Libraries and archives privacy notice

Everything we do with information about our library customers – such as how we collect it and who we share it with – must comply with the Data Protection Act. A key part of this is being open about how we use information and what rights you have in respect of information we hold about you.

If anything in this notice is not clear, or if you have further queries, please get in contact with the Data Protection Officer using the details at the end.

What information do we hold?

The details we hold are your contact information such as your name, date of birth and contact details. We hold information about your use of services, such as your library borrowing history and times of computer bookings. If you opt in to provide details on your protected characteristics, we keep these to help us plan services that reflect our community.

You can access your account to check these details with your library membership number and PIN, if you need any changes contact your local library.

Why do we have it and what do we use it for?

We hold this information so we can manage your library membership for you, so you are able to use library services.

Whenever we use information, we always limit this to only the details that are needed and we ensure that it is used safely and securely. We require anyone we share information with, or who uses it on our behalf, to do so too. All staff receive training on data protection and information security.

Legal basis

The main legal basis for using your information in this way is provided by the Public Libraries and Museums Act 1964, which requires us to provide a comprehensive and efficient library service. Other services we offer such as meeting room bookings or borrowing non-book items are not covered by this Act but we hold the information in the same way to enable your use of these services.

Who we share information with and why

Your library membership details are stored securely by the company who provides Lambeth Libraries’ Library Management System software.

For use of our wider library services, some are provided by third party software. These include computer booking, self-service kiosks, printing, E-Books, E-Reference databases, library apps etc. These companies are only able to access basic information in order for us to provide a service to you, such as a library membership number, borrower status and age group. For example a child cannot book onto an adult computer which has less safety filters.

Library membership information can be requested by other sections of the Council in order to comply with existing legislation.

How long do we keep your personal information?

We only keep information for as long as it is needed.

Rights

You can see most of your information we hold by logging into your online library account where you can also update most of your information. Contact your local library to change any further core information or have your account deleted.

You can also make a request to have information we hold about you corrected or deleted, as well as to request restrictions on how we use your information. This request can be submitted to the Data Protection Officer. Whether we can agree to your request will depend on the specific circumstances and if we cannot then we will explain the reasons why.

If we are processing your information based on your giving us consent to do so, you have the right to withdraw your consent at any time. Doing so may mean we are unable to provide the service you are hoping to receive and the implications of you giving or withdrawing your consent will be explained at the time.

If you are unhappy with any aspect of how your information has been collected and/or used, you can make a complaint to the Data Protection Officer.

You can also report your concerns to the Information Commissioner’s Office.

Lambeth’s Data Protection Officer is the Head of Information Governance.

Email infogov@lambeth.gov.uk

Telephone 020 7926 1000

Write to:

London Borough of Lambeth

Town Hall

Brixton Hill

London

SW2 1RW