Privacy Notice
Last Updated August 2025
We are Arts for Health Milton Keynes (AHMK), a charity that delivers a wide range of art workshops for people facing health challenges, including people with dementia and young people going through a difficult time. We are committed to safeguarding the privacy of our users which is why we have developed our Privacy Notice, setting out how we use the information you provide us, why we do this and how the law protects you in accordance with The Data Protection, Privacy and Electronic Communications Regulation 2020 (UK GDPR), The Data Protection Act 2018 (DPA) and any other relevant UK data protection legislation.
Information we collect
Arts for Health Milton Keynes collects information from the public in a number of different ways. For example, we may obtain information about you when you sign up for a course, take part in one of our workshops or events, sign up to our newsletter, request to volunteer with us or make a donation.
The sort of personal information we collect about you may include your name, mailing address, telephone number, e-mail address, emergency contact details.
If you have given us your consent, we will contact you with information and updates on our work and how you can support us. We will also continue to ask about your marketing preferences, to ensure that you are still happy to be contacted by us and by which means.
Your Rights
Under data protection laws in the UK, you have certain rights over the personal information we hold about you. Here is a summary of the rights that apply:
Right to be informed
You have the right to be informed as to how we use your data under what lawful basis we carry out any processing. If you would like further information or feel that your rights are not being respected please get in contact via any of the listed contact details in section 'Concerns, Queries and Complaints'.
Right of erasure
You may ask us to delete some or all of your information we hold about you. Subject to certain exceptions, we will do so as far as we are required to.
Right to Object
You have the right to object to processing where we are using your personal information such as where it is based on legitimate interests or for direct marketing.
Inaccurate personal information corrected
Inaccurate or incomplete information we hold about you can be corrected. The accuracy of our information is important to us and we are working on ways to make this easier for you to review and correct the information that we hold about you. We will also carry out annual accuracy checks and contact you to ensure your information is up to date. If any of your information is out of date or if you are unsure of this, please contact through any of the contact details listed in section 'Concerns, Queries and Complaints'.
Right of restriction
You have a right to restrict the processing of some or all of your personal information if there is a disagreement about its accuracy, or we are not lawfully allowed to use it.
Right to access your information
You have a right to request access to a copy of your personal information that we hold about you, along with the information on what personal information we use, why we use it, who we share it with, how long we keep it for and whenever it has been used for automated decision making. You can make a request for access free of charge, proof of identity is required.
No automated decision making
Automated decision making takes place when an electronic system used personal information to make a decision that will create legal effects or create a similar significant impact on you unless you have given Consent, it is necessary for a contract between you and us or is otherwise permitted by law. You also have certain rights to challenge decisions made about you. We do not currently carry out automated decision making.
Portability
You can ask us to provide you or a third party with some of the personal information that we hold about you in a structured. Commonly used, electronic form so it can be easily transferred.
If you make a request, we must respond to you without undue delay and in any event within one month. To make a data protection rights request, please contact us using the contact details at the top of this privacy notice.
How we use your personal information:
Data protection law requires us to rely on one or more lawful basis for processing your personal information to provide services and goods, including delivery and third-party referrals. Please see the following grounds we use and believe are relevant and lawful under data protection laws:
Specific and information Consent
Where you have provided your Consent to use your personal information for certain purposes, such as to send you information by email.
Legitimate Interests
Where it is necessary to achieve our and other's objectives as an organisation with good reason. As long as we can demonstrate that the use is fair and with your reasonable expectations. This might include, for example, to send you communications through the post that we think may be of interest to you. Whenever we use Legitimate Interest to process data, we perform a Legitimate Interest Balancing Test (LIA) to enable us to consider any potential impact on you (both positive and negative), and your rights under data protection laws. Your information will not be processed if our interests as an organisation override your fundamental rights and freedoms.
When we process sensitive or special categories of data, we require an additional legal basis in order to process such information under data protection laws. We will either use your Explicit Consent or another lawful ground available to us.
Legal Obligation
We will use this condition to process personal information where we are required by law.
Contract
Where we are entering into a contract with you, for example where you purchase a ticket to an event we have organised.
Vital Interests
Where it is necessary to protect your life or your health. An example would be in the case of a medical emergency by an individual attending one of our events.
Sharing personal data
We may pass your information to third-party suppliers, providers, subcontractors, and other associated organisations for the purposes of completing tasks and providing services to you on their behalf. For example, processing data in our email distributor, mail chimp, or to process a donation. Please be assured that your data will not be processed by these third parties for any other reason than that stated unless you have requested us to do so, or we are required to do so by law. For example, for the purposes of prevention of fraud or other crimes or any other requirement by law or under specific circumstances such as for safeguarding reasons or in the case of an emergency.
We will not sell, distribute or disclose your information to any other third parties.
Keeping your information safe
We take looking after your information very seriously. We have implemented appropriate physical, technical, and organisational measures to ensure that your personal information is secure when under our control, both on and offline, from improper access, use alteration, destruction, and loss.
Any sensitive information (such as your credit or debit card details or any information that is classed as sensitive or special category data) is encrypted and protected. All debit and credit card details are passed securely to our payment processing partner, according to the Payment Card Industry Security Standards. Non-sensitive details such as your email address etc, are transmitted normally over the internet, this cannot be guaranteed to be 100% secure, so as a result, while we strive to protect your personal information, we make our best effort to ensure its secure on our systems.
Our websites may contain links to other sites. While we try to link only to sites that share our high standards and respect for privacy, we are not responsible for the content or the privacy practices employed by other sites. Please be aware that advertisers or websites that have links on our site may collect personally identifiable information about you. This privacy notice does not cover the information practices of those websites and advertisers.
Vulnerable circumstances
We are committed to protecting vulnerable supporters, beneficiaries, customers and volunteers and any other individual we hold data of and appreciate care is needed when we use their personal information. In recognition of this, we observe good practise guidelines in our interactions with vulnerable people.
Use of 'Cookies'
Like many other websites, this website uses 'cookies'. _'Cookie'_ is a name for a small file, usually of letters and numbers, which is downloaded onto your device, like your computer, mobile phone, or tablet when you visit a website. They let websites recognise your device so that the sites can work more efficiently and gather information about how you use the website. A cookie, by itself, can't be used to identify you.
How do we use cookies?
We use cookies to distinguish you from other users of our website. This helps us to provide you with a good experience when you come to our website and allows us to improve the user experience.
The cookies we use
We use categorisation set out by the International Chamber of Commerce in their UK cookie guide and the Data (Use and Access) Act 2025.
We use all categories of Cookies:
Under the DUAA 2025 rules, we can use some basic cookies that help our site work and understand how people use it without asking first — but you can still say no at any time.
No cookies, please
You can opt-out of all our cookies except the strictly necessary ones. If you have any questions about how we use cookies, please contact us via the following contact information outlined in 'concerns, queries and complaints'.
Transferring your information outside of the United Kingdom
When data is transferred outside of the UK, appropriate safeguards are in place to ensure adequate levels of security are in place and are in line with data protection laws. We do not currently transfer data outside of the UK and you will be notified if and when MK Arts for Health does.
How long we keep information.
We do not keep you information for longer than is necessary. For more information on how long we store your personal information or the criteria we use to determine this please contact us using the details provided above.
Marketing and opting out
If you have given permission, we may contact you about our services and charitable causes that may be of interest to you. After having given permission, you decide that you no longer wish to receive any direct marketing communications from us, you can withdraw your permission at any time. Please refer to section 'Concerns, Queries and Complaints' to contact us.
Review and Changes to this policy
Any changes we make to this policy in the future will be posted on this website so please check this page occasionally to ensure that you're happy with any changes. If we make any significant changes, we'll make this clear on our website. We keep this policy under regular review. This policy was last updated August 2025.
Concerns, Queries and Complaints
If you have any questions regarding Arts for Health MK's Privacy Notice and our privacy practises or would like to exercise any of your rights, please get in touch via the following information:
︎ Email us: info@artsforhealthmk.org.uk
︎ Call us: 01908 996 124
︎ Write to us: Data Protection Enquiry
Facilities Directorate
Milton Keynes University Hospital,
Standing Way
Milton Keynes
MK6 5LD
If you are unhappy with the way we process your data or our privacy practices, you can also make a complaint to the Information Commissioner's Officer (ICO) which regulates the use of information in the UK. They can be contacted by:
Telephone: 0303 123 1113 or by writing to;
Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
Or by going online to: www.ico.org.uk/concerns
If the organisation is based outside of the UK, the complaint should be directed to the relevant Data Protection Authority in that Country.
Privacy Notice
Arts for Health Milton Keynes
We are Arts for Health Milton Keynes (AHMK), a charity that delivers a wide range of art workshops for people facing health challenges, including people with dementia and young people going through a difficult time. We are committed to safeguarding the privacy of our users which is why we have developed our Privacy Notice, setting out how we use the information you provide us, why we do this and how the law protects you in accordance with The Data Protection, Privacy and Electronic Communications Regulation 2020 (UK GDPR), The Data Protection Act 2018 (DPA) and any other relevant UK data protection legislation.
Information we collect
Arts for Health Milton Keynes collects information from the public in a number of different ways. For example, we may obtain information about you when you sign up for a course, take part in one of our workshops or events, sign up to our newsletter, request to volunteer with us or make a donation.
The sort of personal information we collect about you may include your name, mailing address, telephone number, e-mail address, emergency contact details.
If you have given us your consent, we will contact you with information and updates on our work and how you can support us. We will also continue to ask about your marketing preferences, to ensure that you are still happy to be contacted by us and by which means.
Your Rights
Under data protection laws in the UK, you have certain rights over the personal information we hold about you. Here is a summary of the rights that apply:
Right to be informed
You have the right to be informed as to how we use your data under what lawful basis we carry out any processing. If you would like further information or feel that your rights are not being respected please get in contact via any of the listed contact details in section 'Concerns, Queries and Complaints'.
Right of erasure
You may ask us to delete some or all of your information we hold about you. Subject to certain exceptions, we will do so as far as we are required to.
Right to Object
You have the right to object to processing where we are using your personal information such as where it is based on legitimate interests or for direct marketing.
Inaccurate personal information corrected
Inaccurate or incomplete information we hold about you can be corrected. The accuracy of our information is important to us and we are working on ways to make this easier for you to review and correct the information that we hold about you. We will also carry out annual accuracy checks and contact you to ensure your information is up to date. If any of your information is out of date or if you are unsure of this, please contact through any of the contact details listed in section 'Concerns, Queries and Complaints'.
Right of restriction
You have a right to restrict the processing of some or all of your personal information if there is a disagreement about its accuracy, or we are not lawfully allowed to use it.
Right to access your information
You have a right to request access to a copy of your personal information that we hold about you, along with the information on what personal information we use, why we use it, who we share it with, how long we keep it for and whenever it has been used for automated decision making. You can make a request for access free of charge, proof of identity is required.
No automated decision making
Automated decision making takes place when an electronic system used personal information to make a decision that will create legal effects or create a similar significant impact on you unless you have given Consent, it is necessary for a contract between you and us or is otherwise permitted by law. You also have certain rights to challenge decisions made about you. We do not currently carry out automated decision making.
Portability
You can ask us to provide you or a third party with some of the personal information that we hold about you in a structured. Commonly used, electronic form so it can be easily transferred.
If you make a request, we must respond to you without undue delay and in any event within one month. To make a data protection rights request, please contact us using the contact details at the top of this privacy notice.
How we use your personal information:
-
We collect, store
and process your personal data to improve your experience with Arts for Health
Milton Keynes. We may use your personal information to:
- Provide information about our services to you
- Keep you informed about projects, exhibitions and events that we think you may find interesting
-
Keep a record of
your relationship with AHMK
-
Notify you of any
changes to our website or to any of our services that may affect you
-
Carry out our
obligations under any contracts entered into between you and us
-
Seek your views or
comments on the services we provide
Record an event or project you attend
Data protection law requires us to rely on one or more lawful basis for processing your personal information to provide services and goods, including delivery and third-party referrals. Please see the following grounds we use and believe are relevant and lawful under data protection laws:
Specific and information Consent
Where you have provided your Consent to use your personal information for certain purposes, such as to send you information by email.
Legitimate Interests
Where it is necessary to achieve our and other's objectives as an organisation with good reason. As long as we can demonstrate that the use is fair and with your reasonable expectations. This might include, for example, to send you communications through the post that we think may be of interest to you. Whenever we use Legitimate Interest to process data, we perform a Legitimate Interest Balancing Test (LIA) to enable us to consider any potential impact on you (both positive and negative), and your rights under data protection laws. Your information will not be processed if our interests as an organisation override your fundamental rights and freedoms.
When we process sensitive or special categories of data, we require an additional legal basis in order to process such information under data protection laws. We will either use your Explicit Consent or another lawful ground available to us.
Legal Obligation
We will use this condition to process personal information where we are required by law.
Contract
Where we are entering into a contract with you, for example where you purchase a ticket to an event we have organised.
Vital Interests
Where it is necessary to protect your life or your health. An example would be in the case of a medical emergency by an individual attending one of our events.
Sharing personal data
We may pass your information to third-party suppliers, providers, subcontractors, and other associated organisations for the purposes of completing tasks and providing services to you on their behalf. For example, processing data in our email distributor, mail chimp, or to process a donation. Please be assured that your data will not be processed by these third parties for any other reason than that stated unless you have requested us to do so, or we are required to do so by law. For example, for the purposes of prevention of fraud or other crimes or any other requirement by law or under specific circumstances such as for safeguarding reasons or in the case of an emergency.
We will not sell, distribute or disclose your information to any other third parties.
Keeping your information safe
We take looking after your information very seriously. We have implemented appropriate physical, technical, and organisational measures to ensure that your personal information is secure when under our control, both on and offline, from improper access, use alteration, destruction, and loss.
Any sensitive information (such as your credit or debit card details or any information that is classed as sensitive or special category data) is encrypted and protected. All debit and credit card details are passed securely to our payment processing partner, according to the Payment Card Industry Security Standards. Non-sensitive details such as your email address etc, are transmitted normally over the internet, this cannot be guaranteed to be 100% secure, so as a result, while we strive to protect your personal information, we make our best effort to ensure its secure on our systems.
Our websites may contain links to other sites. While we try to link only to sites that share our high standards and respect for privacy, we are not responsible for the content or the privacy practices employed by other sites. Please be aware that advertisers or websites that have links on our site may collect personally identifiable information about you. This privacy notice does not cover the information practices of those websites and advertisers.
Vulnerable circumstances
We are committed to protecting vulnerable supporters, beneficiaries, customers and volunteers and any other individual we hold data of and appreciate care is needed when we use their personal information. In recognition of this, we observe good practise guidelines in our interactions with vulnerable people.
Use of 'Cookies'
Like many other websites, this website uses 'cookies'. _'Cookie'_ is a name for a small file, usually of letters and numbers, which is downloaded onto your device, like your computer, mobile phone, or tablet when you visit a website. They let websites recognise your device so that the sites can work more efficiently and gather information about how you use the website. A cookie, by itself, can't be used to identify you.
How do we use cookies?
We use cookies to distinguish you from other users of our website. This helps us to provide you with a good experience when you come to our website and allows us to improve the user experience.
The cookies we use
We use categorisation set out by the International Chamber of Commerce in their UK cookie guide and the Data (Use and Access) Act 2025.
We use all categories of Cookies:
Under the DUAA 2025 rules, we can use some basic cookies that help our site work and understand how people use it without asking first — but you can still say no at any time.
No cookies, please
You can opt-out of all our cookies except the strictly necessary ones. If you have any questions about how we use cookies, please contact us via the following contact information outlined in 'concerns, queries and complaints'.
Transferring your information outside of the United Kingdom
When data is transferred outside of the UK, appropriate safeguards are in place to ensure adequate levels of security are in place and are in line with data protection laws. We do not currently transfer data outside of the UK and you will be notified if and when MK Arts for Health does.
How long we keep information.
We do not keep you information for longer than is necessary. For more information on how long we store your personal information or the criteria we use to determine this please contact us using the details provided above.
Marketing and opting out
If you have given permission, we may contact you about our services and charitable causes that may be of interest to you. After having given permission, you decide that you no longer wish to receive any direct marketing communications from us, you can withdraw your permission at any time. Please refer to section 'Concerns, Queries and Complaints' to contact us.
Review and Changes to this policy
Any changes we make to this policy in the future will be posted on this website so please check this page occasionally to ensure that you're happy with any changes. If we make any significant changes, we'll make this clear on our website. We keep this policy under regular review. This policy was last updated August 2025.
Concerns, Queries and Complaints
If you have any questions regarding Arts for Health MK's Privacy Notice and our privacy practises or would like to exercise any of your rights, please get in touch via the following information:
︎ Email us: info@artsforhealthmk.org.uk
︎ Call us: 01908 996 124
︎ Write to us: Data Protection Enquiry
Facilities Directorate
Milton Keynes University Hospital,
Standing Way
Milton Keynes
MK6 5LD
If you are unhappy with the way we process your data or our privacy practices, you can also make a complaint to the Information Commissioner's Officer (ICO) which regulates the use of information in the UK. They can be contacted by:
Telephone: 0303 123 1113 or by writing to;
Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
Or by going online to: www.ico.org.uk/concerns
If the organisation is based outside of the UK, the complaint should be directed to the relevant Data Protection Authority in that Country.
Office
Arts for Health Milton Keynes
Facilities Directorate
Milton Keynes Hospital
Standing Way
Eaglestone
Milton Keynes
MK6 5LD
Privacy Policy
Arts for Health Milton Keynes
Facilities Directorate
Milton Keynes Hospital
Standing Way
Eaglestone
Milton Keynes
MK6 5LD
Privacy Policy
Arts for Health Milton Keynes is the working name of MK Arts for Health charity number 1107625 company number 05137693