Last updated: 16 June 2026
- Introduction
Peer respects your privacy and is committed to protecting your personal information. We aim to be transparent about how we collect, use, store and protect your personal data, and to ensure that you understand your rights.
We will only contact you where you have requested information from us, subscribed to our mailing list, attended our events, made a donation, purchased goods or services, applied for a role, or otherwise interacted with us in a way that reasonably requires communication. We do not sell your personal information to third parties.
We may collect certain information about your use of our website through cookies and similar technologies in order to improve our services, evaluate the effectiveness of our communications and better understand how visitors use our website.
Please read this policy carefully to understand:
- How we collect your personal data
- What personal data we collect
- How we use your personal data
- Who we share your personal data with
- How we protect and retain your information
- Your rights in relation to your personal data
- How we use cookies
- Who We Are
Peer UK Ltd (trading as Peer) is a charity registered in England and Wales (Charity No. 1115091) and a company registered in England and Wales (Company No. 05757614). Peer is registered with the Information Commissioner’s Office as a Data Controller (ZC187777).
Address:
Peer
97–99 Hoxton Street
London N1 6QL
Peer is the data controller responsible for the processing of personal data described in this policy and is registered with the Information Commissioner's Office (ICO).
- How We Collect Personal Data
We collect personal data when you interact with us, including when you:
- Subscribe to our mailing list
- Attend an event, workshop or activity
- Purchase a publication, artist edition or other product
- Make a donation
- Hire a space at Peer
- Apply for employment or freelance opportunities
- Contact us by email, telephone, post or through our website
- Visit our website
- Visit our premises
We may also collect information from publicly available sources where appropriate and lawful to do so.
- What Personal Data We Collect
Depending on how you interact with us, we may collect:
- Name and title
- Email address
- Address
- Telephone number
- Date of birth
- Company or organisation name
- Billing and delivery information
- Donation and Gift Aid information
- Event attendance records
- Workshop registration details
- Recruitment and employment information
- Photographs, video recordings or CCTV images
- Emergency contact information where relevant
- Information provided through correspondence with us
We do not retain payment card details once transactions have been processed.
- How We Use Personal Data
We process personal data for the following purposes:
- Delivering services, events, workshops and activities
- Processing purchases, donations and venue hire bookings
- Communicating with supporters, visitors and participants
- Administering mailing lists and newsletters
- Managing recruitment processes
- Maintaining financial and legal records
- Evaluating and improving our services
- Meeting legal, regulatory and safeguarding obligations
- Protecting our premises, visitors, staff and artworks
We will only process personal data where we have a lawful basis to do so, including:
Activity Lawful Basis
Event bookings Contract
Donations administration Legitimate interests / legal obligation
Gift Aid records Legal obligation
Newsletter subscriptions Consent
Recruitment Legitimate interests / contract
CCTV Legitimate interests
- Marketing Communications
If you subscribe to our mailing list, we will use your contact details to send information about exhibitions, events, talks, workshops, fundraising activities and other news relating to Peer. We use Mailchimp to distribute newsletters and invitations.
You can unsubscribe at any time by clicking the unsubscribe link in any email; or contacting us at info@peeruk.org
We will retain your subscription information until you unsubscribe or request its deletion, unless we are required by law to retain it.
- Online Purchases
When you purchase a product through our website, we may collect:
- Name
- Email address
- Address
- Billing information
Sales information may be processed and stored using systems including Webflow.
Where artist editions or other physical products are purchased, we may retain delivery information in order to fulfil and administer the order.
Payment processing is undertaken securely by third-party providers. Peer does not store your payment card details.
We retain financial records in accordance with the requirements of the Charity Commission, Companies House and HM Revenue & Customs.
- Event Bookings
When you book an event, workshop or activity, we may collect:
- Name
- Email address
- Address
- Telephone number where required
Event bookings may be administered through Eventbrite or similar platforms. Where you choose to subscribe to our mailing list during registration, your details will be added to our Mailchimp database with your consent.
- Donations
When you make a donation, we may collect:
- Name
- Email address
- Address
- Telephone number
- Gift Aid information where applicable
Online donations may be processed securely by Stripe or other trusted payment providers. Your information may be used to administer your donation, maintain appropriate financial records, communicate with you about your support and provide information about Peer’s activities.
Access to donor information is restricted to authorised members of staff with a legitimate need to process that information.
- Venue Hire
When you enquire about or book a venue hire at Peer, we may collect:
- Name
- Address
- Email address
- Telephone number
- Bank details where necessary to process refunds or payments
Information relating to venue hire may be stored within our CRM and accounting systems, including GoodCRM and QuickBooks.
We retain financial records in accordance with legal and regulatory requirements.
- Talks, Events and Workshops
When you register for a talk, event, workshop or similar activity, we may collect:
- Name
- Address
- Email address
- Date of birth where relevant
- Emergency contact information
- Parent or guardian details where required
- Dietary or accessibility information where necessary
This information is only accessed by staff responsible for delivering the activity. Where participants provide dietary, accessibility or health-related information, this information is processed only where necessary to facilitate participation and ensure safety and inclusion.
- Photography and Filming
Photography and filming may take place during exhibitions, events and public programmes. Where photography or filming is taking place, we will endeavour to notify visitors through signage, announcements or other appropriate means. If you do not wish to be photographed or filmed, please notify a member of staff.
Images and recordings may be used for:
- Documentation
- Archival purposes
- Marketing and communications
- Reporting and evaluation
Photographs and recordings may be processed on the basis of legitimate interests for documenting and promoting Peer’s activities. Where consent is required, we will obtain it before using images. Images retained as part of Peer’s historical archive may be processed for archiving purposes in the public interest.
If you believe an image infringes your rights or you wish to discuss its use, please contact info@peeruk.org.
- CCTV
CCTV operates throughout parts of Peer's premises.
We use CCTV for the purposes of:
- Protecting staff, visitors and the public
- Protecting artworks and property
- Preventing and detecting crime
- Investigating incidents
Footage is stored securely and accessed only by authorised personnel. Where required by law, footage may be shared with law enforcement agencies.
- Recruitment
When you apply for a role with Peer, we may collect:
- Name
- Address
- Telephone number
- Email address
- Employment history
- Qualifications
- References
- Interview notes
Information may be stored securely within systems such as Google Drive and Google Forms.
Recruitment information is only accessible to staff directly involved in the recruitment process. Unsuccessful applicant data is generally retained for six months unless a longer retention period is justified.
Successful applicants may be required to provide additional information to facilitate employment, payroll administration, safeguarding checks and Disclosure and Barring Service (DBS) checks where applicable.
- Information Collected Through Our Website
Our website uses cookies. See Cookie Policy below.
We may collect information about:
- Browser type
- Device information
- Pages visited
- Time spent on the website
- Referring websites
- User preferences
This information helps us improve website performance, functionality and user experience.
- Information from Public Sources
In limited circumstances, we may supplement information you provide with information obtained from publicly available sources, including:
- Companies House
- Charity Commission records
- Public websites
- Professional networking platforms
- Publicly available publications
We may use this information to:
- Better understand our audiences and supporters
- Improve communications
- Conduct due diligence where appropriate
- Support fundraising and partnership development activities
- Who We Share Information With
We may share personal information with trusted service providers who help us operate our services, including providers of:
- Email communications
- Event management
- Payment processing
- Website hosting and maintenance
- Accounting services
Examples may include: Mailchimp; Eventbrite; Stripe; GoodCRM and QuickBooks.
All third-party processors are carefully selected and are required to process personal data securely and in accordance with applicable data protection law.
We do not sell personal data to third parties.
- International Transfers
Some of the third-party service providers used by Peer may process personal data outside the United Kingdom.
These providers may include organisations that support our email communications, payment processing, event management, cloud storage, website hosting and customer relationship management functions.
Where personal data is transferred outside the UK, Peer will ensure that appropriate safeguards are in place in accordance with UK data protection law. These safeguards may include:
- Transfers to countries that have been recognised by the UK Government as providing an adequate level of protection for personal data;
- The use of International Data Transfer Agreements (IDTAs);
- The use of the UK Addendum to the European Commission's Standard Contractual Clauses; or
- Other lawful transfer mechanisms recognised under UK data protection legislation.
Some of the providers Peer uses may process data in the United States, where appropriate safeguards are used. You may contact us for further information about the safeguards that apply to any international transfer of your personal data.
- Data Security
We take appropriate technical and organisational measures to protect personal data against:
- Unauthorised access
- Loss
- Destruction
- Alteration
- Disclosure
Access to personal information is restricted to authorised individuals who require it for legitimate business purposes. Although we take security seriously, no internet transmission or electronic storage system can be guaranteed to be completely secure.
- Data Retention
Peer retains personal information only for as long as necessary for the purposes for which it was collected and to comply with legal, regulatory and operational requirements.
Typical retention periods include:
- Mailing list and marketing records: until you unsubscribe or ask us to delete your information;
- Event booking records: up to 3 years after the event;
- Donation records and Gift Aid information: 6 years after the end of the relevant financial year, or longer where required by law;
- Financial and accounting records: 6 years following the end of the relevant financial year;
- Venue hire records: 6 years;
- Recruitment records for unsuccessful applicants: 6 months following completion of the recruitment process;
- Employment records: in accordance with employment and tax legislation;
- CCTV recordings: normally between 30 and 90 days unless required for the investigation of an incident;
- Photography and filming records: for as long as necessary for business, archival or historical purposes.
Where information is required for legal proceedings, safeguarding purposes, insurance matters, regulatory compliance or archival purposes, it may be retained for longer periods where permitted by law.
- Children's Privacy
Peer is committed to protecting the privacy and personal information of children and young people who engage with our programmes, events, workshops and website.
Where we collect personal information relating to a person under the age of 18, we will ensure that the collection and use of that information is appropriate, necessary and proportionate to the activity being delivered.
Depending on the nature of the activity, we may collect:
- Name and age;
- Parent or guardian contact details;
- Emergency contact information;
- Medical, accessibility or dietary information where necessary to ensure participant safety and inclusion*;
- Photography or filming consent information.
*We process health, dietary and accessibility information where necessary to ensure participant safety and inclusion. Processing is undertaken with explicit consent or where otherwise permitted by law.
Where required, we will seek consent from a parent or guardian before collecting or processing personal information relating to children. Personal information relating to children and young people will only be accessed by authorised staff, volunteers or contractors who require access in connection with the delivery of the activity and who are subject to appropriate safeguarding and confidentiality obligations.
Peer takes account of the rights, interests and welfare of children when designing and delivering activities that involve the processing of personal information.
- Your Rights
You have rights under UK data protection law, including the right to:
- Access your personal data
- Correct inaccurate information
- Request deletion of your data
- Restrict processing
- Object to processing
- Withdraw consent
- Request data portability where applicable
These rights are subject to certain legal exceptions. Please contact Data Protection contact info@peeruk.org to speak to us about your rights.
Or write to:
Peer
97–99 Hoxton Street
London N1 6QL
- Subject Access Requests
You may request a copy of the personal information we hold about you. Requests should be submitted verbally or in writing and may require proof of identity before information can be disclosed.
- Data Complaints Procedure
If you are concerned about how Peer has collected, used, shared or stored your personal information, you may submit a data protection complaint by contacting us at: info@peeruk.org
or by writing to:
Peer
97–99 Hoxton Street
London N1 6QL
We aim to acknowledge complaints within five working days of receipt. We aim to provide a response within one calendar month. Where a complaint is complex, additional time may be required, in these cases we will keep you informed of progress and explain the reasons for any delay.
If you remain dissatisfied following our response, you have the right to raise your concerns with the Information Commissioner's Office (ICO). You can complain to the ICO at www.ico.org.uk.
- Complaints
If you have concerns about the way Peer handles your personal information, we encourage you to contact us first using the Data Protection Complaints Procedure set out above. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's independent authority for data protection and privacy matters.
Further information about making a complaint to the ICO can be found on the ICO website.
- Changes to this Policy
We may update this Privacy & Cookie Policy from time to time. Any changes will be published on our website and the date of the latest revision will be updated at the top of this document.
Cookie Policy
- What Are Cookies?
Cookies are small text files placed on your device when you visit a website.
They help websites function correctly, remember preferences, improve performance and provide insights into how visitors use a website.
- How We Use Cookies
Peer uses different categories of cookies and similar technologies to operate and improve our website.
Necessary Cookies
These cookies are essential for the operation, security and functionality of the website. They enable core features such as page navigation, form submission and security protections. These cookies cannot be switched off through our cookie preference tools.
Analytics Cookies
Analytics cookies help us understand how visitors use our website, including which pages are visited most frequently and how users navigate through the site. This information is aggregated and used to improve website performance and user experience.
Functionality Cookies
These cookies allow the website to remember choices you make, such as language preferences or cookie settings, and provide enhanced functionality.
Third-Party Cookies
Some third-party services embedded within our website, including video content, social media feeds or event booking services, may set cookies on your device. These cookies are governed by the privacy policies of the relevant third-party providers.
- Managing Your Cookie Preferences
Where required by law, Peer will seek your consent before placing non-essential cookies on your device.
You may manage your cookie preferences at any time through our cookie settings tool or through your browser settings. Blocking certain cookies may affect the functionality of parts of the website.
Peer reviews the cookies used on its website periodically and updates this policy where necessary.
- Cookie Schedule
The cookies used on our website may change from time to time as we update the website and the services we use.
The categories of cookies currently used by Peer include:
Category: Strictly Necessary
Purpose: Required for website functionality, security and user preferences
Typical Duration: Session to 12 months
Category: Analytics
Purpose: Help us understand how visitors use the website and improve performance
Typical Duration: Up to 24 months
Category: Functional
Purpose: Remember settings and preferences selected by visitors
Typical Duration: Session to 12 months
Category: Third-Party Services
Purpose: Enable embedded content, event booking functionality, payment processing and other external services
Typical Duration: Varies by provider
Examples of third-party providers whose services may place cookies on our website include:
- Webflow
- Eventbrite
- Mailchimp
- Stripe
- Vimeo
- YouTube
The specific cookies used by these providers may change over time. Visitors can manage their cookie preferences through our cookie consent tool and browser settings.
- Cookies Types
Producer: Youtube
Duration: Varies
Purpose: Enables embedded video content and measures performance of embedded videos
Category: Functional / Analytics
Producer: Stripe
Duration: Session to 1 year
Purpose: Secure payment processing and fraud prevention
Category: Necessary
Producer: Cloudflare
Duration: Session to 1 year
Purpose: Website security and bot protection
Category: Necessary
Producer: Webflow
Duration: Session
Purpose: Website functionality and security
Category: Necessary
Producer: Google Analytics
Duration: Session
Purpose: Website usage analytics
Category: Analytics
Contact
If you have any questions regarding this Privacy & Cookie Policy, please contact: info@peeruk.org
Peer
97–99 Hoxton Street
London N1 6QL