Who we are
We’re a strategic brand, design and digital agency. Our clients are organisations creating positive change, like hospitals, colleges, charities and trusts. We help them to tell their story: who they are, what they do and why it matters.
In carrying out our work we collect and use personal information about individuals. We recognise the trust placed in us by individuals whose information we use. It is important to us that we are open and honest about the way we use information and we are committed to ensuring that we do so in a manner that is both lawful and respects your privacy.
What data we collect and how we use it
The type and quantity of data we collect and use depends on why you have provided it.
We will only collect, use and otherwise handle your personal data:
- where you have consented to this for specified, explicit and legitimate purposes
- where this is necessary to fulfil legal obligations that apply to us
- where it is necessary for our legitimate interests relating to running our daily operations, as long as, in each case, these interests are in line with applicable law and your legal rights and freedoms.
Who we share your information with
Unless we are required to share your data for legal or regulatory reasons, we will never share your data with other organisations.
We do use third-party organisations to help us fulfil our marketing. Where we use external companies to collect or process data on our behalf, we carry out comprehensive checks on these companies, and put in place contracts to control how they manage the data they may collect or have access to.
With your specific consent we may share your details with a third party service provider, to provide you with a service such as advocacy.
Keeping your data safe and up to date
We ensure that the most appropriate technical controls are in place to keep your data safely. Access to your data is regularly reviewed and only accessible to the relevant trained staff and contractors.
To help us ensure that we only hold accurate and up to date data, we regularly use third-party data sources to clean our data. Where we use external companies to collect or process data on our behalf, we carry out comprehensive checks, and put in place contracts to control how they manage the data they may collect or have access to.
We carefully manage the communications we send you to ensure that we are contacting you in the most appropriate way and that we are not sending you unwanted communications. To do this, we may combine the information that we collect about you and analyse what we know about your interests, preferences and level of potential engagement. We may use data that we have not directly collected from you, such as aggregated data at postcode level. We may also use statistical analysis on this data to understand the likelihood that you will be interested in or responsive to a campaign or message.
Website and emails
When someone visits our website we use a third-party service, Google Analytics, to collect standard internet log information and details of visitor behaviour patterns. We do this to find out information, such as the number of visitors to the various parts of the site.
We might also obtain your personal data through your use of social media channels such as Facebook, WhatsApp, Twitter, LinkedIn, YouTube and others, depending on your settings or the privacy policies of these social media and messaging services. To change your settings on these services, please refer to their privacy notices, which will tell you how to do this.
We use a third-party provider, Campaign Monitor, to deliver our large distribution emails. We collect statistics around email opening and clicks using industry standard technologies including clear gifs to help us monitor and improve our mailings. For more information, please see Campaign Monitor’s privacy notice.
We will only collect the data that we need to carry out the purposes you have contacted us for or given us permission to use it for.
At any time that you wish you can:
- gain access to your personal information,
- object to the processing of your personal information,
- object to the use of automated decision-making and profiling,
- restrict the processing of your personal information,
- ask for a copy of your personal data (known as data portability),
- rectify or correct your personal information, and
- have your personal information removed (known as Erasure or the ‘right to be forgotten’).
Where you have provided consent to be contacted or to receive a service, you will be entitled to withdraw that consent at any time.
If you are at any point unhappy with the way that we handled your personal data, you can make a complaint to the Information Commissioner’s Office.
To make changes to how we contact you, please contact: firstname.lastname@example.org
For all other requests please contact the Data Protection Officer at:
62 Britton Street
Changes to this policy
We may change the terms of this privacy statement from time to time. If we do so, we will post the changes here so please check from time to time.