Omicron Hospitality and Leisure Grant scheme privacy notice
The Omicron Hospitality and Leisure Grant scheme provides funding to Local Authorities to provide support to eligible businesses in the hospitality, leisure and accommodation sectors that are impacted by the Omicron variant of the Coronavirus.
Under this scheme the Authority is required to collect and retain information on businesses that apply for an award via an application form.
This privacy notice sets out what data we will collect, why we need this data and how we will process the information provided.
If you make an application for support under the Omicron Hospitality and Leisure Grant scheme we will need to process your data to assess whether you are eligible to receive an award under this scheme and if so, to provide a payment to you.
Liverpool City Council is the data controller for the purposes of assessing eligibility, administering and making payments under the Omicron Hospitality and Leisure Grant scheme.
Categories of personal and business data we collect and process
We collect and process the data that you provide to us when completing your application for support under the Omicron Hospitality and Leisure Grant scheme. Information we are required to collect and retain under this scheme may include:
- Your full name
- Your home address
- Your business trading address including postcode
- A unique identifier (such as Company Reference Number (CRN)), VAT Registration Number, Self-Assessment/Partnership Number, National Insurance Number, Unique Taxpayer Reference, Registered Charity Number)
- High level SIC code
- Nature of your business
- Date your business was established
- Number of employees
- Your business Rates number
- Your email address
- Your mobile telephone number
- Your business telephone number
- Your bank account details
As some businesses such as sole traders and partnerships trade under an individual’s name, in some cases, the trading name, business address and postcode may be considered personal data.
Source and categories of personal data
For the purposes of the Omicron Hospitality and Leisure Grant scheme, we will obtain data from applicants or their authorised representative. We will also user records available to Liverpool City Council to verify entitlement.
What we use your personal data for
We will use the personal and business information that you provide to confirm that you are eligible to receive support under the Omicron Hospitality and Leisure Grant scheme. This will include sharing your information with a third party agency for verification of entitlement.
We will share your information with the Department for Business, Energy and Industrial Strategy (BEIS) for the purposes of:
- monitoring the performance of the scheme
- ensuring that grants have been paid out in line with the eligibility and subsidy allowance conditions for the schemes
- evaluating and reviewing the impact, performance and costs of the scheme
- researching the effectiveness of the scheme and supporting future policy development
- preventing and detecting payments in error and fraud and taking action to mitigate the risk of loss in relation to fraud against a public authority
We may share your information with other Services within Liverpool City Council to prevent fraudulent claims.
We will legitimately share information with the Police, law enforcement, tax authorities or other government and fraud prevention agencies as requested if they are using it to perform public functions, or they are fulfilling a legislated obligation.
Our lawful basis for processing the personal data
We must have a lawful basis to process your personal data. In this instance the lawful basis is provided under Article 6 (a) of the UK GDPR as the processing of your information will be based on the consent that you provide during the application process.
Data processors and other recipients of your data
International data transfers and storage
Personal data disposal and retention
We will only keep your personal data for as long as it is needed for the purposes of the administering the Omicron Hospitality and Leisure Grant scheme and reconciling the awards made by Liverpool City Council under the scheme.
Your rights as a data subject
By law, you have a number of rights as a data subject and this does not take away or reduce these rights. Your rights under the EU General Data Protection Regulation (2016/679) and the UK Data Protection Act 2018 applies.
All information is processed in accordance with the Liverpool City Council data protection policy.
These rights are:
- Your right to get copies of your information – you have the right to ask for a copy of any information about you that is used.
- Your right to get your information corrected – you have the right to ask for any information held about you that you think is inaccurate, to be corrected
- Your right to limit how your information is used – you have the right to ask for any of the information held about you to be restricted, for example, if you think inaccurate information is being used.
- Your right to object to your information being used – you can ask for any information held about you to not be used. However, this is not an absolute right, and we may need to continue using your information, and we will tell you if this is the case.
- Your right to get information deleted – this is not an absolute right, and we may need to continue to use your information, and we will tell you if this is the case.
If you are unhappy or wish to complain about how your personal data is used as part of this programme, you should contact Liverpool City Council in the first instance.
If you are still not satisfied, you can complain to the Information Commissioners Office. Their website address is www.ico.org.uk and their postal address is:
Information Commissioner's Office
We use appropriate technical, organisational and administrative security measures to protect any information we hold in our records from loss, misuse, and unauthorised access, disclosure, alteration and destruction. We have written procedures and policies which are regularly audited, and the audits are reviewed at senior level.
Data Protection Officer
The Data Protection Officer for Liverpool City Council is Michael Jones: firstname.lastname@example.org
Automated decision making or profiling
No decision will be made about you solely on the basis of automated decision making (where a decision is taken about you using an electronic system without human involvement) which has a significant impact on you.
Changes to our policy
We keep our privacy notice under regular review, and we will make new versions available on our privacy notice page on our website. This privacy notice was last updated on 31 December 2021.