Introduction and Purpose
This policy covers all web forms hosted on the council website (www.enfield.gov.uk), which may collect various types of personal data based on specific business processes. The standard data collected typically includes information such as name, email, address, phone, and other relevant details. Submission logs for these web forms are stored within the CMS.
Data Collection and Storage
Prior to launching a web form to the general public, the form submission logging is disabled. This means that unless a specific business process requires submission logging, no logs will be stored.
Exceptions to the default logging settings are made when a business process necessitates submission logging. In such cases, the data retention policy specified in this document will apply. The decision to enable submission logging for a particular web form lie solely with the Enfield council web team, relevant service owners, and/or the Data Protection Officer.
For web forms that log user submissions, the collected data will be stored for a period of two years from the date and time of user submission. After this period, the submission log will be automatically moved to the system trash. System trash is purged every calendar quarter.
Data Protection and Security
The storage of web form submissions adheres to the standard data protection and security policies adopted by Enfield Council.
Third-Party Access and Data Sharing
Web form submission logs will not be accessed or shared with any third parties, except when required by law in compliance with applicable regulations.
Users have the right to request access to the personal data they have submitted through web forms. For inquiries or requests related to personal data, users can follow the procedures outlined in Enfield Council's Contact us page.