Building control privacy notice - Privacy notices

Who are we and what services do we provide?

Building regulations are legal standards that must be complied with for all construction work or alterations to buildings to ensure they are safe, fit for purpose, conserve energy and provide adequate facilities. Runnymede Borough Council’s building control function ensures that building works comply with these regulations.

What personal information do we collect?

We collect and process the following information to enable the building control section to perform our duty to administer building regulation applications and demolition notices. 

  • Identity data [name, address, signature and contact details, specifically in respect to duty holders]
  • Property information [information provided to us in your submissions or independently obtained]
  • Financial information [payment details and payment history]
  • Medical or health information [whether you have a disability relevant to your application].  

We also use your Identity data and Property Information to undertake site inspection, investigate unauthorised works and maintain registers of works undertaken. 

Furthermore, we collect and process the following information to investigate dangerous structures.

  • Identity data [name, address, signature and contact details, specifically in respect to duty holders]
  • Property information [information provided to us in your submissions or independently obtained]
  • Financial information [payment details and payment history]

The information is usually supplied to us directly (or via an agent on behalf of the applicant) or we receive it from a third-party website that provides a transaction service e.g. the planning or other electronic portal.

Why do we process personal data?

Our lawful basis for the above purposes is as follows.

  • Public task - we need to collect or use your information to carry out a task laid down in law, which the law intends to be performed by an organisation such as ours.
    • The Building Act 1984 
    • The Building Regulations 2010 (as amended)
    • Building Safety Act 2023
  • Legal Obligation - we must collect or use the information so we can comply with the law, and we have little to no discretion on how we do that. Some information provided to us; we are obliged under the regulations to make available on building regulation registers. All your data protection rights may apply, except the right to erasure, the right to object and the right to data portability.
Who has access to your personal data?

The register of building regulation applications is available via the council offices and may in future be on the council website for the public to view (in the same way as the planning register). We operate a policy where we routinely redact the following details before making forms, documents, letters, reports available online:

  • personal contact details - e.g. telephone numbers, email addresses
  • signatures
  • special Category Data - e.g. supporting statements that include information about health conditions and information agreed to be confidential
  • financial Information

Sometimes we might decide it is necessary, justified and lawful to disclose data that appears in the list above. In these circumstances we will discuss this with you. If you are submitting supporting information which you would like to be treated confidentially or wish to be specifically withheld from the public register, please let us know as soon as you can - ideally in advance of submitting the application. The best way to contact us about this issue is building.control@runnymede.gov.uk

Who do we share data with?

Where necessary for the purposes stated your information will be shared with the parties set out below for reasons that are compatible with the purposes stated in this notice.

  • other council departments, and internal consultees
  • external consultees
  • engineering / plan checking consultants
  • legal advisors. 
  • Surrey Fire Service
  • Thames Water

We require all third parties to respect the security of your personal data and to treat it in accordance with the law.

How do we protect personal data?

Please see the How we take care of your personal data section of our main Privacy Policy 

How long do we keep your personal data?

All information submitted as part of an application and the outcome of the application are kept indefinitely as the Council has a legal duty to retain a register of works.

Your rights

Rights available are directly related to our lawful basis for processing which is set out above. To find out more about your rights please see the Your Rights section of our main Privacy Policy.

Submit a FOI request

Submit a subject access request

Report personal data published