Privacy Policy

Last updated: 19/11/2025

 

Rise Her Collective (“RHC”, “we”), based in the United Kingdom, processes all personal data in compliance with UK Data Protection Laws and the General Data Protection Regulation (GDPR). This policy explains what data we may collect, how we use it, and your rights.

 

1. Information we collect

 

We may collect a range of personal data, including but not limited to:

 

Your data may be processed through platforms such as HubSpot, Zoom, Google Meet, Luma, Eventbrite, Mailchimp, and similar community and communication tools.

 

2. How we use your data

 

We may process your data to:

 

3. Sharing of data

 

We may share your data with:

We do not sell personal data.

 

4. Data retention

 

5. Your rights

 

Under GDPR and UK Law, you have the right to:

For requests: info@risehercollective.com

 

6. Security

 

Your data is protected using industry-standard security measures, including:

 

7. Cookies

 

We may use cookies to improve your experience. You can control cookie settings through your browser.

 

This Data Retention Policy explains how long Rise Her Collective (“RHC”, “we”, “our”) keeps different categories of personal data and the legal basis for doing so.

RHC is based in the United Kingdom and complies with UK GDPR, the Data Protection Act 2018, and HMRC record-keeping requirements.

 

1. Purpose of this policy

We retain personal data only for as long as it is necessary to:

When data is no longer required, it is securely deleted or anonymised.

 

2. Retention periods

The following retention periods reflect legal requirements and operational needs.

 

A) Financial and transaction data (HMRC requirement)

Retention period: 6 years + the current tax year (up to 7 years total)

Includes:

Legal basis: HMRC requires financial records to be retained for a minimum of 6 years.

 

B) Membership data

We retain membership data for as long as an individual:

 

If a membership ends and there is no remaining opt-in or operational purpose, we retain the data for an additional 12 months for administrative and audit reasons. After this period, the data is securely deleted or anonymised, unless the record is part of HMRC-required financial data.

 

C) Event and programme registration data

We retain event and programme registration data only for as long as it continues to serve a clear operational purpose. This includes managing the event, confirming attendance, sending follow-up materials, producing reports, analysing participation and improving future programmes.

 

Event registration data is typically retained for up to 24 months.

This includes:

 

If the operational or reporting purpose ends earlier, the data will be deleted or anonymised sooner.

If limited information must be retained for legal, audit or safeguarding reasons, we keep only the minimum necessary data.

 

D) Marketing communications (email lists)

Retention period: until the individual unsubscribes

Includes:

After an unsubscribe request, consent records are retained for 12 months for compliance purposes.

 

E) General enquiries (contact forms and emails)

Retention period: 12 months

Includes general communication and enquiries not linked to membership, finance or event operations.

 

F) Website usage data and cookies

Retention period:

 

G) Staff, contractor or volunteer data (if applicable)

Retention period: period of engagement + 6 years

Standard UK employment practice.

 

3. Deletion and anonymisation

When the retention period expires, data is:

Anonymised data may be kept for long-term analysis or reporting.

 

4. Data security

We protect all retained data using industry-standard security measures, including:

 

5. Your rights

You have the right to:

 

To submit a request, contact us at: info@risehercollective.com