Privacy Policy

Last Updated: 30/05/2025

This Privacy Policy describes how Talk Consent Ltd (“we,” “us,” or “our”), a private limited company registered at 7 Bell Yard, London, WC2A 2JR, collects, uses, and protects your personal information when you visit our website at www.talkconsent.org (the “Website”), engage with our services, or interact with us.

We are committed to protecting your privacy and handling your data transparently and in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Who We Are

Talk Consent Ltd is a private limited company operating primarily in the UK. We deliver workshops and assemblies on consent, healthy relationships, and sexual violence awareness.

We are committed to protecting your privacy and handling your data transparently and in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Information We Collect

We collect various types of personal information depending on your interaction with us:

From Customers (e.g., Schools, Organisations, Individuals booking services):

Contact Information: Names, email addresses, phone numbers, companies, school names of teachers, work addresses, job titles.

Financial Information: Bank details (for processing payments and refunds).

Purpose of Collection: This information is collected via online booking forms, contact forms, direct correspondence (email, telephone, in-person), and mailing list sign-ups. It is used to provide and improve our products and services, manage your account, process payments, send information updates, and deal with queries, complaints, or claims.

From Website Users:

Technical Information: Browser used, operating system, user’s country, device category (desktop or mobile).

Usage Data: Information collected through cookies and similar technologies about your browse activities on our website. Please see our “Cookies” section below for more details.

Purpose of Collection: This data is collected automatically using cookies and Google Analytics to understand how our website is used, improve user experience, and ensure the functionality of our services.

From Teachers and Students (Workshop/Assembly Feedback):

From Teachers (Voluntary Feedback Form): Name, job role, thoughts, and feedback on our sessions.

From Students (Voluntary Feedback Form): Feedback is generally anonymous. However, if a student chooses to provide their name on the form to request support from the school with an issue related to sexual violence, their name will be passed onto the safeguarding team at their school for their support.

Purpose of Collection: To evaluate and improve the quality and effectiveness of our workshops and assemblies. Student names are only collected for the specific purpose of facilitating safeguarding support where explicitly requested.

For Recruitment Purposes (Applicants):

Contact Details: Name, address, telephone number, personal email address.

Personal Identifiers: Date of birth, National Insurance number.

Identity Documents: Copies of passports or other photo ID.

Employment History: Job applications, employment references, secondary employment details.

Education History: Qualifications.

Right to Work Information: Documentation proving eligibility to work.

Criminal Conviction Details: Results of Disclosure Barring Service (DBS), Access NI, or Disclosure Scotland checks.

Purpose of Collection: To assess suitability for employment, verify qualifications, conduct background checks, and comply with legal obligations relating to employment.

How we Collect Information

We collect personal information through various methods:

Directly from You: When you complete online booking forms, contact forms, mailing list sign-ups, feedback forms, and through direct correspondence via email, telephone, or in-person conversations with our staff.

Automatically through the use of cookies and Google Analytics when you visit our website.

From Third Parties:

We may collect school and teacher information from publicly available databases and school websites.

We have purchased teacher and school data from third-party providers such as Sprint Education Ltd.

We may receive data from referrals from other teachers and schools.

Our Lawful Basis for Using Your Data

Under UK GDPR, we must have a lawful basis to process your personal information. Our lawful bases for obtaining and processing your data include:

Consent: Where you have given us clear permission to process your personal information for a specific purpose (e.g., signing up for a mailing list). You can withdraw your consent at any time.

Contract: Where the processing is necessary for a contract we have with you, or because you have asked us to take specific steps before entering into a contract (e.g., processing your booking for a workshop).

Legal Obligation: Where the processing is necessary for us to comply with the law (e.g., maintaining financial records for tax purposes, conducting DBS checks for recruitment).

Legitimate Interest: Where the processing is necessary for our legitimate interests or the legitimate interests of a third party, provided those interests do not override your fundamental rights and freedoms (e.g., improving our services, managing our business, direct marketing to existing customers or prospects where we have a legitimate interest).

How We Use Your Information

We use your personal information for the following purposes:

To Provide and Improve Our Services: To deliver our workshops and assemblies, manage your bookings, respond to your inquiries, and enhance the quality and relevance of our offerings.

For Account and Relationship Management: To operate and manage your client or customer account, send you necessary information updates, and facilitate smooth communication.

For Marketing and Communication: To send you information about our services, updates, and promotional offers where you have consented or where we have a legitimate interest. This includes:

Email marketing: Using names, email addresses, job titles, area of work, and the school where you work.

Targeted advertising: We may use personal data held by search engines (e.g., Google) and social media sites to target adverts accordingly.

For Legal and Regulatory Compliance: To comply with legal requirements and obligations relevant to our operations (e.g., financial reporting, safeguarding).

For Dispute Resolution and Improvement: To deal with queries, complaints, or claims, and to continuously improve our services, internal processes, and the functionality of our Website.

For Recruitment: To process job applications, evaluate candidates, and carry out necessary pre-employment checks.

Sharing Your Information

We may share certain personal information with third-party service providers who assist us in operating our business and providing our services. We only share the minimum necessary information and ensure that these third parties are contractually obligated to protect your data. We do not transfer your personal data outside of the UK.

The types of third parties we share information with include:

Customer Relationship Management (CRM) System (Zoho CRM): We share customer data including emails, names, area of work, school they work at, phone numbers, and job titles to manage our customer relationships and sales processes.

Email Marketing Platform (Mailchimp): Customer data including names, email addresses, job titles, area of work, and the school they work at is shared to facilitate our email marketing campaigns.

Bookkeeping Platform (Quickbooks): School names and addresses, teacher names and email addresses are included on invoices. School bank details may be added if we need to refund payments. Employee or contractor names, email addresses, bank details, and payroll details are hosted on this platform for accounting and payroll purposes.

Google Analytics: Anonymous or aggregated data about website usage is shared for analytical purposes.

Safeguarding Teams (for student feedback): As detailed in Section 2, if a student provides their name on a feedback form to request support with a sexual violence issue, their name is passed to the safeguarding team at their school.

Data Security

We have implemented numerous technical and organisational security measures to protect the personal information under our control from loss, misuse, and alteration. These measures include the use of passwords, firewalls, and access controls. We review our security measures at least every two years to ensure their continued adequacy.

While we take data security very seriously and use all reasonable endeavours to protect the integrity and security of the personal information we collect, please be aware that no method of transmission over the internet or method of electronic storage is 100% secure. Therefore, we cannot guarantee absolute security.

Data Retention

We keep personal data only for as long as it remains relevant for the purposes for which it was collected, or until you ask us to delete it, unless a longer retention period is required or permitted by law. Anonymised data, which cannot be linked back to an individual, may be retained indefinitely for research or evaluation purposes.

Your Data Protection Rights

Under UK GDPR, you have the following rights concerning your personal information. Please note that some of these rights may have specific requirements or exemptions, meaning they may not apply in all circumstances.

The Right to be Informed: To be informed about how your personal information is being used (which is the purpose of this Privacy Policy).

The Right of Access: To request access to the personal information we hold about you.

The Right to Rectification: To request the correction of inaccurate personal information we hold about you.

The Right to Erasure (the “right to be forgotten”): To request the erasure of your personal information in certain limited circumstances.

The Right to Restrict Processing: To request the restriction of processing of your personal information where certain requirements are met.

The Right to Object: To object to the processing of your personal information, particularly where based on legitimate interests or for direct marketing.

The Right to Data Portability: To request that we transfer elements of your data either to you or another service provider.

Rights in relation to Automated Decision Making and Profiling: To object to certain automated decision-making processes using your personal information. (Note: We do not use automated decision-making or profiling in relation to your personal data.)

Some rights, such as your right to withdraw consent or object to processing for direct marketing, are absolute rights.

For more information about your legal rights, you can visit the Information Commissioner’s Office (ICO) website at https://ico.org.uk/for-the-public/

To exercise any of the above rights, or if you have any questions relating to your rights, please contact us using the details set out in the “Contacting Us” section below.

Cookies

Our website uses cookies to enhance your experience.

What Are Cookies? Cookies are small data files stored on your device (computer, tablet, or mobile phone) when you visit a website. Some cookies are essential for the website to function correctly; others help us understand how users interact with our site.

Types of Cookies We Use:

  • Necessary Cookies: These cookies enable core functionality such as security, network management, and accessibility. The Website cannot function properly without these cookies.
  • Analytics Cookies: These cookies (e.g., Google Analytics) help us improve our site by collecting and reporting information on how visitors use it, such as which pages are visited most often and if users encounter error messages.

Cookie Consent: On your first visit to our website, we will ask for your consent to use non-essential cookies. You can change your cookie preferences at any time by adjusting your browser settings.

Managing Cookies: You can disable cookies through your web browser settings. However, please be aware that disabling certain cookies may affect your ability to use some parts of our website.

Complaints

If you are unhappy with the way we are using your personal information, we encourage you to contact us first at team@talkconsent.org so we can attempt to resolve your complaint.

You also have the right to complain to the UK Information Commissioner’s Office (ICO), the supervisory authority for data protection issues in the UK. Their website is https://ico.org.uk/.

Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will post any changes on this page and update the “Effective Date” at the top of the policy. We encourage you to review this Privacy Policy periodically.

Contacting Us

If you have any questions about this Privacy Policy or our data protection practices, or if you wish to exercise any of your rights, please contact us:

Email: team@talkconsent.org

Scroll to Top