Privacy Policy

This Privacy Policy applies to the Ami website which is owned by Oxford Computer Consultants.

Oxford Computer Consultants is committed to protecting and respecting your privacy and security. Whenever you provide us with your personal information via our website "Site(s)", we will treat that information in accordance with this policy, our terms and conditions and current UK Data Protection legislation. By giving us your consent to process your data, you agree to be bound by this policy.

Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. This policy may change from time to time, so please check this page periodically.

Oxford Computer Consultants

Oxford Computer Consultants (OCC) is a company limited by guarantee (number 3521204). The registered address is 23-38 Hythe Bridge Street, Oxford OX1 2EP.

OCC is the Data Controller for all data submitted via the Ami website. Our Data Protection Officer is Damian Payne (Operations Director). You can contact us at the address above or by email to

Data Protection

Your privacy is important to OCC and we are committed to respecting information about you. We comply with the provisions of the General Data Protection Regulation (GDPR) and the UK Data Protection Act of 2018.

Oxford Computer Consultants would like to keep in touch with you to let you know about the work we do to help reduce loneliness and social isolation. By providing your consent, you agree to being contacted by Oxford Computer Consultants using your submitted contact details (email address, address and telephone number). Any information that you agree to give us will be protected by technical and organisational processes. You can unsubscribe from these communications at any time by emailing us at

Where you have provided consent, we will share your data with the voluntary organisations that we work with.

In accordance with the General Data Protection Regulation 2016 (GDPR), the legal basis for our processing of your data is consent (for the purposes listed in the section below). You may withdraw this consent at any time by contacting us by email at or by post at our registered address (see above). The GDPR provides you (the data subject) with the following rights regarding your personal data.

  • You have the right to access any personal data which we hold on you, including details of what information is stored, to which recipients data has been disclosed and how long the data will be retained. We will provide access to your information as soon as is reasonably possible within one month of the request. Access is free of charge, though we may charge an administration fee for any further copies requested of the same data. Please contact us at
  • You have the right to rectification of your personal data where it is inaccurate or incomplete; if this data has been disclosed to a third party (e.g. a voluntary organisation), we will inform them of the rectification wherever possible.
  • You have the right to restrict further processing of your data where you have requested rectification of personal data. Once the accuracy of personal data has been established, we will inform you before lifting the restriction on processing.
  • You have the right to the erasure of your data where your consent has been withdrawn or where it is no longer needed for the stated purpose. We will erase your information as soon as is reasonably possible within one month of the request. We will inform third parties of this erasure wherever possible.
  • You have the right to data portability, whereby you can obtain a copy of your personal data and reuse it in a different IT environment. We will provide this data in an open, machine-readable format (e.g. CSV) within one month of your request.
  • You have the right to complain to a supervisory body if you are dissatisfied with the way in which your data has been handled. The appropriate body in this case would be the Information Commissioner's Office.

What personal information is collected from you?

When you visit the Site, we collect various personal information which will include your name, address, contact details, preferences, IP address, and information regarding what pages are accessed and when.

Purposes of data processing

We may use the information we collect for the following purposes:

  • To process your registration with our partner voluntary organisations
  • To carry out our obligations arising from any contracts entered into by you and us
  • To verify your identity
  • To seek your views or comments on the services we provide
  • To notify you of changes to our services
  • To improve our services or marketing purposes
  • To send you communications which you have requested and that may be of interest to you. E.g. information about activities, campaigns or fundraising.

Who has access to your information?

We are committed to protecting the personal data of our supporters, customers and members. Any details you give us will be held in accordance with the General Data Protection Regulation 2016 and Data Protection Act 2018. Oxford Computer Consultants is the sole owner of the information collected on this Site. We will not sell, share, or rent this information to third parties, unless we have your explicit permission to do so, or we are required to do so by law, for example, by a court order or for the purposes of prevention of fraud or other crime. Where you have given us permission we may contact you about other services and products or pass your details to similar organisations.

We may transfer your personal information to a third party as part of a sale of some or all of our business and assets to any third party or as part of any business restructuring or reorganisation, or if we are under a duty to disclose or share your personal data in order to comply with any legal obligation or to enforce or apply our terms of use or to protect the rights, property or safety of our customers. However, we will take steps with the aim of ensuring that your privacy rights continue to be protected.

Data retention policy

Your data will be retained no longer than is necessary for the data processing purposes identified above. OCC will not retain any data which you enter on the Ami website for more than 3 years after your last login. Your data will also be deleted within one month at the latest if you withdraw your consent to continued processing and request that your data be erased.

For the purposes of business continuity, we create regular backups of website data which are retained for 35 days. If data is erased, any backup of the data will be deleted at the end of the retention period. However, should we restore any data from a backup before the retention period has elapsed, we will manually remove all such data from the restored system (rather than attempt to delete the data from all the backups).


What are cookies?

Cookies are tiny software files that are stored on a computer or mobile device when an individual visits a website. Cookies allow websites to recognise that a user on an individual computer has previously visited the site. The cookies save some information about that user to improve services when they access the site again in the future. For example:

  • Enabling a service to recognise your device so that you do not have to give the same information several times during one task
  • Recognising that you may already have given a username and password so that you do not need to do it for every web page requested
  • Measuring how many people are using services, so that they can be made easier to use and that there is enough capacity to ensure that they are fast

Necessary cookies used by the Ami website

Necessary cookies enable the core functionality of the site. You may disable these by changing your browser settings, but this may affect how the website functions.

The following cookies are used during all uses of the Site:

Cookie Name Typical content Expires
CookieControl The user's cookie constent choices for the Site 3 months
AntiForgeryToken Seemingly-random alpha-numeric characters and symbols used to prevent cross-site request forgery (CSRF) attacks When the user exits the browser
Seemingly-random alpha-numeric characters and symbols used to tie all requests from a user's session to the same host When the user exits the browser

The following cookies are used when logging in to the Site:

Cookie Name Typical content Expires
.AspNet.ApplicationCookie An encrypted version of the Site's identifier for the user's authentication session When user logs out or exits the browser

Optional cookies used by the Ami website

Optional cookies may enable additional features or inform future site development work. These can be toggled on or off using the cookie control, which pops up on the first visit to the site and can be accessed at any time by clicking the 'C' control in the bottom left of any page.

The following cookies are used during all uses of the Site, if user consent is given:

Cookie Name Typical content Expires
_ga 'GA' followed by randomly generated numbers, used by Google Analytics to distinguish between visitors 1 year
_gid 'GA' followed by randomly generated numbers, used by Google Analytics to distinguish between visitors 1 year
_gat A simple number, used to balance the amount of requests sent to Google Analytics 1 year

Google Analytics sets cookies to help us accurately estimate the number of visitors to the website and volumes of usage. For more information about Google Analytics visit Google Analytics website.

Removing and disabling cookies

If you do not wish to accept cookies on to your machine you can disable them by adjusting the settings on your browser. However this will affect the functionality of the websites you visit. To find out more about how to delete and disable cookies, visit

Security precautions in place to protect the loss, misuse or alteration of your information

When you give us personal information, we take employ security best practice to ensure that it is treated securely. The transmission of all information you send to, and receive from, the Site is encrypted. Once we receive your information, it is stored on our secure servers and protected by our strict security procedures.

Whilst we take reasonable steps to protect your personal information, the internet is not completely secure and as such Oxford Computer Consultants cannot guarantee the security of any information you transmit to us, and you do so at your own risk.

Where we have given (or where you have chosen) a password which enables you to access certain parts of our Sites, you are responsible for keeping this password confidential. We ask you not to share your password with anyone.

What happens when visitors link to another site?

Our Site contains links to other websites. This privacy policy applies only to our Site, so visitors should always be aware when they are moving to another site and read the privacy statement of any site which collects personal information. We cannot be responsible for the privacy policies and practices of other sites even if you access them using links from our Site.

18 or Under

If you are aged 18 or under you are not allowed to provide us with personal information. Please contact our partner Voluntary Organisations directly to find out if it is possible for you to volunteer for them.

Contact us

If at any time you would like to contact us with your views about our privacy practices, or with any enquiry relating to your personal information, you can do so by sending an e-mail to us at

If you wish to access, correct or delete any of your personal data held by us, or if you have any questions regarding this statement, please direct them by emailing or by post to: Communications Manager, Oxford Computer Consultants, 23-38 Hythe Bridge Street, Oxford OX1 2EP