Privacy Policy

The Neurodiverse City Hub
Effective Date: 19/04/2025

At The Neurodiverse City Hub, we are committed to respecting and protecting your privacy. We are a UK-based not-for-profit organisation, and we take your data seriously.

This Privacy Policy explains how we collect, use, and protect your personal data when you interact with our website.

1. Who We Are

The Neurodiverse City Hub is a UK-based community supporting neurodivergent individuals, families, and allies. We operate as a not-for-profit and are focused on providing accessible support, information, and resources.

2. What Information We Collect

Our website only collects personal data when you:

  • Submit an enquiry or contact form

  • Sign up for updates or express interest in membership, partnership, or sponsorship

This may include:

  • Your name

  • Email address

  • Any message you choose to send us

  • (If applicable) Organisation name and contact number

We do not collect personal data automatically, nor do we track your browsing for marketing purposes.

We do not collect data related to community participation via this website — our community is hosted separately (see below).

3. Our Community Platform

Our community is hosted on the Heartbeat App, an external platform based in the United States. When you join the The Neurodiverse City Hub community via Heartbeat, your data is handled according to Heartbeat’s own privacy policy and terms.

We have chosen Heartbeat because of its inclusive features and functionality, but we recommend that all users review their Privacy Policy and Terms of Service.

Please note: As a US-based provider, Heartbeat may store your data outside the UK/EEA. While this is permitted under UK GDPR in certain cases, we advise users to review their practices before signing up.

We do use your data within the community to send you email notifications, event reminders and offers. You can change this within your in app settings at any time.

4. How We Use Your Data

We will only use the personal data collected via our website to:

  • Respond to your enquiry or request

  • Contact you with relevant updates

  • Maintain records for membership or partnership purposes

5. Legal Basis for Processing

Under UK GDPR, we rely on the following legal grounds:

  • Consent – when you choose to contact us or sign up for updates

  • Legitimate interest – to respond to your queries or provide relevant services

You can withdraw your consent at any time by contacting:
📧 sherry@oxfordpeoplesolutions.co.uk (our HR representative)

6. How We Store and Protect Your Data

Your data is stored securely using GDPR-compliant tools, and access is limited to our core team. We do not share your information with third parties unless legally required or essential to delivering our services (e.g. following up an enquiry).

Our website is hosted by Squarespace. You can refer to their privacy policy here.

7. Your Rights (UK GDPR)

You have the right to:

  • Access your personal data

  • Request corrections

  • Request deletion

  • Object to processing

  • Withdraw consent

  • Lodge a complaint with the Information Commissioner’s Office (ICO)

To exercise your rights, email us: sherry@oxfordpeoplesolutions.co.uk (our HR representative).

8. Cookies

We may use minimal cookies to ensure our website functions properly (e.g. for basic analytics or security).

You can control cookie settings through your browser.

9. External Links

Our website may contain links to third-party sites. We are not responsible for the privacy practices of those sites. Please review their policies before sharing your information.

10. Changes to This Policy

We may update this policy from time to time. Any changes will be posted on this page with the updated date.