Skip to main content
+44 (0)20 7983 4000
Menu
Language
Appearance
Legal & Transparency

Privacy Policy

How the London Health Commission handles the limited personal data you share with us — explained in plain civic language, under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Privacy Policy

Last reviewed: June 2026. This policy applies to londonhealthcommission.org.uk. We keep it deliberately short and specific to what this site actually does. We are an editorial resource on urban health infrastructure; we do not sell products, run accounts, or process payments, so the data we hold is minimal.

1. Who we are

The London Health Commission is an independent editorial publisher continuing the public-health legacy of the 2014 Better Health for London inquiry. For the purposes of UK data protection law, we are the data controller for the personal information described below. If you have a question about this policy or wish to exercise any of your rights, contact us through our contact page.

2. What we collect, and why

We only collect personal data that you choose to give us. There are exactly two routes by which you might do so:

  • Contact form. When you write to us, we collect the name, email address, and message content you submit. We use this solely to read and reply to your enquiry. The lawful basis is our legitimate interest in responding to people who get in touch (UK GDPR Article 6(1)(f)).
  • Newsletter subscription. If you opt in to our updates, we collect your email address to send periodic editorial briefings on London health policy and infrastructure. The lawful basis is your consent (UK GDPR Article 6(1)(a)). Every newsletter includes a one-click unsubscribe link, and withdrawing consent is as easy as giving it.

We do not ask for, and have no need of, special-category data (such as health records), and we ask that you do not send it to us through these forms.

3. Cookies and similar technologies

We use a small number of cookies. Strictly necessary cookies keep the site secure and functioning (for example, remembering your cookie preference). These do not require consent because the site cannot work properly without them. Any analytics or non-essential cookies are set only after you give consent through our cookie banner, and you can change or withdraw that choice at any time. Our separate Cookie Policy lists the categories in more detail.

4. Analytics

We use privacy-respecting, aggregate analytics to understand which articles and infrastructure guides are read, so we can improve the resource. Where analytics rely on non-essential cookies or identifiers, they run only with your consent. We look at trends — popular pages, referral sources, broad geography — not the behaviour of named individuals, and we do not use analytics to build advertising profiles or to track you across other websites.

5. How long we keep your data

We retain contact-form correspondence only for as long as is needed to handle your enquiry and any reasonable follow-up, after which it is deleted. Newsletter subscriptions are kept until you unsubscribe or ask us to remove you. We do not keep personal data indefinitely “just in case.”

6. Who we share it with

We do not sell your personal data, and we do not share it for marketing. We use a small set of trusted service providers — for example, email-delivery and hosting infrastructure — strictly to operate this site and deliver the newsletter you asked for. These providers act as our processors under written terms and may only use the data on our instructions. We may disclose information where we are legally required to do so.

7. Your rights under UK GDPR

As a visitor in the UK, you have the right to: be informed about how we use your data; access the data we hold about you; have inaccurate data corrected; have your data erased; restrict or object to certain processing; and withdraw consent at any time where processing is based on consent (this does not affect processing already carried out). To exercise any right, contact us via the contact page; we will respond within one month. You also have the right to lodge a complaint with the UK's supervisory authority, the Information Commissioner's Office (ICO), at ico.org.uk — though we would welcome the chance to resolve any concern with you first.

8. Keeping data secure

We apply appropriate technical and organisational measures to protect the limited personal data we hold, including encryption in transit and restricted access. No online service can promise absolute security, but we hold so little data, for so short a time, that the risk to you is correspondingly small.

9. Children

This site is intended for health-policy professionals, practitioners, and informed members of the public. It is not directed at children, and we do not knowingly collect data from anyone under 16.

10. Changes to this policy

We may update this policy to reflect changes in our practices or in the law. When we do, we will revise the “last reviewed” date above. Material changes affecting how we use your data will be made clear on this page.

11. Contact

Questions about this policy, or about the personal data we hold, should be directed to us through the contact page. We aim to reply promptly and in plain language.