Background illustration 1 Background illustration 2

Privacy Policy

Introduction

At Local Creative Project Ltd, we are committed to protecting your personal data and respecting your privacy. This Privacy Policy outlines how we collect, use, and share your personal information in line with the General Data Protection Regulation (GDPR) and the Data Protection Act 2018. We are dedicated to ensuring that your data is handled responsibly and transparently.

Who We Are

Local Creative Project Ltd is a creative consultancy providing a range of services to clients. For the purposes of data protection laws, we are the “data controller” when processing your personal data, meaning we determine how and why your data is used.

What Personal Data We Collect

We collect the following types of personal data:

Contact Information: Names, email addresses, phone numbers, and business addresses.

Business Information: Company names, job titles, and other information relevant to our services.

Communications: Email and other correspondence relating to our services.

Website Data: IP addresses, cookies, and data from website analytics to improve user experience.

We may collect this data directly from you or from publicly available sources where appropriate.

How We Use Your Personal Data

We use your personal data in the following ways:

Service Provision: To provide our services, including communication about ongoing projects and client support.

Business Operations: For administrative purposes, such as invoicing, project management, and maintaining business relationships.

Marketing: To send updates, newsletters, and information about our services (with your consent). You may opt out at any time by contacting us.

Compliance: To meet our legal obligations, including tax reporting and data protection requirements.

Website Analytics: To analyse website usage and improve functionality.

Legal Basis for Processing Your Data

Under UK GDPR, we must have a lawful basis for processing your personal data. We rely on the following legal grounds:

Contractual Obligation: Processing is necessary to perform a contract with you (e.g., providing consultancy services).

Legitimate Interests: Processing is required to support our legitimate business activities, such as improving services and maintaining relationships.

Consent: Where required, we will ask for your consent before processing your personal data (e.g., for sending marketing communications). You can withdraw your consent at any time.

Legal Compliance: We process personal data to comply with legal and regulatory obligations.

Sharing Your Personal Data

We only share your data with third parties when necessary, including:

Service Providers: Trusted third parties who help us provide our services, such as IT providers and cloud storage services.

Legal Authorities: Where required by law, we may share your data with government authorities or law enforcement.

Business Transfers: In the event of a business sale or restructuring, personal data may be transferred to the new owner.

We do not sell your personal data to third parties or share it for marketing purposes without your explicit consent.

How We Protect Your Data

We take the security of your personal data seriously and have implemented appropriate measures to protect it from unauthorised access, alteration, or disclosure. This includes:

Encryption: Data is encrypted in transit and at rest to prevent unauthorised access.

Access Controls: Personal data is accessible only to authorised personnel.

Regular Audits: We regularly review and update our data protection practices to ensure compliance with legal standards.

Data Retention

We only keep personal data for as long as necessary to fulfil the purposes for which it was collected. For example, we may retain business records for up to six years for tax and audit purposes. After this period, personal data will be securely deleted or anonymized.

Your Rights Under UK GDPR

Under UK GDPR, you have several rights regarding your personal data:

Right of Access: You can request access to the personal data we hold about you.

Right to Rectification: You have the right to correct inaccurate or incomplete personal data.

Right to Erasure: You can request the deletion of your personal data in certain circumstances.

Right to Restrict Processing: You can request that we restrict the processing of your personal data in specific cases.

Right to Data Portability: You can request the transfer of your personal data to another organisation.

Right to Object: You have the right to object to the processing of your personal data, particularly for direct marketing purposes.

To exercise any of these rights, please contact us using the contact details provided below.

International Transfers of Data

If we transfer your personal data outside of the UK or the European Economic Area (EEA), we ensure that appropriate safeguards are in place to protect your data in line with GDPR requirements, such as using contracts that include standard data protection clauses approved by the European Commission.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or in the law. Any updates will be posted on our website, and where necessary, we will notify you via email. Please review this policy regularly to stay informed about how we protect your personal data.

Contact Us

If you have any questions, concerns, or requests regarding your personal data, please contact us at:

Local Creative Project Ltd

Email: claire@wearelocal.org.uk

Address: Local Creative Project Ltd, 2 Newshaw Lane, Hadfield, Glossop, SK13 2AR.

If you are not satisfied with how we handle your data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s supervisory authority for data protection.

Return home

Stay Connected

The full Derbyshire Makes programme will be announced in February 2025. For the latest developments, make sure your name is on the mailing list – sign up to find out more.