Privacy Statement

Changing Faces Privacy Statement

This Privacy Statement summarises our Privacy Policy which is available on request from Changing Faces.

Changing Faces is committed to ensuring that your personal information is protected and to being transparent about how we use it. We will use your personal information in accordance with all the applicable laws relating to data protection, human rights and electronic communications. We will not do anything with your data that you would not reasonably expect us to.

If you provide us with personal information by which you can be identified when using this website or communicating with us by phone, email or in person, then you can be assured that it will only be used in accordance with this Privacy Statement.

We collect the following personal data:

  • Personal data provided by our clients. For example, names, dates of birth, email addresses and postal addresses.
  • Sensitive or special category data – If you contact us in order to seek support from our services, we may collect certain information defined in law as sensitive or special category data. For example, information about your physical or mental health or condition.
  • Human Resources data in connection with staff appointed to posts at Changing Faces and unsuccessful applicants to posts, including application statements, CVs, references and work related documentation.
  • Data provided by visitors to our website and owned social-media channels (e.g. Changing Faces Facebook page, Twitter and Instagram)
  • Personal data provided by our supporters (including our past and present donors, event participants, individuals giving non-financial assistance), prospective supporters and beneficiaries and members of the public who make contact with us, including those who share their personal stories with us
  • Data relating to questionnaires, reactionaires, feedback surveys, complaints and incidents.

We also collect information that we need to, or that we believe would be useful to provide our services, products and information. These purposes comprise:

  • Monitoring third party research about potential need for our services, in order to fulfil our charitable objectives
  • Monitoring website activity. We collect information about the pages visitors’ access so that we can tailor our content and improve user experience.
  • Supplying information, advice and support services
  • Fulfilling Changing Faces’ legal and compliance obligations
  • Fundraising for Changing Faces
  • Administration
  • Marketing

Where we ask you to provide us with any information by which you can be identified, you can be assured that it will only be used in accordance with this privacy statement, and in line with data protection legislation, including the Data Protection Act 2018 and the General Data Protection Regulation (GDPR) 2018.

We will never sell your data to any individual or organisation.

We will only send you marketing information electronically (e.g. by email, text/SMS) if you specifically agree to us doing so.

We will only pass on your information:

  • If we are legally required to do so
  • To a third party which is acting on our behalf to fulfil a service that we provide and where we have a comprehensive contract in place, ensuring data protection
  • When we are entitled to invoice NHS bodies for a contribution towards the cost of a service we provide, and where the data transfer is done within a secure environment.

We keep the information we hold about you accurate and up-to-date so far as we are able.

We follow the Code of Fundraising Practice for the UK, issued by the Fundraising Regulator, to ensure that we treat all donors, including vulnerable donors, fairly.

You have the right to request:

  • details of the processing activities that we carry out with your personal information through making a Subject Access Request;
  • rectification of information that is inaccurate or out of date;
  • erasure of your information (known as the “right to be forgotten”);
  • restriction of the way in which we are dealing with and using your information; and
  • request that your information be provided to you in a format that is secure and suitable for re-use (known as the “right to portability”);
  • rights in relation to automated decision making and profiling including profiling for marketing purposes.


If you would like a copy of some or all of your personal information, please make a request to our Data Protection Officer using the details provided below. We will provide this information to you without charge, unless requests are manifestly unfounded, repetitive or excessive, in which case we are entitled to charge a reasonable administration fee.

If you believe we are not respecting your rights, you are entitled to make a complaint to the Information Commissioner’s Office.

If you ask us to remove your personal information from our records, we will make efforts to ensure we have identified the correct record on our system, and we will review the data to ensure that we are not required to hold it for legal reasons. If, once these actions have been taken, we determine that we have no legal obligation to keep your data, we will retain your key details – i.e. your name, home address and email address – on a suppression list to make sure that we do not contact you again, and we will destroy all other information we hold about you (if we were to remove your details completely we would have no record of your wishes, and therefore someone from Changing Faces might inadvertently contact you again.) The only exception to this will be if we are required to keep a record of your gifts for Gift Aid and financial audit purposes, in which case we will retain the relevant data in a locked note which can only be accessed by approved employees.

We use a secure server to host all areas of our website which collect personal information.

We use cookies to help us track the success of our online advertising and to monitor the use of our website.

This statement is effective from June 2019. Any changes we make to our privacy statement and Data Protection and Privacy Policy in the future will be posted on this page.  


If you have any questions or queries about this Privacy and Data Protection Statement, or if you would like to request a copy of the information we hold about you, please contact the Data Protection officer at the address and contact details below:

Data Protection Officer

PO Box 76751,

London, WC1A 9QR

0345 450 0275