Privacy notice for NTP funding applications

Privacy notice for NTP funding applications

Introduction


This privacy notice informs you as to how the Education Endowment Foundation (EEF) will look after your personal information when you apply for funding for the National Tutoring Programme (NTP).

EEF is the data controller for this information unless otherwise stated. Contact details can be found on our website.

EEF’s Data Protection Officer can be contacted via dpo@​eefoundation.​org.​uk.

Purpose and lawful basis for processing


Your information will be used to assess your application for a grant and to fulfil and enforce the terms of any grant agreement with you. The legal basis we rely on to use your information for this process is performance of contract, as per article 6(1)(b) of the GDPR:

Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.

The information we collect about you


We collect your name, telephone number, email address (also used as a username), title, job role, the organisation you work for and its type, together with details of your proposal and why it should be funded.

We may also require the contact details of other members of your organisation, for example, your data protection officer, designated safeguarding lead or finance officer. If you provide details of other members of your organisation then please share this privacy notice with them.

What the information is used for


We need this information in order to assess your application, respond to your application with feedback, and to administer any funding that is agreed.

Recipients of your information


EEF will share your data with:

FormAssembly and Salesforce (software providers)
Third party due diligence assessors appointed by EEF
Selected NTP Partner organisations who will provide non-financial support to grantees throughout the grant

How long we keep it


We shall keep your details for the length of the NTP and a further 6 years.

If there are any changes to this period, we will update and resend this notice to you. For example, the programme is funded by the government who may inform us of longer retention requirements.

Your data protection rights



Under data protection law, you have rights we need to make you aware of. The rights available to you depend on our reason for processing your information.

Your right of access


You have the right to ask us for copies of your personal information. This right always applies. There are some exemptions, which means you may not always receive all the information we process more about this right on the ICO website.

Your right to rectification


You have the right to ask us to rectify information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete. This right always applies. more about this right on the ICO website.

Your right to erasure


You have the right to ask us to erase your personal information in certain circumstances. more about this right on the ICO website.

Your right to restriction of processing


You have the right to ask us to restrict the processing of your information in certain circumstances. more about this right on the ICO website.

Your right to object to processing


You have the right to object to processing if we are able to process your information because the process forms part of our public tasks, or is in our legitimate interests. more about this right on the ICO website.

Your right to data portability


This only applies to information you have given us. You have the right to ask that we transfer the information you gave us from one organisation to another, or give it to you. The right only applies if we are processing information based on your consent or under, or in talks about entering into a contract and the processing is automated. more about this right on the ICO website.

You are not required to pay any charge for exercising your rights. We have one month to respond to you.

Data security


We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed.

Your personal data is limited to those employees, agents, contractors and other third parties who have a business need to know. We ensure our agreements with third parties comply with data protection law.

Changes to this privacy notice


This version was last updated on 21 August 2020; historic versions can be obtained by contacting us.