Blue Badge Service privacy notice

This page provides information on how the Blue Badge Service uses your personal information to administer the Blue Badge scheme for qualifying applicants.

By ‘use’ we mean the various ways your personal information may be processed including storing and sharing the information.

Further details

We also provide further details regarding: 

  • Who we are
  • How long we use your information for
  • Your rights under the GDPR and
  • How to exercise them 

You can see this information in our general privacy notice on our web site or you can ask us for a copy of this information.

What we use your personal information for

We use your personal information primarily to manage our Blue Badge Service including:  

  • Processing applications and replacement requests for a “Blue Badge” 
  • Taking enforcement measures regarding the use of the Blue Badge if necessary 
  • Prevention and/or detection of crime, including fraud

We also use this information to assess the quality of our services and evaluate and improve our policies and procedures.  

We may also use information in other ways compatible with the above.  

The information we collect and use 

The information we may collect and use may include your:  

  • Name of person applying for the Blue Badge and family members if applying on their behalf
  • Name at birth and place of birth
  • Address and previous address and contact details
  • Date of birth
  • Gender
  • National Insurance number and driving licence number
  • Name of carer
  • Details of previous badges
  • Details of benefits
  • Medical conditions affecting mobility (see below)
  • Other services received relating to mobility
  • If applicant or immediate family is a member of the armed forces 

We also collect information about the following which is classed as “special category data” under the GDPR.   

  • Information concerning your health, including mental health

The GDPR includes safeguards to protect the use of your special category data and criminal conviction data. Further details can be found on our website in the document named ‘Special category data and criminal offences data policy’ which sets out our procedures for compliance with the principles of the GDPR and the retention and erasure of this information.  

Who provides this information 

The information we hold includes information you have provided to us. 

We may also receive information from: 

  • Your family or a third party (if they apply on your behalf)

How the law protects you and the legal basis for processing your information

We have legal grounds to process this information because it is necessary for the performance of a task carried out in the public interest.  This includes tasks under the:  

  • Disabled Persons’ Parking Badges Act 2013

We also process personal information where it is necessary for the performance of a contract (e.g. lease, licence, service and maintenance contract). 

We have legal grounds to process special category data and criminal convictions data where it is in the exercise of a statutory function and it is in the necessary for reasons in the substantial public interest.  The statutory functions are as set out above. 

Who we share your information with

We may also share your personal information with other organisations and public bodies, in particular:

  • The company contracted to print the blue badges
  • The Department for Transport
  • Norfolk County Council’s Blue Badge enforcement teams
  • Norfolk County Council’s Independent Mobility Assessment team
  • Other local authorities for traffic enforcement and administration
  • The police
  • Courts  

We share this information without your specific consent as it is reasonable and necessary to do so to fulfil our public tasks or it is otherwise in the substantial public interest to do so.  The law imposes safeguards to protect your privacy in these circumstances.  

We will also share your information, subject to contractual and other legal safeguards, with organisations contracted by us to provide a service to the council or directly to you.  These service providers are known as data processors and have a legal obligation under GDPR and to us to look after your personal information and only use it for providing that service. 

Finally, we may also share your information across different departments of the Norfolk County Council, where it is necessary for our public tasks or functions to do so. 

How we keep your information

The information is stored electronically, on the County Council’s records management system, known as CRM, Norfolk’s Blue Badge Case Management system provided by IEG4, the Blue Badge console, The Department for Transport’s Manage Blue Badges system and, if necessary, the LAS social care system.  Additionally, information is securely stored in other mediums, including email accounts and in paper files.  We do not process your information outside of the European Economic Area.

Automated decision making

We do not make automated decisions about you and your family.

Date of Notice 

This notice was updated in August 2019

Was this webpage helpful?