Privacy notice – community meals

North Somerset Council is registered with the Information Commissioner’s Office for the purposes of processing personal data. The community meals service is administered by our partner Agilisys.

The information you provide will be held and used in accordance with the requirements of UK and European data protection law. The information will form part of your community meals account, and will be held for two years following last contact with you.

Unless otherwise agreed with you, we will only collect the minimum personal data required to deliver the service, which includes your name, contact details, date of birth, next of kin details, dietary requirements, key safe numbers, personal circumstances that may impact on our ability to deliver to you, and medical conditions. It does not include any information relating to criminal convictions or offences.

The information will be used to carry out our community meals service, a voluntary service designed to improve your health and well-being. The processing of this information is lawful as we are acting in the public interest to deliver this service, in accordance with Article 6(1)(e) of GDPR. We require information about your medical conditions and dietary requirements in order to tailor the service to you, in accordance with Article 9(2)(g) of GDPR.

We will not use your personal information in a way that may cause you unwarranted nuisance. Failure to provide the information could result in our inability to deliver the service to you.

The information provided may be shared with an external taxi driver company to deliver to you. We may also share the information with other support providers, where we consider he support they can offer may be of additional assistance to you. We also have a legal obligation to share information with our local safeguarding board or the police, where we have legitimate concerns about an individual’s welfare. Your data is never shared or processed outside of the UK.

We may lawfully disclose information to public sector agencies to prevent or detect fraud or other crime, or to support the national fraud initiatives and protect public funds under the Local Audit and Accountability Act 2014. Under the conditions of the Digital Economy Act 2017, we may also share personal data provided to us with other public authorities as defined in the Act, for the purposes of fraud or crime detection or prevention, to recover monies owed to us, to improve public service delivery, or for statistical research. We do not share the information with other organisations for commercial purposes.

You have the right to see the personal data we process about you, as well as the right of objection, rectification and restriction (to destruction of records only). 

If you have any questions or concerns about the way we process your personal data, contact our Data Protection Officer at