Introduction

Our privacy policy outlines what you should expect when Centre for Thriving Places handle your data or personally identifying information. 

We’re committed to processing your data lawfully, safely and securely and have stringent data security and data protection practices in place.

This policy gives a broad overview of how the organisation as a whole processes data but if you would like to find out more detail on how we are processing your information, please contact hello@centreforthrivingplaces.org or 07474 408024 and someone will be in touch to answer your questions within 30 days.

References to ‘we’ or ‘us’ are to the Centre for Thriving Places Registered Company No. 07188984, Registered Charity No. 1143037. Our registered offices are ℅ Godfrey Wilson Ltd, Mariner House, 62 Prince Street, Bristol, BS1 4QD.

Why we process personal data

Like all organisations, there are a number of reasons why we process personal data. We might be processing your data because:

  • You are a business contact
  • You have signed up to receive one of our newsletters
  • You work professionally in an area closely connected to our work, or have attended a digital or physical event hosted by us
  • You have signed up for a Happiness Pulse user account or have taken the Happiness Pulse as a respondent
  • You are a contractor or supplier
  • You have donated to us
  • You volunteer with us, or have done in the past

We may also collect anonymous usage data from any of our websites: www.centreforthrivingplaces.org, www.thrivingplacesindex.org and www.happinesspulse.org. More detail on this, and the cookies we use on site, is available below. 

What types of data we process depends on how you interact with us as an organisation, but it might include:

  • Your name
  • Your phone number
  • Your email address (either work or personal)
  • Your physical address (either home or work)
  • Your bank account details (for contractors or suppliers)
  • Your place of work and job title
  • Event photographs for the Centre for Thriving Places image bank, used on our website, social media and in printed publications

The lawful basis for processing

The lawful basis for processing will depend on how you interact with us as an organisation. 

  • Consent: In some situations we will ask for you to give your consent to process your data. For example, this occurs when you sign up to a newsletter from one of our sites. Even where the lawful basis for processing is not consent, we always aim to put you in control of your data and give transparent information regarding storage and processing purposes. 
  • Contractual obligation: Because we have a contractual obligation, for example to provide you with something you have purchased from us or contracted us to provide.
  • Statutory obligation: we are obliged by law to process certain types of personal data, for example, processing our employees salary information for taxation.
  • Our legitimate interests as a charity or company. 

Third party processing

In order to carry out some business functions, we rely on third party software and contracted sub-processors to process your data. We will never sell or pass on your data to a third party without permission and we make sure that any software we use will store your data securely and in line with the requirements of the General Data Protection Regulations (GDPR) and the Data Protection Act 2018. Below is a list of the third parties we use to process some personal data and what we use them for.

Sub-processors

We sometimes work with contractors, associates and partner organisations to manage our websites and projects. Personal information may be transferred to them in order to assist in their work with us. In these cases, a data processing agreement will be in place.

File storage

We use GDrive, a Google product, for file storage. Please see Google’s privacy policy here. We also use Basecamp for internal business communications which occasionally includes file storage. Please find Basecamp’s privacy policy here.

E-newsletters

We use Mailchimp, a marketing email software to send our e-newsletters. Please read their privacy policy here. You can unsubscribe from these emails at any time by using the link at the bottom of the emails. 

Email

We use GMail to manage our business emails or if you contact us using the @centreforthrivingplaces.org domain. Please see Google’s privacy policy here. 

Donations

Donations to the Centre for Thriving Places can be made directly via our donations partner, Charities Aid Foundation. For more information on how they will process your data, please see their privacy policy.  

Business contacts 

We use a customer records management system called Nimble to manage our business contacts. Their privacy policy is available here. 

Visitors to our website

When you visit www.centreforthrivingplaces.org, www.thrivingplacesindex.org or www.happinesspulse.org we’ll collect data about how you are using the website using Google Analytics. This data is anonymous and can’t be used to identify you personally. It gives us a high level overview of people who are using the website as a whole and helps us to spot problems with the site or improve its functionality. 

The data we collect might include what pages you have looked at and how long you spent on them, what parts of the site you clicked on and when you closed your web browser. We also collect data about the device you are using to access the site, including things like your IP address, your internet service provider and operating system, and the browser you are using. Your IP address will normally let us infer your geographic location e.g. which city or county you are in.

Our website uses cookies, some of which are essential to the functioning of the website. Cookies are small text files that are placed on your computer or mobile phone when you browse websites. 

We do not use cookies to:

  • Collect any personally identifiable information 
  • Collect any sensitive information 
  • Pass data to advertising networks
  • Pass personally identifiable data to third parties

To provide additional functionality on the website we use some cookies created by third parties. They are:

Google Analytics. This gives us statistical information about the website as a whole.

Twitter. The twitter cookie allows you to share directly to twitter from the website.

Facebook The Facebook cookie allows you to share directly to Facebook. 

LinkedIn The LinkedIn cookie allows you to share directly to LinkedIn. 

YouTube. This helps us to embed videos on our site. 

Happiness Pulse users and respondents

The Happiness Pulse is a short survey which measures individual wellbeing.

Happiness Pulse user accounts

If you register for a Happiness Pulse user account your data will be held on a secure server, managed by Heroku. Their privacy policy is available here. Automated emails for the Happiness Pulse are sent through Mailgun. Their privacy policy is available here.

Happiness Pulse survey respondents

All Happiness Pulse response data is held on a secure server, managed by Heroku. Their privacy policy is available here.

If you are taking the Happiness Pulse survey, it will be made clear at the start of the survey whether your survey responses are anonymous or confidential, and whether the data controller is Centre for Thriving Places or another organisation.

Non-identifying survey responses

Our standard Happiness Pulse survey does not ask for any identifying personal data and is therefore anonymous. We do collect demographic data (Country, Postcode, Gender, Age, Ethnicity, Disability) but this data is not sufficiently detailed to allow us to identify you personally.

Organisations using the standard Happiness Pulse survey to collect data will have access to a results summary showing average scores including a breakdown by demographics. Result counts of less than four are suppressed. They do not have access to the raw dataset and therefore individual responses remain anonymous.

Identifying survey responses

Alternatively, organisations using a bespoke Happiness Pulse may ask for additional identifying data to be collected via the survey, such as unique identifiers, or names and addresses.

It may also be the case that organisations using the Happiness Pulse wish to access the raw dataset including individual demographic information. If the organisation is sending the survey to a small group of known individuals, the demographic data collected may be identifying.

In both these cases we can allow the organisation to export the raw dataset from the Happiness Pulse app. We only enable this functionality if we have entered a data sharing agreement with the organisation in question, and have ensured that they will process your data in line with the GDPR and Data Protection Act 2018. Information regarding your data and who to contact with questions should be displayed at the beginning of the survey. 

Contact us with any questions

We’re happy to answer any questions you have about how we are using your data. You can ask us to:

  • Tell you what data we have about you.
  • Stop using your data in a certain way.
  • Withdraw your consent for us to use your data (if consent is the lawful basis for processing).
  • Object to our definition of our legitimate interests or opt out of us processing your data on this basis.
  • Delete your data.
  • Correct your data.

You can do any of the above by contacting us at hello@centreforthrivingplaces.org  or ringing us on 07474 408024. We won’t charge you for this service.If you aren’t happy about how we have used your data, you can make a complaint via these contact details. You can also contact the Information Commissioner’s Office if you aren’t satisfied with our response.

Cancel