GovWifi privacy notice

Last updated: 30 April 2021

Who we are

GovWifi is a secure wifi service. It provides wifi access in government buildings.

GovWifi is provided by the Cabinet Office.

The Cabinet Office is the data controller for GovWifi. The Cabinet Office determines how and why personal data is processed. Read the Cabinet Office’s entry in the Data Protection Public Register for more information.

GovWifi is currently in public beta, which means we’re still testing and improving it.

What data we collect from you

In order that GovWifi can work effectively for you we collect the following data:

  • email address or mobile telephone number
  • the number of authentication attempts you make
  • activation and login dates

We also identify the buildings in which you access GovWifi.

The legal basis for processing your personal data is that it’s necessary to perform a task in the public interest.

Why we need your data

We need to process personal data to let users in government, arm’s length bodies and public sector organisations stay connected to a secure wifi service while visiting other departments and moving between buildings.

We need to know when you last used GovWifi so we can delete your account if it has not been used for 12 months.

We need to know your email address or mobile phone number so that we can notify you about major changes to the service or changes to the terms and conditions. For example, if the current inactive account deletion period of 12 months is reduced.

In accepting the terms and conditions of use you agree to the acceptable use policy of your host organisation.

That organisation may restrict access for lawful purposes. We are obliged to be able to identify users who do not comply with these terms and conditions so access can be restricted/terminated.

What we do with your data

The Cabinet Office will share this information with any host organisation from which you access the service if they request it.

The Cabinet Office may occasionally contact you by email or text message, using the information you’ve provided, to give you important information about the GovWifi service, including:

  • major changes to GovWifi, like restricting access to non-public sector workers
  • changes to these terms and conditions
  • requests for feedback to improve GovWifi

We will not:

  • sell or rent your data to third parties
  • share your data with third parties for marketing purposes

We will share your data if we are required to by law – for example, by court order, or to prevent fraud or other crime.

How long we keep your data

We will only retain your personal data for as long as:

  • the law requires us to
  • we need to provide this service to you

Children’s privacy protection

Our services are not designed for, or intentionally targeted at, children 13 years of age or younger. It is not our policy to intentionally collect or maintain data about anyone under the age of 13.

Where your data is processed and stored

We design, build and run our systems to make sure that your data is as safe as possible at any stage, both while it’s processed and when it’s stored.

Your personal data may be transferred outside the United Kingdom while being processed by the Cabinet Office.

If this happens, we’ll make sure you’re given the same level of technical and legal protection as you are within the UK. Your data will be subject to equivalent legal protection through the use of Adequacy decisions and Model Contract Clauses.

How we protect your data and keep it secure

We are committed to keeping your data secure.

We set up systems and processes to prevent unauthorised access or disclosure of the data we collect about you – for example, we protect your data using varying levels of encryption

We also make sure that third parties we deal with have an obligation to keep all personal data they process on our behalf secure.

Your rights

You have the right to request:

  • information about how your personal data is processed
  • a copy of any personal data you have provided in an accessible format
  • that anything inaccurate in your personal data is corrected immediately
  • to raise an objection about how your personal data is processed
  • that your personal data is erased if there is no longer a justification for it
  • that the processing of your personal data is restricted in certain circumstances

If you have any of these requests, get in contact with our Data Protection Officer. Contact details can be found below.

Changes to this notice

We may modify or amend this privacy notice at our discretion at any time.

When we make changes to this notice, we will amend the last modified date in this section. Any modification or amendment to this privacy notice will be applied to you and your data as of that revision date.

If these changes affect how your personal data is processed, The Cabinet Office will take reasonable steps to make sure you know.

How to contact us

The data controller for your personal data is the Cabinet Office.

Contact the Data Protection Officer if you either:

  • have any questions about anything in this document
  • think that your personal data has been misused or mishandled

Data Protection Officer

Cabinet Office
70 Whitehall
London
SW1A 2AS

Email
DPO@cabinetoffice.gov.uk

If you have a complaint, you can also contact the Information Commissioner, who is an independent regulator set up to uphold information rights.

Information Commissioner's Office

Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Email
casework@ico.org.uk

Contact form
https://ico.org.uk/global/contact-us/email/

Telephone
0303 123 1113

Textphone
01625 545860