not be able to provide certain online services to you.
Where we store your personal data
22. All information you provide to us is stored on our secure servers. Any payment transactions will be encrypted using industry standard technology. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
23. Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
Uses made of the information
24. We use information held about you in the following ways:
To ensure that content from our site is presented in the most effective manner for you and for your computer
To provide you with information, products or services that you request from us or which we feel may interest you, where you have consented to be contacted for such purposes
To carry out our obligations arising from any contracts entered into between you and us
To allow you to participate in interactive features of our service, when you choose to do so
To notify you about changes to our service.
25. We may also use your data, or permit selected third parties to use your data, to provide you with information about goods and services which may be of interest to you and we or they may contact you about these by post or telephone.
26. If you are an existing customer, we will only contact you by electronic means (email or SMS) with information about goods and services similar to those which were the subject of a previous communication.
27. If you are a new customer, and where we permit selected third parties to use your data, we (or they) will contact you by electronic means only if you have consented to this.
28. If you do not want us to use your data in this way, or to pass your details on to third parties for marketing purposes, please tick the relevant box situated on the form on which we collect your data (either on an order form or registration form).
Disclosure of your information
29. We may disclose your personal information to any member of our group, which means our subsidiaries, holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006.
30. We may disclose your personal information to third parties:
In the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets
If we (or substantially all of our assets) are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets
If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our Diabetes UK Website - Terms and Conditions, Terms and Conditions - Supply of Goods or Services and other agreements; or to protect the rights, property, or safety of Diabetes UK, our customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
31. You have the right to ask us not to process your personal data for marketing purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes. You can exercise your right to prevent such processing by checking certain boxes on the forms we use to collect your data. You can also exercise the right at any time by contacting us at firstname.lastname@example.org.
32. Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
Access to information
33. The Act gives you the right to access information held about you. Your right of access can be exercised in accordance with the Act. Any access request may be subject to a fee of £10 to meet our costs in providing you with details of the information we hold about you.