This Privacy Notice has been written to inform you about how Nunthorpe Multi Academy Trust and its respective academies, processes your personal data when you visit our websites. This notice only applies to how the Trust and the academies use your data when you visit the websites. For more information about how the Trust uses personal data in general please see our other privacy notices.
Nunthorpe Multi Academy Trust ‘the Trust’ is a ‘Data Controller’ as defined by Article 4 (7) of GDPR. This means that we determine the purposes for which, and the manner in which, your personal data is processed. We have a responsibility to you and your personal data and will only collect and use this in ways which are compliant with data protection legislation.
The school has appointed GDPRSentry to be its Data Protection Officer (DPO). The role of the DPO is to ensure that the school is compliant with GDPR and to oversee data protection procedures. GDPRSentry’s contact details are:
GDPR Sentry Limited,
Unit 434 Birch Park,
Thorp Arch Estate,
Wetherby,
LS23 7FG
support@gdprsentry.com
0113 804 2035
* Please ensure you include the name of the School in all correspondence with the DPO
When you visit our websites the Trust will place a small file on your electronic device (computer, phone, or tablet etc) – this file is called a ‘Cookie’. This is a common practice that most websites that you visit will use.
Cookies are used so that:
When you use our website you agree that we can put essential cookies on your device and you can control any other classes of cookie in real time.
The Trust do not use Cookies that also monitor other websites that you’ve visited (these are known as privacy intrusive cookies).
The Trust’s Cookies will not identify you but if you prefer you may wish to turn Cookies off.
For more information about how to this, and more information about Cookies in general, please see: https://www.aboutcookies.org/
Because the Trust want to make sure our web content is the best that it could possibly be we use something called Google Analytics to collect information about how people use this website.
Google Analytics collects information about:
We do not collect any personal information (such as your name) only the above activity.
This is an example of how we store this data and how long we keep it for:
| NAME | TYPICAL CONTENT | EXPIRES |
|---|---|---|
| _utma | randomly generated number | 2 years |
| _utmb | randomly generated number | 30 minutes |
| _utmc | randomly generated number | when you close your browser |
| _utmx | randomly generated number | 2 years |
| _utmxx | randomly generated number | 2 years |
| _utmz | randomly generated number and data on how the site was reached (e.g. direct or via a link, organic search or paid search) | 6 months |
For more information about Google Analytics and to opt out of Google Analytics all together please see: http://tools.google.com/dlpage/gaoptout.
You can find more information about the individual cookies we use and the purposes for which we use them in the table below:
| COOKIE | PURPOSE | MORE INFORMATION |
|---|---|---|
| resolution | To serve appropriately sized images to your device | http://adaptive-images.com/ |
| _ceg.s, _ceg.u, _ga, ce_login, ceac, cean, cean_asoc, gdpr_consent | Used by CrazyEgg | https://www.crazyegg.com/cookies |
| _ga, ads_prefs, csrf_same_site, csrf_same_site_set, dnt, eu_cn, guest_id, kdt, personalization, remember_checked_on, tfw_exp, lang | Used by Twitter | https://help.twitter.com/en/rules-and-policies/twitter-cookies |
| _js_reg_ext_ref, _js_reg_fb_gate, _js_reg_fb_ref, datr, fr, sb, wd | Used by Facebook | https://en-gb.facebook.com/policies/cookies/ |
| X-Mapping | Used by Rackspace | Once you have logged in, this cookie is used by Rackspace (the hosting provider) to balance the load on each of the web servers and is part of the back-end architecture |
| wordpress_test_cookie, comment_author, comment_author_email, wp-settings, wp-settings-time, wordpress_logged_in, wordpress_sec | Used by WordPress | https://wordpress.org/ |
| _ga | Used by Google Analytics | https://developers.google.com/analytics/devguides/collection/analyticsjs/cookies-user-id |
| __utma, __utmb, __utmc, __utmv, __utmz | To track user activity | http://www.google.co.uk/intl/en/policies/privacy/ |
| NREUM, NRAGENT, JSESSIONID, _ga, _gid, ajs_anonymous, ajs_group, ajs_user, intercom | To track user activity | https://docs.newrelic.com/docs/browser/new-relic-browser/page-load-timing-resources/new-relic-cookies |
| khcookie, NID, SNID and PREF | To provide interactive location maps | http://www.google.com/intl/en/policies/privacy/ |
| APISID, HSID, NID, PREF, SSID, SID, SAPISID | To provide search functionality | http://www.google.com/intl/en/policies/privacy/ |
| SERVERID, UID, UIDR, __qca | To provide embedded slideshows | https://www.linkedin.com/legal/privacy-policy |
Any information on this website including, but not limited to, graphics, design, text, and images are subject to Copyright which belongs to the Trust or a third party that has given permission for the Trust to use this information. The Trust grants permissions to electronically copy, print to hard copy, or transfer such material so long as it is for Trust business only.
The Trust makes every effort to ensure the content on its websites is correct and factual. The Trust accepts no liability for any inconvenience or loss caused by reliance on any information contained on these websites.
The Trust makes every effort to ensure links to external websites are secure. The Trust accepts no liability for the privacy practices of those external websites.
