If you have any questions, please contact Tamsin Arrowsmith-Brown firstname.lastname@example.org
In this policy‘UP Projects’,‘we’or‘our’ refers to UP Projects charity (no. 1170960) which curates and commissions contemporary art for public places. UP Projects Limited is a company limited by guarantee registered in England and Wales (registered company no: 4971057).
Our registered office address is: 19 Links Yard, 29a Spelman Street, London E1 5LX.
If you would like to contact us, please telephone or email our data protection officer Tamsin Arrowsmith-Brown
+44 (0)20 7377 9677
We collect personal information in the following ways:
Depending on the reason for which we need your information, we may collect the following:
Some of the information that we collect about you is considered sensitive and is considered as a separate category under data protection legislation. This includes, but is not limited to, information about sexuality, gender and race. We only collect this information to ensure that we are meeting our objectives in terms of reaching our target audiences and to fulfil our reporting obligations to our funding bodies. All information submitted for reporting purposes is anonymised.
We use the information held about you to:
Data protection laws mean that each use we make of personal information must have a “legal basis”. The relevant legal bases are set out in the General Data Protection Regulation (EU Regulation 2016/679) and in current UK data protection legislation.
Consent is where you have given us permission to use your information in a certain way, for example when you sign up to receive our newsletter and other information about UP Projects activities via email, post or telephone. Where we use your information for a purpose based on consent, you have the right to withdraw consent for any future use of your information for this purpose at any time.
We have a basis to use your personal information where we are entering into a contract with you or performing our obligations under that contract. Examples of this would be if you are buying something from us (for instance tickets to an event), or applying to work/volunteer with us.
We have a basis to use your personal information where we need to do so to comply with one of our legal or regulatory obligations. For example, in some cases we may need to share your information with our various regulators such as the Charity Commission, Fundraising Regulator or Information Commissioner, or to use information we collect about you for due diligence or ethical screening purposes.
We have a basis to use your personal information where it is necessary for us to protect life or health. For instance in the case of an emergency impacting individuals at one of our events, or a safeguarding issue which required us to contact people unexpectedly or share their information with emergency services.
We have a basis to use your personal information if it is reasonably necessary for us (or others) to do so and in our/their “legitimate interests” (provided that what the information is used for is fair and does not unduly impact your rights).
We consider our legitimate interests to include all of the day-to-day activities UP Projects carries out with personal information. Some examples not mentioned under the other bases above where we are relying on legitimate interests are:
We only rely on legitimate interests where we consider that any potential impact on you (positive or negative), how intrusive it is from a privacy perspective and your rights under data protection laws do not override our (or others’) interests in us using your information in this way.
When we use sensitive personal information (please see the “What personal information we collect” section above), we require an additional legal basis to do so under data protection laws, so will either do so on the basis of your explicit consent or another route available to us at law for using this type of information (for example if you have made the information manifestly public, we need to process it for employment, social security or social protection law purposes, your vital interests, or, in some cases, if it is in the public interest for us to do so).
We take all appropriate technical and organisational controls to keep your data safe, including encrypting our online forms and holding information on a protected network.
We hold information collected for different purposes for varying amounts of time. For example, we will hold information that you supply when signing up to our newsletter indefinitely, until you ask us to delete it.
We will hold information supplied for reporting purposes for as long as is required by our funding obligations or for our own audience target objectives. This is usually at least one year.
We are also required to hold some information which is determined by legal or operational considerations, for example for tax or health and safety purposes. The length of time we hold this information will be determined by the specific legal or operational requirement.
We will never sell or share your information with third parties for marketing purposes. However we may disclose your information to selected third parties in order to carry out our objectives and obligations as set out in this policy. These may include;
Should we be under a legal or regulatory duty to do so, we may share your details to the police, regulatory bodies of legal advisors, and / or where we consider this necessary, to protect the rights, property or safety of UP Projects, its staff, visitors, users or others.
If you contact us (by any method), we may keep a record of that correspondence and use your contact details to reply to you.
Please note, e-mail is not a fully secure means of communication. Whilst we try to keep our systems and communications protected against viruses and other harmful effects we cannot guarantee this.
If you no longer wish to receiving marketing from us by email, you can unsubscribe via the link in our email or bycontacting email@example.com. Please note that it is not possible to 'opt-out' of receiving communication from us which relates to any purchases, donations or bookings.
We will aim to complete any of the above requests within one month. If this is not possible, we will tell you why and when you might reasonably expect it to be completed.
We make no representations about any other website.
When you access any other website through a link on our website you understand that it is independent from us and that we have no control over that website or the way your personal information is collected through those websites.
Those websites may have their own privacy policies and we encourage you to look at those policies or contact the website operators directly to understand how your personal information is used.
What are cookies?
The types of cookies we use on our website are set out below:
Google Analytics is used widely by websites to collect information about how website visitors use a site. We will use Google Analytics cookies to collect information about how users use the websites and to improve the websites.
Google Analytics collect information in an anonymous form and will not allow us to identify you or collect any personal information about you.
Google Analytics do not track your internet activity after leaving the website.
The website contains buttons and content from social media sites such as Facebook, Twitter and YouTube, so that you can easily share content from the website with your social media networks. If you use these features, these social media sites may use their own cookies. Information on how these are used can be found on their respective websites.
Internet browsers normally accept cookies by default. However, it is possible to set an internet browser to reject cookies.