Is this a Privacy Notice????
Well, it might be, but not in this country or in relation to data protection.
If personal data is obtained from a third party that does not negate the organisation’s responsibilities towards the individual and a Privacy Notice should still be provided, unless an exemption applies.
The purpose of the Privacy Notice is to provide information about how the individual’s personal information will be handled, including the legal basis for processing, who their information will be shared with (if anyone) and how long it will be retained. It will also explain the individual’s rights relating to the processing of the information.
A Privacy Notice should be concise, transparent, intelligible, use clear and plain language and be provided in an easily accessible form. Although, it can be provided verbally in some circumstances, it should be provided in writing, whenever possible, including electronic means.