HEADTURNED
Foundation

Navigation

Legal / Privacy Policy

How we handle personal information responsibly.

This Privacy Policy explains how HEADTURNED Foundation collects, uses, stores, protects, and shares personal information when you use the Foundation website or public-facing contact, support, and contribution routes.

View legal hubRead cookie policy

Who we are

HEADTURNED Foundation is responsible for this website and the public information collected through it.

In this Privacy Policy, references to HEADTURNED Foundation, the Foundation, we, us, or our mean the organisation responsible for this website and the public information, forms, contact routes, and support flows made available through it.

For personal information collected through this website and associated public-facing channels, the Foundation is the data controller. This means we decide how and why that information is used.

This Policy applies to this website, public enquiries, contact forms, update requests, contribution flows, donation flows where available, and other public-facing website interactions.

Related documents

This Policy sits alongside the wider legal and policy framework for the Foundation website.

Scope

This Policy covers the public Foundation website, not every future platform service.

This Policy explains how we handle personal information when you visit this website, contact us, submit an enquiry, request updates, support our work, or use public-facing services made available through the Foundation website.

Separate privacy information may apply to other services or platforms operated within the wider HEADTURNED ecosystem, including the future HEADTURNED PPV platform, creator services, subscriber services, account-based features, and paid content services.

Information we collect

The personal information we collect depends on how you interact with us.

We may collect and process:

  • Identity and contact details, including your name, email address, telephone number, organisation, role, and any details you provide through forms or correspondence.
  • Enquiry information, including messages, areas of interest, collaboration enquiries, professional partnership enquiries, and any supporting information you choose to provide.
  • Contribution or donation information, including payment amount, payment reference, support preference, receipt information, and related administration details.
  • Communication preferences, including whether you have asked to receive updates or whether you have opted out of certain communications.
  • Technical information, including IP address, browser type, device information, approximate location, log data, security signals, and usage data.
  • Cookie and analytics information, where cookies or similar technologies are used. More detail is available in our Cookie Policy.

How we use information

We use personal information only where there is a lawful and appropriate reason to do so.

We may use personal information to:

  • respond to enquiries, requests, or correspondence;
  • assess collaboration, sponsorship, professional, or strategic partnership enquiries;
  • process donations, contributions, receipts, related administration, and support preferences;
  • send updates or information you have asked to receive;
  • manage communication preferences, unsubscribe requests, and consent records;
  • operate, secure, maintain, test, and improve this website and related digital services;
  • detect, prevent, investigate, or respond to misuse, malicious activity, spam, security threats, or fraud; and
  • meet legal, regulatory, accounting, governance, safeguarding, reporting, and record keeping obligations.

Lawful bases

We rely on recognised lawful bases when processing personal information.

Depending on the context, we may rely on one or more of the following lawful bases:

  • Consent, for example where you choose to receive updates or accept non-essential cookies.
  • Legitimate interests, for example to respond to enquiries, manage relationships, improve the website, protect systems, and communicate about the Foundation’s work where your rights do not override those interests.
  • Legal obligations, for example where we must maintain accounting, tax, governance, safeguarding, compliance, or reporting records.
  • Performance of a contract, where processing is necessary to provide something you have requested or to take steps before entering into an agreement.

Sharing information

We do not sell personal information.

We may share personal information with trusted third parties where necessary, lawful, and proportionate.

  • payment providers and banking services used to process donations, contributions, or other payments;
  • website, hosting, email, form, analytics, security, and infrastructure providers;
  • professional advisers, including legal, accounting, compliance, insurance, or technical advisers;
  • regulators, law enforcement, courts, public authorities, or competent bodies where required or permitted by law; and
  • future operational entities within the HEADTURNED ecosystem where this is necessary for the relevant purpose and lawful to do so.

We expect service providers to handle information securely, use it only for the agreed purpose, and comply with applicable data protection requirements.

International transfers

Some providers may process information outside the country where you live.

Some service providers may operate systems, infrastructure, or support teams outside the United Kingdom or outside your local jurisdiction.

Where personal information is transferred internationally, we aim to ensure that appropriate safeguards are used where required by applicable data protection law. These may include adequacy arrangements, standard contractual clauses, or other recognised transfer safeguards.

Retention and security

We keep personal information only for as long as reasonably necessary.

We retain personal information for the period reasonably necessary for the purpose it was collected, including to meet legal, accounting, governance, safeguarding, reporting, or dispute-resolution requirements.

The exact retention period depends on the information and the context. For example, contribution and donation records may need to be kept for longer than routine enquiry correspondence.

We use technical and organisational measures designed to protect personal information, including access controls, secure service providers, proportionate security practices, and appropriate internal handling. No system is completely secure, but we work to reduce risk and respond appropriately to suspected incidents.

Cookies and rights

You may have legal rights in relation to your personal information.

We use cookies and similar technologies to help the website function, understand how it is used, protect forms and systems, and improve the visitor experience where appropriate. More detail is available in our Cookie Policy.

Depending on where you live and the law that applies, you may have rights to access, correct, delete, restrict, object to, or receive a copy of certain personal information. You may also have the right to withdraw consent where we rely on consent.

To exercise rights or ask a privacy question, contact us through the details provided on this website. We may need to verify your identity before responding.

Contact and changes

Questions about privacy can be raised through the website contact routes.

If you have questions about this Policy or how we handle personal information, you can contact us using the contact routes provided on this website.

You may also have the right to raise concerns with a data protection regulator. If you are unsure which regulator is appropriate, we will try to signpost where we reasonably can.

We may update this Privacy Policy from time to time to reflect changes in law, guidance, website features, technology, providers, or Foundation operations. The updated version will apply from the date it is published on this page.