Privacy Policy

Who we are

This website https://ursatile.com/ is operated by Ursatile Ltd (“Ursatile”), a limited company registered in England and Wales under registration number 12414586. Our registered office is 10 Portfleet Place, De Beauvoir Road, London N1 5SZ, United Kingdom. Our VAT registration number is 344 1822 16.

This policy contains important information regarding:

• who we are;
• how and why we collect, store, use and share personal information;
• your rights in relation to your personal information; and
• how to contact us and supervisory authorities in the event that you have a complaint.

Ursatile Ltd (‘we’, ‘us’, ‘our’) collect, use and are responsible for storing certain personal information about you (‘you’, ‘your’, ‘yours’).

The personal information we collect and use

Ursatile Ltd is committed to protecting and processing your data in accordance with the applicable laws including, but not limited to, the EU General Data Protection Regulation.

• If you sign up to our newsletter, we will use Mailchimp to store your name, email address and marketing preferences. Mailchimp’s privacy policy is available at https://mailchimp.com/legal/privacy/
• If you purchase a ticket to one of our workshops or events, we use Eventbrite to store your name, email address, phone number, and details of your booking details. We use this information to manage access to our online events and to contact you in the event of changes or cancellations. Eventbrite’s privacy policy is available at https://www.eventbrite.com/privacypolicy
• Visitor analytics are provided by Fathom, whose privacy policy is available at https://usefathom.com/privacy.

How your personal information is collected

Personal information obtained from you directly

We will sometimes obtain information from you directly, including when you purchase one of our workshops or training courses, complete an online registration form or feedback survey, join or mailing list, or connect with us on social media.

Personal information obtained by use of cookies or other automated means

This website does not use cookies. Visitor analytics are provided by Fathom (https://usefathom.com), using anonymous pageview tracking that does not collect or store personal data.

How we use your personal information

General purposes

In general, your personal information will generally be processed for contacting attendees who register for our workshops; for communicating with people who participate in our workshops, training courses and online activities.

Lawful basis for processing of your personal information

We have described above the purposes for which we may process your personal information. These purposes will at all times be justified by UK data protection law.

General lawful bases

The lawful basis upon which we are able to process your personal data are:

1. where we have your consent to use your data for a specific purpose;
2. where it is necessary to enter into a legal contract with you or to perform obligations under a legal contract with you;
3. where it is necessary to enable us to comply with a legal obligation;
4. where it is necessary to ensure our own legitimate interests or the legitimate interests of a third party (provided that your own interests and rights do not override those interests). Wherever we rely upon this basis, details of the legitimate interests concerned shall be provided to you;
5. where we need to protect your own vital interests (or the vital interests of another person); and/or
6. where it is needed in the public interest (or where we are acting in our official functions), provided that the task or function has a clear basis in law.

In general, in order to meet the purposes we have described above, we will process your personal information where we have your express consent on each occasion that the data is processed.

Sharing of your personal information

On any occasion where any of your personal information is shared with any third party, we shall only permit them to process such information for our required purposes, under our specific instruction, and not for their own purposes. We are required to enter into a formal legal agreement to enable such sharing to take place.

In order to meet the purposes we have described above, we may on some occasions need to share your personal information with other third parties.

• We use Google Workspace tools, including GMail and Google Calendar, to coordinate invitations to events, communicate with attendees, and store records of correspondence with customers and attendees. Google’s privacy policy is available at https://policies.google.com/privacy?hl=en-US
• Online workshops and training activities are delivered using Zoom. Attendees are not required to sign in to Zoom or share any personal information with Zoom in order to participate. Zoom’s privacy policy is available at https://explore.zoom.us/en/privacy/
• Attendees who participate in one of our online workshops will be invited to join a Slack workspace. Your email address will be shared with Slack to facilitate this. Slack’s privacy policy is available at https://slack.com/intl/en-gb/trust/privacy/privacy-policy
• Attendees joining online workshops may also be invited to participate in collaboration sessions, exercises, or to provide feedback using any of the following tools:
  • Aha! Slides, whose privacy policy is available at https://ahaslides.com/privacy/
  • Miro, whose privacy policy is available at https://miro.com/legal/privacy-policy/
  • Google Workspace tools including Docs, Sheets, Slides, and JamBoard

How long your personal information will be kept

Your personal information will only be kept for the period of time which is necessary for us to fulfil the above purposes. We envisage that your personal information shall be retained by us until any workshops or training activities are completed. After the period described above, your information shall be properly deleted or anonymised.

Keeping your information secure

We will ensure the proper safety and security of your personal information and have measures in place to do so. We will also use technological and organisation measures to keep your information secure. These measures are as follows:

1. Requiring HTTPS for access to any cloud services used to store information
2. Ensuring that any online services and platforms used to store personal information have a similar data security policy in place
3. Using BitLocker and similar encryption technologies where personal information is stored on physical devices

Use of your information outside of the United Kingdom

We have described above the purposes and lawful bases for which we process your personal information. In order to meet those needs, we may transfer your personal information outside of the United Kingdom to services and platforms hosted within the European Union, the United States of America, or other countries deemed by the United Kingdom to have adequate protection in place so that the security of your personal information can be maintained.

Children

Our website is not intended for children (anybody under the age of 18). We do not intend to collect data from children.

Cookies

This website does not use cookies.

Visitor analytics are provided by Fathom, whose privacy policy is available at https://usefathom.com/privacy.

Your rights

Under the UK General Data Protection Regulation you have a number of important rights free of charge. In summary, those include rights to:

1. fair processing of information and transparency over how we use your use personal information;
2. access to your personal information and to certain other supplementary information that this Privacy Statement is already designed to address;
3. require us to correct any mistakes in your information which we hold;
4. require the erasure of personal information concerning you in certain situations;
5. receive the personal information concerning you which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit this information to a third party in certain situations;
6. object at any time to processing of personal information concerning you for direct marketing;
7. object to decisions being taken by automated means which produce legal effects concerning you or similarly significantly affect you;
8. object in certain other situations to our continued processing of your personal information, or ask us to suspend the processing procedure in order for you confirm its assurance or our reasoning for processing it;
9. object to processing our your personal information where we are doing so in reliance upon a legitimate interest of our own or of a third party and where you wish to raise to an objection to this particular ground;
10. otherwise restrict our processing of your personal information in certain circumstances;
11. claim compensation for damages caused by our breach of any data protection laws; and/or
12. in any circumstance where we rely upon your consent for processing personal information, you may withdraw this consent at any time.

For further information on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on your rights under the General Data Protection Regulations.

Changes to the privacy policy

This privacy policy was published on 10 December 2021.

19 January 2022: Updated to remove references to Google Analytics and add links to Fathom

Contacting us

The relevant person to contact regarding your personal information is Dylan Beattie. Any requests or questions regarding the use of your personal information should be made to the above named person by emailing dylan@ursatile.com