Get Help
Donate

Understanding Our Privacy Policy

Last updated: March 2026

Introduction

Life Lumina Hub is a UK-registered charity dedicated to helping young people shine brighter through support for mental health, wellbeing, personal growth, events, advice, and related services. We are committed to protecting your privacy and handling your personal information responsibly and securely.

This Privacy Policy explains how we collect, use, share, and protect personal information when you visit our website (lifeluminahub.org or similar), sign up for services, donate, contact us, or interact with us online or offline. It applies to visitors, supporters, young people we support, parents/carers, volunteers, and partners.

We comply with the UK General Data Protection Regulation (UK GDPR), Data Protection Act 2018, Privacy and Electronic Communications Regulations (PECR), and relevant ICO guidance (including updates from the Data (Use and Access) Act 2025).

If you are under 18, please read this with a parent, carer, or trusted adult. We have a separate Young Person’s Privacy Policy for simpler explanations aimed at younger users.

Who we are
(Data Controller)

Life Lumina Hub  
Registered charity number:   pending
 
Email: info@lifeluminahub.org.uk  

What personal information do we collect

We may collect:  
– Identity and contact details (name, email, phone, address, date of birth/age)  
– Information you provide (e.g., in forms, surveys, messages, event registrations, donation details, stories/experiences shared for support)  
– Technical data (IP address, browser type, device info, pages visited, time/date of visits) via cookies and similar technologies — see our separate Cookie Policy  
– Payment/donation details (handled securely by third-party processors; we do not store full card details)  
– Special category data (e.g., health/mental health details, ethnicity if relevant to services) only when you voluntarily share it for support purposes  
 
We collect this directly from you, from parents/carers (with consent where needed), or from partners (e.g., schools/referral organisations) with appropriate safeguards.

How and why do we use your information

We use it lawfully for:  
– Providing our services (advice, events, support programs, newsletters)  
– Responding to enquiries, applications, or feedback  
– Processing donations and sending thank-you/confirmation messages  
– Sending updates, event invites, or fundraising appeals — we may use the new charitable ‘soft opt-in’ (where you have supported us or shown interest, and not opted out) for electronic marketing about our charitable purposes  
– Improving our website/services (anonymous analytics)  
– Safeguarding and legal obligations (e.g., reporting concerns about wellbeing to authorities)  
– Administering volunteer/supporter relationships  
– Research/evaluation (anonymised where possible)  

Our lawful bases include consent (e.g., for marketing/opt-in), contract (e.g., event bookings), legitimate interests (e.g., service improvement), legal obligation (e.g., financial records), vital interests/public task (safeguarding), or explicit consent (special category data).

Who do we share your information with

We do not sell or rent your data. We share it only when necessary:  
– With trusted service providers (e.g., email platforms like Mailchimp, donation processors like JustGiving/Stripe, analytics like Google — all bound by strict contracts)  
– With partners (e.g., other charities/professionals) for joint support, with your agreement  
– For safeguarding (e.g., to social services, police, or parents/carers if there’s a serious risk)  
– If required by law (e.g., HMRC for donations)  
 
We use international providers (e.g., US-based) with safeguards like UK-approved mechanisms.

How long do we keep your information

We keep it only as long as needed:  
– For active supporters/services: while relevant, plus up to 6 years after last contact (legal/financial reasons)  
– Donations: 7+ years for tax/Gift Aid  
– Anonymised data: longer for insights  
We securely delete/destroy data when no longer required.

Your rights

Under UK GDPR you can:  
– Access your data (subject access request)  
– Correct inaccurate data  
– Request deletion (in some cases)  
– Restrict or object to processing (e.g., opt out of marketing)  
– Data portability (limited)  
– Withdraw consent (where we rely on it)  
 
For young people: requests may involve parents/carers if under 13 or where appropriate. Contact us to exercise rights — we respond within one month (free unless complex).

Keeping your data safe

We use technical measures (encryption, secure servers, access controls) and organisational measures (staff training, policies) to protect data. However, no system is 100% secure — report concerns immediately.

International transfers

If data goes outside the UK (e.g., to cloud providers), we ensure adequate protections (e.g., UK International Data Transfer Agreement).

Cookies and website tracking

See our separate Cookie Policy for details on cookies, analytics, and how to manage preferences.

How long do we keep your information

We keep it only as long as needed:  
– For active supporters/services: while relevant, plus up to 6 years after last contact (legal/financial reasons)  
– Donations: 7+ years for tax/Gift Aid  
– Anonymised data: longer for insights  
We securely delete/destroy data when no longer required.

Your rights

Under UK GDPR you can:  
– Access your data (subject access request)  
– Correct inaccurate data  
– Request deletion (in some cases)  
– Restrict or object to processing (e.g., opt out of marketing)  
– Data portability (limited)  
– Withdraw consent (where we rely on it)  
 
For young people: requests may involve parents/carers if under 13 or where appropriate. Contact us to exercise rights — we respond within one month (free unless complex).

How to contact us

For questions, requests, or complaints:  
Email: info@lifeluminahub.org.uk
 
If unsatisfied, contact the Information Commissioner’s Office (ICO): www.ico.org.uk or 0303 123 1113.