Privacy & Content Policy
Who are we?
We are the UK trademarked company known as Menopausal Not Mad
Menopausal Not Mad ® is a legally registered trademark.
© Copyright all rights reserved
Our website address is: https://www.menopausalnotmad.co.uk.
Our contact email is: firstname.lastname@example.org
All copyright & trademark rights regarding any resources, documents or recordings; belong solely to Jane Pangbourne and Menopausal Not Mad
All group members and website users should adhere to the principles of content ownership.
https://www.menopausalnotmad.co.uk and .com are owned and operated by Jane Pangbourne
The views and opinions expressed on the website are purely those of the author.
Jane Pangbourne makes no representations, warranties, or assurances as to the ongoing accuracy, currency or completeness of the content contained on this website or any sites linked to or from this site although regular checks are made.
Jane Pangbourne makes no guarantees of client or group member health and wellbeing and is not claiming to be a medic or a prescriber of any medication. Any health concerns must always be discussed with a doctor.
Jane Pangbourne is a menopause and women’s health educator offering guidance and support.
What personal data do we collect and why do we collect it?
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
If you leave a comment on our site you may opt in to save your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites:
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Who we share your data with & How long we retain your data:
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data:
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data:
Visitor comments may be checked through an automated spam detection service.
How we protect your data:
We hold a secure electronic version of client reports for no longer than 5 years and clients will always have a copy of this report.
Any paper copies of reports or notes from a consultation, are shredding on a daily basis
What data breach procedures we have in place:
Data breaches may be caused by employees, parties external to the organisation, or computer system errors.
Human Error causes include:
- Loss of computing devices (portable or otherwise), data storage devices, or paper records containing personal data
- Disclosing data to a wrong recipient
- Handling data in an unauthorised way (eg: downloading a local copy of personal data)
- Unauthorised access or disclosure of personal data by employees (eg: sharing a login)
- Improper disposal of personal data (eg: hard disk, storage media, or paper documents containing personal data sold or discarded before data is properly deleted)
Malicious causes include:
- Hacking incidents / Illegal access to databases containing personal data
- Hacking to access unauthorised data
- Theft of computing devices (portable or otherwise), data storage devices, or paper records containing personal data
- Scams that trick staff into releasing personal data of individuals
Computer System Error:
Computer System Error causes include:
- Errors or bugs
- Failure of cloud services, cloud computing or cloud storage security / authentication / authorisation systems
All members of Menopausal Not Mad have an obligation to report actual or potential data protection compliance failures. This allows us to:
- Investigate the failure and take remedial steps if necessary
- Maintain a register of compliance failures
- Notify the authority of any compliance failures that are material either in their own right or as part of a pattern of failures
Third party data:
As a rule we do not receive information about you from third parties. The third parties from which we sometimes receive information about you may include other membership groups or any of our associate professional but only with your permission.
It is also possible that third parties with whom we have had no prior contact may provide us with information about you.
Information we obtain from third parties will generally be your name and contact details, but may include additional information about you which they provide to us.
What automated decision making and/or profiling do we do with your data?
To comply with the GDPR:
We have a lawful basis to carry out profiling and/or automated decision-making and document this in our data protection policy.
We send individuals a link to our privacy statement when we have obtained their personal data indirectly.
We explain how people can access details of the information we used to create their profile as required.
We tell people who provide us with their personal data how they can object to profiling, including profiling for marketing purposes as required.
We have procedures for clients to access the personal data input into the profiles so they can review and edit for any accuracy issues.
We only collect the minimum amount of data needed and have a clear retention policy for the profiles we create.
As a model of best practice…
We consider and address the risks before we start any new automated decision-making or profiling.
We tell our clients about the profiling and automated decision-making we carry out, what information we use to create the profiles and where we get this information from.
We use anonymised data in our profiling activities.
If you have any concerns about how we use your data please email: email@example.com