Privacy Policy

Introduction

This is the privacy policy for Project Daisy Limited incorporated in England and Wales with company registration number 16105629 (“we”, “us” and “our”). We are committed to protecting your privacy both online and offline. We appreciate that you expect the personal information you provide to us to be treated legally and fairly and here we explain how we collect information, what we do with it and what controls you have. This policy covers all our interactions with our participants and anyone who is not an employee or contractor of Project Daisy Limited. This policy covers how we collect and process personal data from you. It also applies to how we process personal data generally in our business. For the purposes of European and UK data protection law, (the “Data Protection Law”), the data controller is Project Daisy Limited. If you have any queries about this Privacy Policy or how we (may) collect, store or use your data, please contact our Data Protection Officer by email at privacy@projectdaisy.com. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.

Information we may collect from and about you

• Information you give us. This is information about you that you give us by filling in forms or by corresponding with us by phone, e-mail or otherwise. It includes information you provide when you register or participate in our programmes. The information you give us may include:
• information (such as your name, email address and telephone number) that you provide by completing forms we provide;
• a link to your social media account profiles if you choose to provide this, for example, the web address for your LinkedIn profile i.e. linkedin.com/username;
• which of our office locations you use and when;
• communications you send to us, for example, to report a problem or to submit queries, concerns or comments;
• information from surveys that we may, from time to time, run if you choose to respond to, or participate in, them

You are under no obligation to provide any of the information listed above. However, if you should choose to withhold requested information, we may not be able to provide you with some or all of our services or to allow you to participate in our programmes.

• Information we collect about you. We will automatically collect the following information:
• Technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform;
• information about your visit, including the full Uniform Resource Locators (URL), any phone number used to call our customer service number or social media handle used to connect with our customer service team. We aim to ensure that you cannot be identified from this information and it is only used to assist us in providing an effective service and to collect broad demographic information for aggregate use;
• information we otherwise obtain when you visit us (for example, your image if you sign in or are recorded on CCTV while visiting any of our sites, or you give us the registration details of your vehicle);
• information about events to which you or those related to you are invited, and your personal information and preferences to the extent that this information is relevant to organising and managing those events (for example, your dietary requirements);
• Information we receive from other sources. This is information we receive about you from third parties (any party that refers you to us or provides us with services relating to you, for example). We are working closely with third parties (including, for example, business partners, sub-contractors in technical, payment and delivery services, advertising networks, analytics providers, schools, and search information providers). We will notify you when we receive information about you from them and the purposes for which we intend to use that information.

How we use your information

We use information held about you in the following ways:

• Information you give to us. We will use this information:
• to notify you about changes to our services or the programme. Legal basis for this processing is that it is necessary for the delivery of the programme in which you participate;
• to ensure in our legitimate interests that we can improve the programme or services we offer moving forward.
• Information we collect about you. We will use this information:
• to allow you to participate in interactive features of our services, when you choose to do so. Legal basis for this processing is that it is necessary for your participation and our delivery of any programme and services;
• to keep our premises safe and secure. Legal basis for this processing is that it is in our legitimate interests;
• Combining Information we receive from multiple sources. We will combine information about Members and prospective customers that we gather from different sources to build profiles of those individuals, to make our service offering more bespoke and relevant. Legal basis for this processing is that it is in our legitimate interests subject always to your rights and expressed preferences.

Disclosure of your information

We use information held about you in the following ways:

• Any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries.
• Selected third parties including business partners, suppliers and sub-contractors for the delivery of any programme to you. Legal basis for this disclosure is that it is necessary for the delivery of the programme and other services to you.
• If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our terms of supply terms and other agreements with you. Legal basis for this disclosure will depend upon the nature of the disclosure but may be the fulfilment of a contract with you or a third party, compliance with a legal obligation; or the pursuit of our legitimate interest to protect the rights, property, or safety of Fora, our customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud and financial crime protection, and credit risk reduction.

Security

We place great importance on the security of all personally identifiable information associated with our users. We have security measures in place to attempt to protect against the loss, misuse, and alteration of personal information under our control. For example, our security and privacy policies are periodically reviewed and enhanced as necessary and only authorised personnel have access to personal information. Whilst we cannot ensure or guarantee that loss, misuse, or alteration of information will never occur, we use all reasonable efforts to prevent it.

Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site or Applications; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.

It is advisable to close your browser when you have finished your user session to help ensure others do not access your personal information if you use a shared computer or a computer in a public place.

Where we store your personal data

All information you provide to us is stored securely on servers provided by trusted third parties. All our third-party providers are carefully vetted for data protection compliance.

We retain personal data until you decide to unsubscribe. This may include retention necessary to meet to identify issues or resolve legal proceedings. We may also retain aggregate information beyond this time for research purposes and to help us develop and improve our services or programmes. You cannot be identified from aggregate information retained or used for these purposes.

If you are based in the UK / European Economic Area (“EEA”) note that your Personal Information may be transferred, processed and stored outside of the EEA, for example in connection with our use of cloud hosted IT systems. In the event that your Personal Information is transferred to, maintained or processed by other parties located in the United States or otherwise outside of the UK / EEA, all such transfers will be made in compliance with applicable law to afford you the same levels of protection as you enjoy within the UK / EEA.

Your rights

You have the right under certain circumstances:

• to be provided with a copy of your personal data held by us;
• to request the rectification or erasure of your personal data held by us;
• refuse to provide and – without impact to data processing activities that have taken place before such withdrawal or to any other existing legal justification of the processing activity in question – withdraw your consent at any time;
• to require to not be subject to any automated decision making which produce legal effects on you or affect you with similar significance;
• to request that we restrict the processing of your personal data (while we verify or investigate your concerns with this information, for example);
• to request that your data be transferred to a third party in a structured and machine-readable format;
• to take legal actions as well as to lodge a complaint before the competent data protection regulators.

Additionally, you shall be entitled to object to the Processing of your Personal Data:

• at any time, if your personal data is used for direct marketing purposes; and based on grounds relating to your particular situation, if your personal data is processed for other purposes.

We will inform you (before collecting your data) if we intend to use your data for marketing purposes or if we intend to disclose your information to any third party for such purposes by checking certain boxes on the forms we use to collect your data. You can also object to receiving further marketing at any time without detriment.

You can also exercise the rights listed above at any time, raise a query about this policy, or amend your preferences, by contacting us at: privacy@projectdaisy.com.

If your request or concern is not satisfactorily resolved by us, you may approach your local data protection authority.

Changes to this policy

Any changes we make to our privacy policy in the future will be posted on this page and, where appropriate, notified to you by e-mail. Please check back frequently to see any updates or changes to our privacy policy. This policy was last updated on 02 July 2025.

Complaints

Should you wish to make a further enquiry or complain about how your Personal Information is being handled, you may raise your concern with the Information Commissioner’s Office (the “ICO”). Further details on reporting a concern can be found on the ICO’s website at https://ico.org.uk/concerns/handling/

Contact us

Questions, comments and requests regarding this privacy policy are welcomed and should be addressed to privacy@projectdaisy.com.