GDPR Policy

Privacy Policy

  1. Introduction & Contact Details

Our GDPR policy is a legal requirement but that isn’t the main reason why we have one.  Our data policy goes way beyond the minimum requirements of European Law and is anchored on the principle that personal data will never be sold or used for any commercial purposes and will never be used in any form at all without consultation with, and the consent of, Platform members.  The principles of Commons Ownership of data and consentful processes underpin this policy. 

However, the basic requirements for GDPR compliance are laid out below.

 Our organisation’s name is: The Commons Platform.

Our email address is:

This privacy policy was last updated on: 16/10/18

  1. What information do we collect about you?

We collect basic information about you if you voluntarily agree to participation or interest in our project.  This information consists of contact details, your areas of interest and experience, and a record of your participation in various events or activities organised through the Commons Platform.

  1. How will we use the information about you?

We use this information to contact you about our project, activities, events and news.

We use any responses or participation from you to update our understanding of your level and area of interest in the project.  We also use it to put you in touch with other people involved in the project if there is an area of specific common interest or in relation to a specific upcoming event.  We would not pass on your contact information without consent.

We only process information on you if we either:

Have your explicit consent;

Where we have a legitimate interest based on your ongoing participation as a co-creator in our project.

You can withdraw this consent (and thereby any legitimate interest) and have us remove your contact details and other data at any point.

  1. Marketing

We may contact you about forthcoming workshops or activities where we need support.  We may also contact you about any upcoming social events.

You have the right to opt-out from receiving any such information at any time.

We will never share your personal information with any third party for marketing purposes.

We will only share your personal information with other organisations we are collaborating with with your explicit consent.

We will never use your information, or share your information with a third party, for any commercial reasons or where it may be exploited for commercial or marketing purposes.

  1. Cookies

Cookies are small text or image files placed on your computer to collect standard internet log information and user behaviour information. This information is used to track use of the website and/or emails and to compile statistical reports on activity.

For further information visit  or .

You can set your browser not to accept cookies and the above websites tell you how to remove cookies from your browser. However in a few cases some of our website features may not function as a result.

You can also disable tracking technology in emails you receive by adjusting your email service provider’s settings.

  1. Opting out

You can request that your personal information be erased, or object to its use by emailing or messaging us.

  1. Accessing your information

You have the right to request a copy of the information we hold about you.  If you would like a copy of some or all of your personal information, please email us.

We want to make sure that your personal information is accurate and up to date.  If your email address or any other information changes please let us know by email.  We will then ask for specific consent to use the new information.

  1. Other websites

Our website may contain links to other websites.  This privacy policy only applies to our website, and though we will never knowingly have a link to a site that would use your data without consent, you should read their own privacy policies to satisfy yourself that this is in fact the case.

  1. Sharing your personal information

We will only ever transfer your data to third parties if:

We have your consent;

They will respect the security and usage of your personal data in the same way that we would.

Both these conditions would have to obtain.

  1. International storage of information

We do not transfer your personal information outside the EEA (European Economic Area).

If our suppliers have a need to transfer your personal information outside the EEA, they do so in a way which meets criteria we have set out in a Data Processing Agreement with them, to ensure a similar degree of security of data as that provided by regulation in the EEA.

  1.  Data Security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed.

We’ll notify you and any applicable regulator if there is any suspected personal data breach.

  1.  How long do we keep your personal information

We will only retain your personal information for as long as you consent to it.  If you no longer wish to have any involvement in the project you can complete a simple process to determine whether we have no future contact (or retention of your data at all), or just retain basic contact info in case you might want to be involved in specific events in the future.

  1.  Changes to our privacy policy

We’ll place any updates on this webpage.

  1. How to complain

If you are unhappy with how we collect and use your data, please tell us first. You also have the right to complain to the ICO (Information Commissioner’s Office), whose website can be found at