Why we share information
We may need to pass your information to other people and organisations that provide the service.
These providers are obliged to keep your details securely, and use them only to fulfil your request. If we wish to pass your sensitive or confidential information onto a third party, we will only do so once we have obtained your consent, unless we are legally required to do so.
We may disclose information to other partners where it is necessary, either to comply with a legal obligation, or where permitted under the General Data Protection Regulation/Data Protection Act, e.g. where the disclosure is necessary to safeguard the prevention, investigation detection or prosecution of criminal offences, to protect you or others or to enforce civil law claims etc.
Where we need to disclose sensitive or confidential information such as medical details to other partners, we will do so only with your prior explicit consent or where we are legally required to.
At no time will your information be passed to organisations external to us and our partners, for marketing or sales purposes or for any commercial use without your prior express consent.
Prevention and detection of crime
We are required by law to protect the public funds we administer.
We may use any of the information you provide to us for the prevention and detection of fraud.
We may also share this information with other bodies responsible for auditing, administering public funds, or where undertaking a public function, in order to prevent and detect fraud. This includes the Cabinet Office, the Department for Work and Pensions, other local authorities, HM Revenue and Customs, and the Police.
Section 68 of the Serious Crime Act 2007 enables public authorities to disclose information for the purposes of preventing fraud, as a member of a specified anti-fraud organisation or otherwise in accordance with any arrangements made with such an organisation.
For further information see our page on protecting public funds.
In limited situations we may monitor and record electronic transactions (website, email and telephone conversations).
This will only be used to prevent or detect a crime, or investigate or detect the unauthorised use of the telecommunications system and only as permitted by the Telecommunications (Lawful Business Practice) (Interception of Communications) Regulations 2000.