Terms & Conditions

The Funeral-directory Privacy Notice

The Funeral-directory (funeral-directory.co.uk) is a service which has been provided by the National Association of Funeral Directors. Choosing a funeral directing firm that is a member of the National Association of Funeral Directors can give peace of mind at a distressing time. It’s important to feel confident that you, and the person who has died, will be professionally and compassionately cared for and that the services offered are both within your budget and include a range of choices that are right for you. The National Association of Funeral Directors demands high professional standards of its members; the 4,000 UK funeral homes in NAFD membership are required to abide by a strict Code of Practice and are monitored regularly to ensure a high quality of service is maintained. Whatever your circumstances, in your time of loss you can turn to an NAFD member firm, for their help in arranging a funeral that will be a fitting farewell.

The National Association of Funeral Directors (NAFD) are committed to complying with the General Data Protection Regulation and the Data Protection Act 2018, once enacted. Looking after the personal information you share with us is very important, and we want you to be confident that your personal data is kept safely and securely, and to understand how we use it.

We have published this notice to help you understand:
  • how and why we collect information from you,
  • who we share your information with, why and on what basis,
  • what your rights are.

Sometimes we may need to make changes to this Privacy Notice - any changes will be published on our website, which can be accessed at any time. This Privacy Notice was last updated on 12th July 2018.

The NAFD will be what is known as the ‘Data Controller’ of the personal data you provide to us, and we will sometimes refer to ourselves in this Notice as “we” or “us”. Being Data Controller means we determine the purposes and way in which any personal data is, or will be, processed. You can opt out of any or all of our communications at any point simply by contacting us as below: Data Protection Officer, The National Association of Funeral Directors, 618 Warwick Road, Solihull B91 1AA Or email [email protected] quoting “Security & Privacy Enquiry”.

Like most websites, when you visit our website (funeral-directory.co.uk) we collect information about how you use our site, including the areas of our website that you visit and interact with. This helps us provide a better service to you and other clients.

Contact details we hold on file and for what purpose

One of the capabilities we will offer in the future is the ability to request a call back from a specific funeral director branch. To facilitate this, we will ask for your name and your telephone contact details to send to the branch you have selected. We will never use the information you supply for marketing purposes and will never sell on any data you provide to any third party.

Why we collect personal information and what we do with it

Where we have a justifiable reason (‘legitimate interests’):
  • To enhance or improve your experience with us. This may mean that we learn about your preferences and habits and are able to use this information to improve the website for other users.
  • To help keep our website safe and secure.
  • To allow our internal business processes to function - for example transacting with our partners, carrying out audits, producing management information and dealing with complaints.
  • To help prevent fraud and maintain security.
  • To assist in training, quality assurance and compliance.
Where we have to do something by law (‘legal obligation’):
  • To ensure that your rights are met under the UK Data Protection Act.
  • To meet our obligations with law enforcement agencies, courts and other organizations.
  • To comply with anti-money laundering regulations.
  • To allow our internal business processes to function - for example transacting with our partners, carrying out audits, producing management information and dealing with complaints.
  • To enhance or improve your experience with us. This may mean that we learn about your preferences and habits and are able to use this information to improve the website for other users.
  • To help keep our website safe and secure.
  • To allow our internal business processes to function - for example transacting with our partners, carrying out audits, producing management information and dealing with complaints.

If you would like to read our Data Protection & Retention Policies, we’re happy to email these to you on request by emailing [email protected] quoting “Security & Privacy Enquiry”.

How and where we store or transfer Personal Data

We will only store or transfer your personal data in the UK. This means that it will be fully protected under the GDPR.

Who we share your information with and why

We do not sell your information to anyone and only pass it to our trusted partners and service providers who work with us to run our business.

The NAFD works with trusted third party payment processing providers in order to securely take and manage payments. This capability is not currently available on the Funeral-directory site.

The NAFD works with IT businesses who support our website and other business systems.

We may from time to time work with marketing companies who help us manage our electronic communications with you or carry out surveys and product reviews on our behalf.

We will never share your contact details with any other third party outside the NAFD without prior written consent from you.

Updating or deleting your contact data

You are entitled to ask for a copy of the information we hold on record about you at any time (such a request must be made in writing, with proof of identity, and may take up to one calendar month to be fulfilled, although we will respond as promptly as staff capacity allows) and can request this information is deleted or updated at any point.

You can request a copy of our Subject Access Request Form by emailing [email protected] quoting “Security & Privacy Enquiry”.

How long we keep your information

If we collect your personal information, the length of time we retain it is determined by a number of factors including the purpose for which we use that information and our obligations under other laws. We will not keep your personal data for any longer than is necessary in light of the reasons for which it was first collected.

We may need your personal information to establish, bring or defend legal claims. For this purpose, we will always retain your personal information for 7 years after the date it is no longer needed by us for any of the purposes listed under Contact details we hold on file and for what purpose above. The only exceptions to this are where:

  • the law requires us to hold your personal information for a longer period or delete it sooner.
  • you exercise your right to have the information erased (where it applies) and we do not need to hold it in connection with any of the reasons permitted or required under the law.
  • we bring or defend a legal claim or other proceedings during the period we retain your personal information, in which case we will retain your personal information until those proceedings have concluded and no further appeals are possible.
  • in limited cases, existing or future law or a court or regulator requires us to keep your personal information for a longer or shorter period.

Information Security

We take the security of your personal information seriously. We've implemented technology and security policies, rules and measures to protect the personal information we have under our control, both on and offline, from improper access, use, alteration, destruction and loss.

We will take all reasonable and proportionate steps to protect your personal information.

If you would like to read our Data & IT Security Policies, we’re happy to email these to you on request by contacting [email protected] quoting “Security & Privacy Enquiry”.

Payments

Currently, we are not taking payments through the Funeral-directory website.

Website visitors

In addition to the above, we collect information automatically about your visit to our websites. These websites use cookies – small text files that are placed on your machine to help the site provide a better user experience. In general, cookies are used to retain user preferences, provide anonymised tracking data to third party applications, and will usually make your browsing experience better. You are welcome to disable cookies in your browser if you prefer.

Our website may contain links to other websites that are outside our control and are not covered by this Privacy Policy. If you access other sites using the links provided, the operators of these sites may collect information from you that will be used by them in accordance with their privacy policy, which may differ from ours.

What Rights do I have?

You are entitled under GDPR to request the following - these are called your Data Subject Rights and there is more information on these on the Information Commissioner's website www.ico.org.uk.

Right to be informed: Individuals can be informed of how their data is collected, stored and processed in a clear, accessible way.

Right of access: Individuals can request access to a copy of their data in electronic form and details of how it is processed.

Right to rectification: Individuals are entitled to have their data corrected if it is inaccurate or incomplete.

Right to erasure: Also known as ‘the right to be forgotten’, this permits individuals to request the deletion of their data.

Right to restrict processing: Individuals can request a halt on processing if they object to accuracy or purpose.

Right to data portability: Individuals can request their data in a suitable digital format, sent either directly to them or to a third party.

Right to object: Individuals can, in certain cases, object to the processing of their data, e.g. in direct marketing. Rights in relation to automated decision making: Individuals can object to potentially damaging decisions being taken against them based only on automated data processing.

You can request a copy of our Subject Access Request Form by emailing [email protected] quoting “Security & Privacy Enquiry”.

Before processing any data requests concerning the rights above, we will require valid proof of identification from the individual before proceeding with the request. You have the right to lodge a complaint with a data protection regulator in Europe, in particular in a country you work or live or where your legal rights have been infringed. The contact details for the Information Commissioner’s Office (ICO), the data protection regulator in the UK, are available on the ICO website www.ico.org.uk, where your personal information has or is being used in a way that you believe does not comply with data; however, we encourage you to contact us before making any complaint and we will seek to resolve any issues or concerns you may have.

How to contact us for more information

Post: Data Protection Officer, The National Association of Funeral Directors, 618 Warwick Road, Solihull B91 1AA.

Email: [email protected] quoting “Security & Privacy Enquiry”.