Privacy Statement

The Cicely Northcote Trust is committed to protecting personal data that it holds as a charity. Below we set out how and why we use personal data which we collect. When we refer to “we” or “us” in this notice we are referring to the Cicely Northcote Trust.

If you have any questions about this privacy statement or our privacy and data processing in general please contact us.

Who we are

The Cicely Northcote Trust is a registered charity 00640196 . Our registered address is Camelford House, 87-89 Albert Embankment.  
London.   SE1 7TP.

For the purposes of the Data Protection Act 2018, the General Data Protection Regulation (GDPR), and any replacement legislation, we are the data controller.

In this notice we use the term personal information to mean any information from which a person can be identified. This might include someone’s name, home address, email contact details, or telephone number. Personal information does not include information about deceased persons or information where the identity of the person has been removed (i.e. anonymous data).

How we access your personal Information and what PERSONAL INFORMATION we hold about you

The Cicely Northcote Trust may collect data in several ways; we receive and store personal information provided by applications, employees, volunteers and donors supplied in writing, via email, telephone or on our website. For example if you complete a form on our website asking to be kept in touch with the work of Trust, if you apply for grant funding or apply to work for or become a Trustee of the Cicely Northcote Trust.

We hold contact data about you; name, address, phone numbers and email addresses and how you would prefer to be contacted. In cases of people applying to work at the Trust or become a Trustee we may also hold data such as your past employment history, bank details or other identifying factors needed to register you with the charity commission or companies house, such as data of birth.

Our legal basis for using your personal information

Under UK General Data Protection regulations we must have a valid basis for using your personal information. In the case of somebody requesting to be kept in touch with the Trust we will ask your consent to store your date. For those making a grant application, job application or application to become a Trustee we will be using your data as a legitimate interest.

How we use your data

We principally collect personal information so that we can further our charitable aims by providing grants. We may also use personal information such as email address to communicate with you, for example to inform you of a grant application or update the charity.

If you have requested to be kept up to date with the Trust we will periodically contact you by email to update you with regard to our grant or invite you to our events.

If you have provided personal data as part of a grant application we will use this to contact you with regard to your application throughout the application process. If successful we will also use this to contact you and arrange for your Link Trustee to make contact.

We will never sell your data on to third parties. We may share data you provide with trusted third parties, our regulators and with law enforcement authorities. We only disclose personal information to third parties:

  • if the individual has consented to us sharing the personal information;

  • if we are under a legal duty to disclose or share the personal information, for example, if required to do so by a court order;

  • where we need to share personal information with a regulator, for example, HMRC or the Charity Commission;

  • if we need to share personal information with our professional advisers;

  • if it is necessary in order to enforce any terms and conditions or agreements between the Cicely Northcote Trust and the individual.

Keeping your information secure

We have taken every reasonable effort to make sure that we have appropriate security measures in place to prevent personal information being accidentally lost, used or accessed in an unauthorised way, altered or disclosed.

We do not transfer personal data to any country outside the European Union.

REtention of Data

We only keep personal information for as long as necessary to fulfil the purposes we collected it for and/or for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the information, the potential risk of harm from unauthorised use or disclosure of the personal information, the purposes for which we process the personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

Accessing and updating your information

Under certain circumstances, individuals have the right to:

  • Request access to their personal information (commonly known as a "data subject access request").

  • Ask us to correct personal information that we hold about them which is incorrect, incomplete or inaccurate. 

    • Ask us to erase their personal information from our files and systems where there is no good reason for us continuing to hold it.

    • Object to us using their personal information to further our legitimate interests or those of a third party.

    • Ask us to restrict or suspend the use of their personal information, for example, while we are establishing the accuracy of the personal information we hold or when someone has challenged our reasons for using their personal information.

    • Ask us to transfer personal information that we hold on our IT systems to another person or organisation.

If you want to exercise any of these rights, please contact us or write to Cicely Northcote Trust, Camelford House, 87-89 Albert Embankment, London . SE1 7TP . 

Queries and Complaints

If you have any questions about this privacy notice or how we handle your personal information, please contact us.

You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues -


Our website uses cookies and other similar user information for the purposes of providing statistical data on the usage of our website. We do not use cookies for the purposes of identifying individual users. 

Changes to this policy

We may amend this policy from time to time, please check back every so often for updates. This policy was last updated March 2019.