SPIN (Single Parent Information Network)

For Our Donors

 

1. Who we are

SPIN is a non-profit community association based in Brighton. For the purposes of the UK General Data Protection Regulation (GDPR), we are the "Data Controller" of your personal information.

2. Information we collect

When you make a donation through our website, we may collect:

• Identity Data: Your name and surname.

• Contact Data: Your email address and postal address.

• Financial Data: Our payment processors (PayPal) collect your card details. We do not store your credit or debit card information on our servers.

• Transaction Data: Details about the amount and date of your donation.

3. How we use your information

We use your data based on Legitimate Interests and Legal Obligation to:

• Process your donation and send you a receipt.

• Maintain accurate financial records for HMRC (we must keep these for 6 years).

• Send you occasional updates about our work (only if you have opted in or have a previous relationship with us).

4. Who we share your data with

We do not sell or rent your data to third parties. We only share information with:

• Payment Providers: To securely process your transaction.

• HMRC: If we are required to report income or (in the future) claim Gift Aid.

• Regulators: If legally required by the Charity Commission or law enforcement.

5. Your Rights

Under UK GDPR, you have the right to:

• Access: Ask for a copy of the data we hold about you.

• Correction: Ask us to fix inaccurate information.

• Erasure: Ask us to delete your data (unless we are legally required to keep it for tax purposes).

• Withdraw Consent: Unsubscribe from our emails at any time.

6. How to contact us

If you have any questions about how we look after your data, please contact our designated Data Lead:

• Name: Joann Gurr

• Email:  joannagurr@spinbrighton.uk

 

For Our Members (Beneficiaries)

When you join our community (via Facebook or referral) and use our support services, we process "Special Category" data about your family and life circumstances.

• What we collect: Your name, contact details, postcode, and sensitive details you share about your family (e.g., age of children, parenting status).

• Why we collect it: To verify you live in our service area (Brighton/Sussex) and to provide tailored support through our casework system (Plinth).

• Lawful Basis: We rely on your Explicit Consent to process this sensitive information.

• Retention: We keep member records for 2 years after your last interaction with us, unless you request deletion sooner. We keep a basic record of your name and that you were a member for 6 years to meet our funding and insurance requirements.

• Security: Your data is stored in Plinth, a secure, encrypted platform. Only authorised volunteers with Multi-Factor Authentication (MFA) can access your records.