Cart
0
Privacy Policy

Last updated: 16 June 2026

  1. Introduction

Peer respects your privacy and is committed to protecting your personal information. We aim to be transparent about how we collect, use, store and protect your personal data, and to ensure that you understand your rights.

We will only contact you where you have requested information from us, subscribed to our mailing list, attended our events, made a donation, purchased goods or services, applied for a role, or otherwise interacted with us in a way that reasonably requires communication. We do not sell your personal information to third parties.

We may collect certain information about your use of our website through cookies and similar technologies in order to improve our services, evaluate the effectiveness of our communications and better understand how visitors use our website.

Please read this policy carefully to understand:

  • How we collect your personal data
  • What personal data we collect
  • How we use your personal data
  • Who we share your personal data with
  • How we protect and retain your information
  • Your rights in relation to your personal data
  • How we use cookies

  1. Who We Are

Peer UK Ltd (trading as Peer) is a charity registered in England and Wales (Charity No. 1115091) and a company registered in England and Wales (Company No. 05757614). Peer is registered with the Information Commissioner’s Office as a Data Controller (ZC187777).

Address:
Peer
97–99 Hoxton Street
London N1 6QL

Peer is the data controller responsible for the processing of personal data described in this policy and is registered with the Information Commissioner's Office (ICO).

  1. How We Collect Personal Data

We collect personal data when you interact with us, including when you:

  • Subscribe to our mailing list
  • Attend an event, workshop or activity
  • Purchase a publication, artist edition or other product
  • Make a donation
  • Hire a space at Peer
  • Apply for employment or freelance opportunities
  • Contact us by email, telephone, post or through our website
  • Visit our website
  • Visit our premises

We may also collect information from publicly available sources where appropriate and lawful to do so.

  1. What Personal Data We Collect

Depending on how you interact with us, we may collect:

  • Name and title
  • Email address
  • Address
  • Telephone number
  • Date of birth
  • Company or organisation name
  • Billing and delivery information
  • Donation and Gift Aid information
  • Event attendance records
  • Workshop registration details
  • Recruitment and employment information
  • Photographs, video recordings or CCTV images
  • Emergency contact information where relevant
  • Information provided through correspondence with us

We do not retain payment card details once transactions have been processed.

  1. How We Use Personal Data

We process personal data for the following purposes:

  • Delivering services, events, workshops and activities
  • Processing purchases, donations and venue hire bookings
  • Communicating with supporters, visitors and participants
  • Administering mailing lists and newsletters
  • Managing recruitment processes
  • Maintaining financial and legal records
  • Evaluating and improving our services
  • Meeting legal, regulatory and safeguarding obligations
  • Protecting our premises, visitors, staff and artworks

We will only process personal data where we have a lawful basis to do so, including:

Activity                                             Lawful Basis

Event bookings                               Contract

Donations administration           Legitimate interests / legal obligation

Gift Aid records                              Legal obligation

Newsletter subscriptions            Consent

Recruitment                                     Legitimate interests / contract

CCTV                                                 Legitimate interests

  1. Marketing Communications

If you subscribe to our mailing list, we will use your contact details to send information about exhibitions, events, talks, workshops, fundraising activities and other news relating to Peer. We use Mailchimp to distribute newsletters and invitations.

You can unsubscribe at any time by clicking the unsubscribe link in any email; or contacting us at info@peeruk.org 

We will retain your subscription information until you unsubscribe or request its deletion, unless we are required by law to retain it.

  1. Online Purchases

When you purchase a product through our website, we may collect:

  • Name
  • Email address
  • Address
  • Billing information

Sales information may be processed and stored using systems including Webflow.

Where artist editions or other physical products are purchased, we may retain delivery information in order to fulfil and administer the order.

Payment processing is undertaken securely by third-party providers. Peer does not store your payment card details.

We retain financial records in accordance with the requirements of the Charity Commission, Companies House and HM Revenue & Customs.

  1. Event Bookings

When you book an event, workshop or activity, we may collect:

  • Name
  • Email address
  • Address
  • Telephone number where required

Event bookings may be administered through Eventbrite or similar platforms. Where you choose to subscribe to our mailing list during registration, your details will be added to our Mailchimp database with your consent.

  1. Donations

When you make a donation, we may collect:

  • Name
  • Email address
  • Address
  • Telephone number
  • Gift Aid information where applicable

Online donations may be processed securely by Stripe or other trusted payment providers. Your information may be used to administer your donation, maintain appropriate financial records, communicate with you about your support and provide information about Peer’s activities.

Access to donor information is restricted to authorised members of staff with a legitimate need to process that information.

  1. Venue Hire

When you enquire about or book a venue hire at Peer, we may collect:

  • Name
  • Address
  • Email address
  • Telephone number
  • Bank details where necessary to process refunds or payments

 

Information relating to venue hire may be stored within our CRM and accounting systems, including GoodCRM and QuickBooks.

We retain financial records in accordance with legal and regulatory requirements.

  1. Talks, Events and Workshops

When you register for a talk, event, workshop or similar activity, we may collect:

  • Name
  • Address
  • Email address
  • Date of birth where relevant
  • Emergency contact information
  • Parent or guardian details where required
  • Dietary or accessibility information where necessary

This information is only accessed by staff responsible for delivering the activity. Where participants provide dietary, accessibility or health-related information, this information is processed only where necessary to facilitate participation and ensure safety and inclusion.

  1. Photography and Filming

Photography and filming may take place during exhibitions, events and public programmes. Where photography or filming is taking place, we will endeavour to notify visitors through signage, announcements or other appropriate means. If you do not wish to be photographed or filmed, please notify a member of staff.

Images and recordings may be used for:

  • Documentation
  • Archival purposes
  • Marketing and communications
  • Reporting and evaluation

Photographs and recordings may be processed on the basis of legitimate interests for documenting and promoting Peer’s activities. Where consent is required, we will obtain it before using images. Images retained as part of Peer’s historical archive may be processed for archiving purposes in the public interest.

If you believe an image infringes your rights or you wish to discuss its use, please contact info@peeruk.org

  1. CCTV

CCTV operates throughout parts of Peer's premises.

We use CCTV for the purposes of:

  • Protecting staff, visitors and the public
  • Protecting artworks and property
  • Preventing and detecting crime
  • Investigating incidents

Footage is stored securely and accessed only by authorised personnel. Where required by law, footage may be shared with law enforcement agencies.

  1. Recruitment

When you apply for a role with Peer, we may collect:

  • Name
  • Address
  • Telephone number
  • Email address
  • Employment history
  • Qualifications
  • References
  • Interview notes

 

Information may be stored securely within systems such as Google Drive and Google Forms.

Recruitment information is only accessible to staff directly involved in the recruitment process. Unsuccessful applicant data is generally retained for six months unless a longer retention period is justified.

Successful applicants may be required to provide additional information to facilitate employment, payroll administration, safeguarding checks and Disclosure and Barring Service (DBS) checks where applicable.

  1. Information Collected Through Our Website

Our website uses cookies. See Cookie Policy below.

We may collect information about:

  • Browser type
  • Device information
  • Pages visited
  • Time spent on the website
  • Referring websites
  • User preferences

This information helps us improve website performance, functionality and user experience.

  1. Information from Public Sources

In limited circumstances, we may supplement information you provide with information obtained from publicly available sources, including:

  • Companies House
  • Charity Commission records
  • Public websites
  • Professional networking platforms
  • Publicly available publications

We may use this information to:

  • Better understand our audiences and supporters
  • Improve communications
  • Conduct due diligence where appropriate
  • Support fundraising and partnership development activities

  1. Who We Share Information With

We may share personal information with trusted service providers who help us operate our services, including providers of:

  • Email communications
  • Event management
  • Payment processing
  • Website hosting and maintenance
  • Accounting services

Examples may include: Mailchimp; Eventbrite; Stripe; GoodCRM and QuickBooks.

All third-party processors are carefully selected and are required to process personal data securely and in accordance with applicable data protection law.

We do not sell personal data to third parties.

  1. International Transfers

Some of the third-party service providers used by Peer may process personal data outside the United Kingdom.

 

These providers may include organisations that support our email communications, payment processing, event management, cloud storage, website hosting and customer relationship management functions.

 

Where personal data is transferred outside the UK, Peer will ensure that appropriate safeguards are in place in accordance with UK data protection law. These safeguards may include:

-   Transfers to countries that have been recognised by the UK Government as providing an adequate level of protection for personal data;

-   The use of International Data Transfer Agreements (IDTAs);

-   The use of the UK Addendum to the European Commission's Standard Contractual Clauses; or

-   Other lawful transfer mechanisms recognised under UK data protection legislation.

 

Some of the providers Peer uses may process data in the United States, where appropriate safeguards are used. You may contact us for further information about the safeguards that apply to any international transfer of your personal data.

  1. Data Security

We take appropriate technical and organisational measures to protect personal data against:

  • Unauthorised access
  • Loss
  • Destruction
  • Alteration
  • Disclosure

Access to personal information is restricted to authorised individuals who require it for legitimate business purposes. Although we take security seriously, no internet transmission or electronic storage system can be guaranteed to be completely secure.

  1. Data Retention

Peer retains personal information only for as long as necessary for the purposes for which it was collected and to comply with legal, regulatory and operational requirements.

Typical retention periods include:

-   Mailing list and marketing records: until you unsubscribe or ask us to delete your information;

-   Event booking records: up to 3 years after the event;

-   Donation records and Gift Aid information: 6 years after the end of the relevant financial year, or longer where required by law;

-   Financial and accounting records: 6 years following the end of the relevant financial year;

-   Venue hire records: 6 years;

-   Recruitment records for unsuccessful applicants: 6 months following completion of the recruitment process;

-   Employment records: in accordance with employment and tax legislation;

-   CCTV recordings: normally between 30 and 90 days unless required for the investigation of an incident;

-   Photography and filming records: for as long as necessary for business, archival or historical purposes.

 

Where information is required for legal proceedings, safeguarding purposes, insurance matters, regulatory compliance or archival purposes, it may be retained for longer periods where permitted by law.

  1. Children's Privacy

Peer is committed to protecting the privacy and personal information of children and young people who engage with our programmes, events, workshops and website.

 

Where we collect personal information relating to a person under the age of 18, we will ensure that the collection and use of that information is appropriate, necessary and proportionate to the activity being delivered.

 

Depending on the nature of the activity, we may collect:

-   Name and age;

-   Parent or guardian contact details;

-   Emergency contact information;

-   Medical, accessibility or dietary information where necessary to ensure participant safety and inclusion*;

-   Photography or filming consent information.

 

*We process health, dietary and accessibility information where necessary to ensure participant safety and inclusion. Processing is undertaken with explicit consent or where otherwise permitted by law.

Where required, we will seek consent from a parent or guardian before collecting or processing personal information relating to children. Personal information relating to children and young people will only be accessed by authorised staff, volunteers or contractors who require access in connection with the delivery of the activity and who are subject to appropriate safeguarding and confidentiality obligations.

 

Peer takes account of the rights, interests and welfare of children when designing and delivering activities that involve the processing of personal information.

  1. Your Rights

You have rights under UK data protection law, including the right to:

  • Access your personal data
  • Correct inaccurate information
  • Request deletion of your data
  • Restrict processing
  • Object to processing
  • Withdraw consent
  • Request data portability where applicable

 

These rights are subject to certain legal exceptions. Please contact Data Protection contact info@peeruk.org to speak to us about your rights.

 

Or write to:

Peer
97–99 Hoxton Street
London N1 6QL

  1. Subject Access Requests

You may request a copy of the personal information we hold about you. Requests should be submitted verbally or in writing and may require proof of identity before information can be disclosed.

  1. Data Complaints Procedure

If you are concerned about how Peer has collected, used, shared or stored your personal information, you may submit a data protection complaint by contacting us at: info@peeruk.org

 

or by writing to:

Peer
97–99 Hoxton Street
London N1 6QL

 

We aim to acknowledge complaints within five working days of receipt. We aim to provide a response within one calendar month. Where a complaint is complex, additional time may be required, in these cases we will keep you informed of progress and explain the reasons for any delay.

 

If you remain dissatisfied following our response, you have the right to raise your concerns with the Information Commissioner's Office (ICO). You can complain to the ICO at www.ico.org.uk.

  1. Complaints

If you have concerns about the way Peer handles your personal information, we encourage you to contact us first using the Data Protection Complaints Procedure set out above. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's independent authority for data protection and privacy matters.

 

Further information about making a complaint to the ICO can be found on the ICO website.

  1. Changes to this Policy

We may update this Privacy & Cookie Policy from time to time. Any changes will be published on our website and the date of the latest revision will be updated at the top of this document.

Cookie Policy

  1. What Are Cookies?

Cookies are small text files placed on your device when you visit a website.

They help websites function correctly, remember preferences, improve performance and provide insights into how visitors use a website.

  1. How We Use Cookies

Peer uses different categories of cookies and similar technologies to operate and improve our website.

Necessary Cookies

These cookies are essential for the operation, security and functionality of the website. They enable core features such as page navigation, form submission and security protections. These cookies cannot be switched off through our cookie preference tools.

 

Analytics Cookies

Analytics cookies help us understand how visitors use our website, including which pages are visited most frequently and how users navigate through the site. This information is aggregated and used to improve website performance and user experience.

 

Functionality Cookies

These cookies allow the website to remember choices you make, such as language preferences or cookie settings, and provide enhanced functionality.

 

Third-Party Cookies

Some third-party services embedded within our website, including video content, social media feeds or event booking services, may set cookies on your device. These cookies are governed by the privacy policies of the relevant third-party providers.

 

  1. Managing Your Cookie Preferences

Where required by law, Peer will seek your consent before placing non-essential cookies on your device.

 

You may manage your cookie preferences at any time through our cookie settings tool or through your browser settings. Blocking certain cookies may affect the functionality of parts of the website.

 

Peer reviews the cookies used on its website periodically and updates this policy where necessary.

 

  1. Cookie Schedule

The cookies used on our website may change from time to time as we update the website and the services we use.

 

The categories of cookies currently used by Peer include:

Category: Strictly Necessary

Purpose: Required for website functionality, security and user preferences

Typical Duration: Session to 12 months


Category: Analytics

Purpose: Help us understand how visitors use the website and improve performance

Typical Duration: Up to 24 months


Category: Functional

Purpose: Remember settings and preferences selected by visitors

Typical Duration: Session to 12 months


Category: Third-Party Services

Purpose: Enable embedded content, event booking functionality, payment processing and other external services

Typical Duration: Varies by provider

 

Examples of third-party providers whose services may place cookies on our website include:

  • Webflow
  • Google
  • Eventbrite
  • Mailchimp
  • Stripe
  • Vimeo
  • YouTube

 

The specific cookies used by these providers may change over time. Visitors can manage their cookie preferences through our cookie consent tool and browser settings.

  1. Cookies Types

Producer: Youtube

Duration: Varies

Purpose: Enables embedded video content and measures performance of embedded videos

Category: Functional / Analytics

Producer: Stripe

Duration: Session to 1 year

Purpose: Secure payment processing and fraud prevention

Category: Necessary

Producer: Cloudflare

Duration: Session to 1 year

Purpose: Website security and bot protection

Category: Necessary

Producer: Webflow

Duration: Session

Purpose: Website functionality and security

Category: Necessary

Producer: Google Analytics

Duration: Session

Purpose: Website usage analytics

Category: Analytics

Contact

If you have any questions regarding this Privacy & Cookie Policy, please contact: info@peeruk.org

 

Peer
97–99 Hoxton Street
London N1 6QL