top of page

Privacy Policy – Tim Roca MP 

 

As the MP for Macclesfield, I and my constituency staff correspond with constituents to answer policy enquiries, take up casework, and respond to queries or concerns regarding local and national issues.  

 

This document explains how I collect and use personal data arising from this correspondence, the legal basis for doing so, and explains your rights in relation to your personal data. 

 

As the holder of that data – I, Tim Roca – am the Data Controller. 

I have a team of staff who also correspond with constituents on my behalf. To enable them to do this, my staff also have access to the relevant data and correspondence. Therefore, this policy will reference “we”, to include myself as MP and data controller, alongside my office staff. 

 

Contact Details 

Email: tim.roca.mp@parliament.uk 

Post: Tim Roca MP, House of Commons, London, SW1A 0AA 

 

Data collection and use 

 

For dealing with casework, policy enquiries, and any other enquiries about my work as MP for Macclesfield, we collect or use personal information.  

 

This personal data may include, but is not limited to: names, contact details, address, email address and telephone number. 

 

For the same reasons, we may also collect or use special category data. 

This special category data may include, but is not limited to: racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, health information, sex life information  and sexual orientation information.  

Data is collected directly from, or on behalf of constituents.  

 

Lawful Basis and Data Protection rights 

 

Our lawful basis for collecting or using personal information for dealing with casework, policy enquiries and any other enquiries about my work as MP for Macclesfield are: 

 

·       Where we have your consent to do so (UK GDPR Article 6(1)(a)) 

·       Where we have a contract to do so (UK GDPR Article 6(1)(b)) 

·       Where we have a legal obligation to do so (UK GDPR Article 6(1)€ 

·       Where we need to process personal data to protect someone’s vital interests (UK GDPR Article 6(1)(d) 

·       Where we need to for the purposes of our public task and parliamentary functions (UK GDPR Article 6(1)€ 

·       Where the processing is in our legitimate interests and not overridden by your rights (UK GDPR Article 6(1)(f) 

 

Data Retention 

 

We will only retain your personal information for as long as it is necessary to fulfil the purposes described when your personal data was originally collected. However, to provide the best service and representation for constituents, it may be necessary to revisit closed casework and policy enquiries.  

 

Closed policy enquiries will be securely and permanently deleted at the end of the parliamentary session in which they were made. 

 

We may retain information about closed casework in order to be able to give you full support, should you contact us again for help. 

 

If you wish to exercise your rights to erasure, you are welcome to do so. Please see the “Your Rights” Section for more information.  

 

Who we share information with 

 

When processing your correspondence, we will only share your information with a third-party organisation where it is necessary and reasonable to do so. 

 

Third-parties include, but are not limited to: government departments, local authorities, public bodies, health trusts, regulators, system providers (with appropriate agreements or contracts in place).  

 

We will only share as much information as is necessary to take your enquiry forward.  

 

We will never share or sell your personal data to other organisations for direct marketing purposes.  

 

Data Security 

 

We are committed to processing and retaining data within established technological and physical controls in a transparent manner, as well as promoting and safeguarding the information rights of data subjects. 

 

Our procedures ensure that technological and physical controls are in place that guarantee the privacy of data subjects, the security of data held on technological systems is processed according to an established lawful processing condition. Any such procedures will be reviewed as necessary and updated to ensure their effectiveness in line with advances in technology.  

 

Correspondence from my office may provide links to other websites. We are not responsible for the content or privacy practices of these websites. 

 

Your Rights 

 

You have the following rights in relation to your personal information: 

·       Where we are relying on your consent to use your personal data, you can withdraw that consent at any time - “right to object” 

·       You can request access to the personal data we hold about you at any time - “right to access” 

·       You can ask us to update your personal data if it changes. In certain circumstances, you can request we erase the personal data we hold, or ask us to stop or restrict processing if you have an objection “right to rectification” 

·       You can request deletion of the personal data we hold about you at any time - “right to erasure” 

·       You can request we restrict processing of personal data we hold about you at any time - “right to restrict processing” 

 

You can contact us about exercising your rights in respect of personal data, if you have questions about how personal data is used or if you would like to make a complaint, via the aforementioned contact details.  

 

If you remain unhappy with how we’ve used your data after making a complaint with us, you can also complain to the ICO. 

The ICO’s address: 

 

·       Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF. 

·       Helpline Number: 0303 123 1113 

·       Website: https://www.ico.org.uk/make-a-complaint 

 

Last Updated: 14 October 2024 

bottom of page