Privacy Policy

Policies › Privacy Policy

Last updated: March 2026

Introduction

Oasis Home Services (“we”, “us”, “our”) is committed to protecting and respecting the privacy of everyone who interacts with our organisation — including young people in our care, their families, referring professionals, staff, and website visitors.

This Privacy Policy explains what personal information we collect, how we use it, who we share it with, and your rights in relation to that information. We are committed to handling all personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

What Information We Collect

We may collect and process the following types of personal information:

From Young People in Our Care:

Full name, date of birth, and contact details
Personal history and background information
Health and medical information
Educational and employment records
Support plans, risk assessments, and care documentation
Safeguarding and incident records

From Referring Professionals & Local Authorities:

Full name, job title, and organisation
Contact details (email address and phone number)
Referral information and placement documentation
Case notes and correspondence

From Website Visitors & Enquirers:

Name, email address, and phone number (via contact and referral forms)
General enquiry information submitted through our website
Technical data such as IP address, browser type, and cookies (see our Cookie Policy)

From Staff & Volunteers:

Personal identification and contact information
Employment history and references
DBS check information
Training and qualification records
Emergency contact details

How We Use Your Information

We use the personal information we collect for the following purposes:

Purpose	Legal Basis
Providing supported accommodation and care services	Legitimate interests / Legal obligation
Managing referrals and placements	Legitimate interests / Contract
Safeguarding and child protection	Legal obligation / Vital interests
Communication with professionals, partners, and families	Legitimate interests / Contract
Staff recruitment, employment, and training	Contract / Legal obligation
Compliance with Ofsted and regulatory requirements	Legal obligation
Improving our website and services	Legitimate interests
Responding to enquiries and complaints	Legitimate interests

Sensitive (Special Category) Data

Some of the information we handle is classified as special category data under UK GDPR, including health information, ethnicity, religion, and details relating to criminal matters. We process this data only where:

It is necessary for the provision of care and support services
We have explicit consent from the individual (where appropriate)
It is required for safeguarding or legal compliance purposes

All special category data is handled with the highest level of care and confidentiality.

How We Share Your Information

We do not sell or rent personal data to any third party. We may share information with the following where necessary and lawful:

Local Authorities and Social Workers — for placement management and safeguarding
Health and medical professionals — to support the wellbeing of young people
Ofsted and regulatory bodies — to meet our legal and registration obligations
Police and emergency services — where there is an immediate risk to safety
Third-party IT and software providers — who support our systems, bound by data processing agreements
Legal and professional advisors — where required

All third parties we work with are required to handle personal data securely and in accordance with UK GDPR.

How Long We Keep Your Information

We retain personal data only for as long as necessary for the purposes it was collected, or as required by law. Our general retention periods are:

Data Type	Retention Period
Young people’s care records	75 years (or up to 25th birthday, whichever is longer)
Referral and placement records	7 years after placement ends
Staff employment records	6 years after employment ends
Website enquiry and contact forms	2 years
Financial and accounting records	6 years

After the applicable retention period, data is securely deleted or anonymised.

How We Protect Your Information

We take the security of personal data seriously. We have implemented appropriate technical and organisational measures to protect personal information from unauthorised access, loss, misuse, or disclosure. These include:

Secure and encrypted data storage systems
Password-protected devices and systems
Restricted access to sensitive records on a need-to-know basis
Regular staff training on data protection and information security
Secure disposal of physical and digital records

Your Rights

Under UK GDPR, you have the following rights in relation to your personal data:

Right of Access — You can request a copy of the personal data we hold about you
Right to Rectification — You can ask us to correct inaccurate or incomplete information
Right to Erasure — You can request deletion of your data in certain circumstances
Right to Restrict Processing — You can ask us to limit how we use your data
Right to Data Portability — You can request your data in a portable format
Right to Object — You can object to certain types of processing
Rights related to Automated Decision-Making — We do not make automated decisions that significantly affect individuals

To exercise any of these rights, please contact us at:
📧 admin@oasishomeservices.co.uk

We will respond to all requests within 30 days in line with our legal obligations.

Contact Us

If you have any questions about these Terms of Service, please contact us:

📧 admin@oasishomeservices.co.uk
🌐 www.oasishomeservices.co.uk