Privacy Policy

Effective date 21st May 2018.

We are committed to protecting the privacy of your personal data. We wish to respect any personal data you share with us and keep it safe. We aim to be clear when we collect your data and not do anything you wouldn’t reasonably expect.

Please read this Privacy Policy carefully to understand our practices regarding your personal data and how we will collect, use and store your personal data. We may update this policy from time to time, so please check it regularly.

Who we are

North Somerset Enterprise Agency Limited (“NSEA”, “we”, “us”, “our”) is a not-for-profit organisation with social objectives.

Our registered address is The Hive, 6 Beaufighter Road, Weston-super-Mare, North Somerset, BS24 8EE

Why we collect information

We collect information to;

  • allow us to provide you with the information or service you have requested from us
  • provide you with information which we think you will be interested in
  • understand how people use the information we provide on the website
  • tailor information and services we provide to ensure they are relevant to you
  • improve how we communicate with you, and how we operate more generally

When we collect and store information

We collect information about you when;

  1. You give it to us

This may be when you give us personal information;

  • to receive our e-newsletter;
  • to receive further information or products in relation to NSEA for example, if you attend one of our business courses;
  • when you take part in any of our organised activities (including attending any events);
  • when you take part in any of our business projects (or request information about these);
  • when you respond to a survey;
  • when you engage with us by email or otherwise correspond with us.
  1. You visit our website

We may collect information about you when you use the website. Whenever you input information into the website for example, if you create a profile or use any of our interactive features, we will collect the information that you give to us.

We use Cookies when you visit our website. Cookies are text files containing small amounts of information which are downloaded to your device when you visit a website. Cookies are then sent back to the originating website on each subsequent visit, or to another website that recognises that cookie. Amongst other things this helps us to understand how our website visitors use the website and may enable us to improve the website experience for you and/or other users. Please refer to our Cookies Policy for details on how and why we use this data.

We may collect other information from your use of the website, such as your IP address and access times.

Where we provide links to external websites, we are not responsible for the privacy practices or content of those sites. We encourage you to read the privacy policies of any external websites you visit.

3. You participate in the West of England Programme

There is a separate Data Privacy Policy for this programme.

What personal data we hold and how we use it

We will typically hold some or all the following information about you dependant on our relationship with you:

  • Your full name and title
  • Date of birth or alternatively a relevant age range
  • Postal address;
  • Telephone number(s);
  • Email address;
  • Gender;
  • Ethnicity;
  • Disability;
  • Records of your correspondence with us;
  • Photos and digital images of individuals where you provide them to us;
  • Information you enter onto the website.

In addition, we may request other information where it is appropriate and relevant, for example:

  • Details of why you have decided to contact us;
  • Details of what you intend to do with any information we provide you with;
  • Information about you that will enable us to be more precise in what we send you or how we approach you.


We will only process sensitive personal data with your explicit consent.

We will use your data to:

  • Provide you with the information, products or services that you request from us (for example, newsletters or business guidance/advice;
  • Provide you with other information, products or services which we feel may interest you when we have your consent to do so. This may include newsletters, tips, updates, information in relation to specific campaigns, voluntary surveys or questionnaires for you to complete, details of relevant business opportunities, and details of any promotions and competitions we are running. We may also send you details of events we think you may be interested in attending;
  • Provide you with information about carefully selected third-party events, products, campaigns and competitions, where we have your consent to do so;
  • Personalise our website with your preferences to reflect your previous interaction with the website (for example, to ensure that our Website is relevant to your location);
  • Keep a record of your relationship with us and, where you agree, communicate details of NSEA activities that you may have participated in to others (for example by submitting returns to Project Funders (e.g. NEA and Enterprising West of England), publishing stories/case studies and photos on our website);
  • Allow you to participate in interactive features on our Website when you choose to do so;
  • Notify you about changes to our service;
  • Comply with applicable laws and regulations and requests from statutory agencies;
  • Carry out any obligations or provide you with any other services, functionality or content which you specifically agree to on our Website.

Communications and marketing

Where you have provided consent, we may contact you by post and telephone or email, to let you know about our events and activities (and those of third parties) that might be of interest to you for example; business courses, clinics and talks. We provide the opportunity for you to opt-out from receiving our marketing communications every time we contact you.

You can opt-out from receiving our marketing communications, or update your contact preferences at any time by emailing:

How we keep your data safe and who has access to it

We are committed to ensuring that your information is secure. To prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect.

We do not sell or share your personal details with third parties for them to use for marketing purposes.

We work with service providers and other third parties who help us to operate and to provide and improve our information, products and services, and we may share information with them for this purpose.

We may allow our staff, consultants and/or external providers acting on our behalf to access and use your information for the activities we have described above (e.g. to deliver mailings, to analyse data and to process payments). We only permit them to use it to deliver the relevant service, and if they apply equivalent levels of protection that we do.

We may need to disclose your personal information upon request to regulatory and government bodies, law enforcement agencies and suppliers we engage to process data on our behalf.  We may also partner with other organisations and in so doing, acquire or transfer information.

The information we collect from you may be transferred to, shared and/or otherwise processed at a destination outside the European Economic Area (“EEA”). If we do, we will take reasonable steps to ensure that the recipient implements appropriate measures to protect your information. Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk.

Corrections to your information

The legal basis that we rely on for processing your data is either;

  • Consent: you have given clear consent for us to process your personal data for a specific purpose.
  • Contract: the processing is necessary for a contract we have with you, or because you have asked us to take specific steps before entering into a contract.
  • Legal obligation: the processing is necessary for us to comply with the law (not including contractual obligations).
  • Vital interests: the processing is necessary to protect someone’s life.
  • Public task: the processing is necessary for us to perform a task in the public interest or for our official functions, and the task or function has a clear basis in law.
  • Legitimate interests: the processing is necessary for our legitimate interests or the legitimate interests of a third party unless there is a good reason to protect your personal data which overrides those legitimate interests.

In certain circumstances you have a right to require us to stop processing your personal data in a certain way, or for your data to be erased from our database. If it is no longer necessary for the purpose you provided your data to us for (e.g. providing you with a service or item you have requested) or we do not otherwise require the data to be archived for future reference, we will do so.

You have a right to ask for a copy of the information we hold about you. If you want to access your information please contact us by either: email or write to us at the following address;

North Somerset Enterprise Agency Limited, The Hive, 6 Beaufighter Road, Weston-super-Mare, North Somerset, BS24 8EE.

Our GDPR policy covers your rights and how we deal with access requests in more detail and is available on request.

You are also entitled to make a complaint to the Information Commissioner’s Office, and for further information see the Information Commissioner’s guidance here

Data retention

We keep data for as long as there is a need to keep it for the purposes for which it was collected.  We may keep your personal data after a matter or exchange has concluded but purely for record keeping purposes and to be able to respond to queries.  In some cases, we are also obliged to retain your personal data to comply with legal or statutory obligations (for example, to keep records of contractual or financial matters).

Whilst the specific time periods vary depending on the circumstances, in general we will not keep records that include personal data for more than 6 years after a matter or exchange has concluded.  However, in line with the requirements of ERDF we need to retain data collected in respect of business contacts for a minimum of 25 years.

Should you ask us to stop sending you marketing communications, we will retain certain details to help us ensure that you are not contacted again.


Questions, comments and requests regarding this privacy statement are welcomed and should be addressed to either email: or write to us at;

North Somerset Enterprise Agency Limited, The Hive, 6 Beaufighter Road, Weston-super-Mare, North Somerset, BS24 8EE.

Changes to this privacy policy

We keep our privacy policy under regular review. This privacy policy was last updated in May 2018.