Privacy Policy

Scope 3 Peer Group (“we”, “us”, “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you engage with our website, events, and activities.

1. Data Controller

Scope 3 Peer Group is operated by Galvanised Limited, registered in the United Kingdom. If you have any questions about this policy or your data, you can contact us at:
Email: ohurrey@getgalvanised.com
Address: 54 Alwyn Road, Maidenhead, SL6 5EL, UK

2. What data we collect

We may collect and process the following information about you:

• Name, job title, organisation, and contact details (e.g., email address)

• Information you provide when registering for events, workshops, or surveys

• Communications you send to us (e.g., by email)

We do not collect special category data unless you choose to provide it (e.g., accessibility needs for events).

3. Lawful basis for processing

We process your personal data under the following lawful bases:

• Consent – when you sign up to receive updates or participate in our activities

• Contract – where processing is necessary to provide you with services as part of your membership or participation

• Legitimate interests – to manage our community, facilitate peer exchange, and promote Scope 3 activity, provided these interests do not override your rights

4. How we use your data

Your personal data will only be used for:

• Managing your participation in the Scope 3 Peer Group

• Sending updates, resources, and event invitations relevant to Scope 3 activity

• Facilitating collaboration and peer-to-peer exchange within the group

We will never sell or rent your personal data to third parties, and will not share it outside the Scope 3 Peer Group without your consent.

5. Data retention

We will retain your personal data only for as long as necessary to fulfil the purposes set out in this policy, or as required by law. If you unsubscribe or request deletion, we will remove your data promptly.

6. Data security

We use appropriate technical and organisational measures to safeguard your information, including secure storage systems and restricted access to authorised team members only.

7. Your rights

Under data protection law (including UK GDPR and the Data Protection Act 2018), you have the right to:

• Access the personal data we hold about you

• Request correction of inaccurate or incomplete data

• Request deletion of your data

• Restrict or object to our processing of your data

• Withdraw consent at any time (where processing is based on consent)

• Lodge a complaint with the UK Information Commissioner’s Office (ICO) if you believe your rights have been infringed

8. Updates to this policy

We may update this Privacy Policy from time to time. Any changes will be posted on our website with a revised “last updated” date.

Last updated: 3/10/2025