Daisi ("we", "us", "our") is committed to protecting your privacy. We collect, hold and process personal data securely, in compliance with the UK General Data Protection Regulation 2018 (UK GDPR) and the Data Protection Act 2018.
Any personal information that we collect about you is used lawfully and only with your consent (unless another lawful basis applies).
Consent & Your Rights
Whenever you provide us with personal information, we will ask you to confirm that you consent to our collection, storage, and processing of your personal data.
You have the right to withdraw your consent at any time.
All our email communications include an option to unsubscribe or update your preferences. We will only send you information that we believe is relevant and of interest to you, such as:
- Daisi news and updates
- Events and opportunities
- Ways to get involved and support our work
If our communications are not relevant to you, you can change your preferences or unsubscribe at any time.
What Information We Collect
The kind of information we may collect includes (but is not limited to):
- Your name
- Your address
- Your phone number
- Your email address
- Payment or donation details (if you make a donation or purchase through our site)
We avoid collecting sensitive personal data unless you explicitly consent.
Why We Process Your Data
We process your personal data so that we can:
- Keep you informed about our programmes, events, and opportunities
- Manage and process donations
- Administer our services and partnerships
- Comply with any legal obligations (for example, Gift Aid claims)
We will never share your personal data with third parties for marketing purposes without your specific consent.
Children and Young People's Data
As part of our work, we sometimes collect limited personal data relating to children and young people (for example, when they participate in workshops, events, or creative projects).
- We collect only the information that is necessary for participation, safeguarding, or communication with parents/carers.
- Data relating to children is collected and processed with the explicit consent of a parent or legal guardian.
- We do not use children's personal data for marketing purposes.
- Children's data is stored securely and retained only for as long as necessary to deliver the activity or meet legal and safeguarding obligations.
- Where possible, children's data is anonymised when used for reporting, monitoring, or evaluation purposes.
Parents and carers have the right to request access to, correction of, or deletion of their child's personal data at any time.
How We Process & Store Your Data
Your data will be stored securely, using encrypted or access-controlled systems where appropriate.
We use third-party service providers (such as Mailchimp) to process data on our behalf. These providers comply with GDPR and are only permitted to use your data in line with our instructions.
Unless you request deletion, we will retain your data for up to three years (or longer if required by law). After that, we may ask you to renew your consent or delete your data.
You have the right to request access to the information we hold about you, to correct it, or to ask us to delete it at any time.
Cookies & Analytics
We use cookies and analytics tools (such as Google Analytics) to help us understand how visitors use our site, measure traffic, and improve usability.
You can disable or delete cookies at any time via your browser settings.
Sharing Your Information
We do not sell your personal data.
We may share your information with trusted third parties to help us deliver our services (for example, email newsletter platforms, payment processors, or donation systems). These organisations are contractually required to comply with data protection law and may not use your data for any other purpose.
In some cases, we may need to share information with regulatory or governmental bodies where required by law.
Security & Data Breaches
We take appropriate organisational and technical measures to protect your personal data from unauthorised access, disclosure, alteration, or loss.
If a data breach occurs that poses a risk to your rights, we will notify the UK Information Commissioner's Office (ICO) and, if necessary, affected individuals, in line with legal requirements.
Changes to This Policy
We may update this Privacy Policy from time to time. If we make significant changes, we will notify you via our website or by email (if we hold your address).
Contact Us
If you have any questions about this Privacy Policy, or if you wish to access, correct, or delete your personal data, please contact us at
Daisi
Daisi, Exeter Phoenix, Gandy St, Exeter EX4 3LS | Telephone 01392 494162
Email: admin@daisi.org.uk
Website: https://www.daisi.org.uk
You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) if you believe your data protection rights have been breached.