The Little Company of Calm Privacy Policy
(reviewed and revised by all Directors August 2025)

 

Our contact details

Name: Andrew Carton, Joe Glancy and Liz McEvoy, Directors
Address: North East BIC, Wearfield, Enterprise Park East SR5 2TA
E-mail: hello@tlcoc.co.uk

 

Who we are

Here at The Little Company of Calm) we are committed to protecting your personal
information and making every effort to ensure that your personal information is
processed in a fair, open and transparent manner.

The type of personal information we collect

We currently collect and process the following information:

• Personal identifiers, contacts and characteristics (for example, name, date of birth,
equality data and contact details)

• Credit/debit card details if you are making a purchase

• Information you provide in any communications between us for example while
registering for Mindfulness activities or events or any of the other ways you interact
with us.

• Images and sounds from photos or videos.

How we get the personal information and why we have it
Most of the personal information we process is provided to us directly by you for one

of the following reasons:

​

Data Protection Policy first written 2020.

When you interact with us directly: This could be if you

 

• ask us about our activities

​

• register with us for a course or an event

​

• ask a question about Mindfulness

​

• complete a survey shaping or providing feedback on our services

​

• apply for a volunteering opportunity or otherwise provide us with your personal information.

 

This includes when you phone us, visit our website, or get in touch through the post,
email, text messaging, Whattsapp or in person. It could be if you give us your
consent to photograph or video your personal image.

When you visit our website: We gather general information which might include
which pages you visit most often and which services, events or information is of most
interest to you. We may also track which pages you visit when you click on links in
emails from us. We also use "cookies" to help our site run effectively. There are more
details below – see "Cookies".

We use a third party ticketing organisation – Ticketsource – on our website to
sell tickets for our activities, sessions, courses and events. Ticketsource has its own
data protection policy which you can read when you purchase tickets via this method
or by clicking this link.

 

Customer Data Privacy Policy.

 

There are alternative methods
of payments, including paying cash. Customer Data Privacy Policy.
We use this information to personalise the way our website is presented when you
visit, to make improvements and to ensure we provide the best service and
experience for you. Wherever possible we use anonymous information which does
not identify individual visitors to our website.

We will mainly use this information:

• To provide the services or goods that you have requested.

• To update you with important administrative messages about a course, an
event or services you have requested.

• To keep a record of your relationship with us.

• To provide funders with evidence of how we have spent the funding and who
has benefitted from it.

• Where you volunteer with us, to administer the volunteering arrangement.

• If you do not provide this information, we will not be able to sign you up for a
particular course, event or provide services you have requested.

• To promote the benefits of mindfulness and The Little Company of Calm’s
services to support good mental health. We use anonymous information
unless you have expressly given your permission for us to use it for this
purpose.

​

Data Protection Policy first written 2020.

We may also use your personal information:

• To contact you about our work

• To invite you to participate in surveys, promotions or research.

Sensitive Personal Information

If you share your personal experience or the experiences of a friend or relative, we
may also collect this information. If you provide us with any Sensitive Personal
Information by telephone, email or by other means, we will treat that information with
extra care and confidentiality and always in accordance with this Privacy Policy.

You can of course decide if you want to remain anonymous or if you are happy to
share your personal details with staff members or if you would like us to share your
story with the media or other parties as part of our work telling people's personal
stories about mental health.

A special note about the Sensitive Personal Information we hold:
Data Protection Law recognises that some categories of personal information are
more sensitive. Sensitive Personal Information can include information about a
person's health, race, ethnic origin, political opinions, sex life, sexual orientation or
religious beliefs.

We will only use this information:

For the purposes of dealing with your enquiry, training, and quality monitoring or
evaluating the services we provide.

We will not pass on your details to anyone else without your explicit consent except
in exceptional circumstances. Examples of this might include anyone reporting
serious self-harm or posing a threat to others or children contacting us and sharing
serious issues such as physical abuse or exploitation.

Where you have given us your explicit consent or otherwise clearly indicated to us
that you are happy for us to share your story, then we may publish it and any
associated images on our social media platforms. We use a Sound and Image
Waiver Form to gain your consent for this purpose.

Information about Children and Young People

We will sometimes collect data about children for events we organise specifically for
young people or where they agree to volunteer for us. Wherever possible, we will
ask for consent from parents to collect information about children and young people
under the age of 16.

The personal information we collect about you will mainly be used by our staff (and
volunteers) at The Little Company of Calm so that they can support you.
We will never sell or share your personal information with organisations so that they
can contact you for any marketing activities. Nor do we sell any information about
your web browsing activity.

​

Data Protection Policy first written 2020.

The Little Company of Calm may however share your information with our trusted
partners and suppliers who work with us or on our behalf to deliver our services,
but processing of this information is always carried out under our instruction. We
make sure that they store the data securely, delete it when they no longer need it
and never use it for any other purposes.

We enter into contracts with these service providers that require them to comply with
Data Protection Laws and ensure that they have appropriate controls in place to
secure your information.

Legal disclosure

We may disclose your information if required to do so by law (for example, to comply
with applicable laws, regulations and codes of practice or in response to a valid
request from a competent authority); or, in order to enforce our conditions of sale and
other agreements.

Under the General Data Protection Regulation (GDPR), the lawful bases we rely on
for processing this information are:

(a) Your consent. You are able to remove your consent at any time. You can do this
by contacting hello@tlcoc.co.uk and requesting this.
(b) We have a legal obligation.
(c) We need it to perform a public task.
(d) We have a legitimate interest.

How we store your personal information

We take looking after your information very seriously. We've implemented
appropriate physical, technical and organisational measures to protect the personal
information we have under our control, both on and off-line, from improper access,
use, alteration, destruction and loss.

Unfortunately, the transmission of information using the internet is not completely
secure. Although we do our best to protect your personal information sent to us this
way, we cannot guarantee the security of data transmitted to our site.

Our websites may contain links to other sites. While we try to link only to sites that
share our high standards and respect for privacy, we are not responsible for the
content or the privacy practices employed by other sites.

 

Please be aware that advertisers or Web sites that have links on our site may collect personally identifiable information about you. This privacy statement does not cover the information
practices of those websites or advertisers.

 

We only keep your personal data as long as is reasonable and necessary for the relevant activity, which may be to fulfil statutory obligations.
We will then delete, destroy or dispose your information securely.

​

Data Protection Policy first written 2020.

 

Your data protection rights

Under data protection law, you have rights including:
Your right of access - You have the right to ask us for copies of your personal information.

Your right to rectification - You have the right to ask us to rectify personal information
you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.

Your right to erasure - You have the right to ask us to erase your personal information in certain circumstances.

Your right to restriction of processing - You have the right to ask us to restrict the
processing of your personal information in certain circumstances.

 

Your right to object to processing - You have the the right to object to the processing
of your personal information in certain circumstances.

 

Your right to data portability - You have the right to ask that we transfer the personal
information you gave us to another organisation, or to you, in certain circumstances.

 

You are not required to pay any charge for exercising your rights. If you make a
request, we have one month to respond to you.

 

Please contact us at hello@tlcoc.co.uk if you wish to make a request.

​

How to complain

​

If you have any concerns about our use of your personal information, you can make
a complaint to us at hello@tlcoc.co.uk for the attention of the Directors of the
Company.

You can also complain to the ICO if you are unhappy with how we have used your
data.

The ICO’s address:

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

​

Helpline number: 0303 123 1113
ICO website: https://www.ico.org.uk