University of Brighton Privacy Notice: Business Innovation Services and ERDF funded projects

This privacy notice explains how the University of Brighton collects, uses and stores your personal information with particular reference to the part funded business engagement support that is being provided to beneficiaries, through a number of projects, on behalf of the European Structural and Investment Fund (ESIF) and in particular the European Regional Development Fund (ERDF).

Who we are

The University of Brighton (‘we’ or ’us’) is a ‘Data Controller’ for the purposes of the Data Protection Legislation (including the Data Protection Act 1998 and the General Data Protection Regulation) and we are responsible for, and control, the processing of your personal information.

Your privacy

We are committed to protecting your privacy. This notice explains how the University collects and processes your personal information for the (fully or part funded) business engagement and support purposes.

Information we collect

We obtain personal information about you from the following sources:

1. You provided your personal information through our website, i.e. when enquiring/expressing an interest in receiving support from our team as part of an ERDF funded project via the dedicated project website or webpages, or through the University of Brighton website.

2. Personal and/or business information provided to us via project application forms and additional project forms which are required in order to provide the support as requested and agreed.

3. Completed and/or returned surveys or response/feedback forms including by mail and via electronic means;

4. Information provided to us when you have registered to attend an event;

5. You provided personal information as part of discussions with any of our team or project/university representatives whether in person, via email, telephone or other online communications.

We occasionally may obtain personal information from a small number of third-party sources:

1. If you have opted in to receiving marketing from our group of partners, or have consented to your information being shared with us by our partners. These partners include Plus X Brighton.

We may process the following personal information about you:

1. Your title and full name.

2. Your business details, including company address, company telephone/mobile number, and company email address, position and organisation.

3. Gender, Age and Special Categories of personal data, such as information about your ethnic origin would only be processed where you have provided it yourself (with your consent), as a contractual requirement of taking part in any of our European Regional Development Funded (ERDF) projects.

4. Specified business financial information (with your consent) will only be shared with the managing authority ‘The Ministry of Housing, Communities and Local Government’ (MHCLG) in order to meet and satisfy our European Regional Development Fund (ERDF) contractual obligations.

The University of Brighton uses cookies to improve the content and experience of its website users, but these do not allow for us to identify you personally. More information on how to manage cookies can be found here.

How we process and use your data

We collect limited and specified personal information to enable us to deliver business support services, to comply with our legal obligations from external funding bodies (ERDF/MHCLG) and to better understand our community so that we can better meet your needs and improve our services.

We may process your personal information for the following purposes:

1. Administrative purposes

1.1 To verify your identity and establish eligibility to be able to provide you with an agreed business support service or allow your business to engage with one of our ERDF or other funded projects.

1.2 To keep a record of key communications between you, the business you represent and our project representatives to comply with our contractual obligations.

1.3 To process your registration.

2. Communications

We may, from time to time, contact you by email, post or telephone to pursue the purposes mentioned above and in particular for the following reasons:

2.1 To identify and advise you of other relevant business opportunities where there is mutual benefit to both parties – i.e. opportunities for collaboration;

2.2 To keep you up to date with relevant events and activities at the University of Brighton;

2.3 To share relevant news and achievements of the University and its staff/student body, including research and services;

2.4 Invite you to business events, which may be of interest to you;

2.5 To keep you up to date with other relevant information, which we think may be of interest to you.

Who your information may be shared with

Your personal information is held within secure project records both physically (paper) and electronically. We may disclose your personal data to other departments within the University of Brighton, third parties working in partnership with or on behalf of the University (for example, as part of a funded project or for evaluation purposes), and/or Government Agencies (MHCLG) and the European Commission (EC) or where required to do so by law in order to comply with our contractual obligations.

We do not transfer your personal information to third parties outside the EEA or to territories without adequate levels of protection. Where personal data is processed by a third party, we take reasonable steps to ensure that the data is processed strictly according to the instructions of the University, for the relevant purposes only, in accordance with our contractual retention obligations and is securely destroyed or returned upon completion/termination.

We take reasonable steps to ensure that third party processors are subject to written legal obligations in respect of data protection and the duty of confidentiality.

We do not sell or rent any personal information or data supplied by you. We may compile aggregate statistics and provide them to third parties, but we do not include personal information that identifies individual users.


We will only retain your personal information in line with our contractual obligations.

We are contractually obliged to maintain your personal information in our databases but you do have the right to request that any of your records are removed.  As this would effectively remove your business, along with the attendant outputs, from any project you may be involved in, you will then become ineligible for support. Accordingly, you will become responsible for reimbursing the funded project with the full cost of the support you had received.

Rights of data subjects

1. Right to request a copy of your information

You can request a copy of your information which we hold (this is known as a subject access request). If you would like a copy of some or all of it, please visit the University of Brighton Data Protection web pages available here.

2. Right to correct mistakes in your information

You can require us to correct any mistakes in your information which we hold free of charge. If you would like to do so, please write to us, see ‘How to contact us’ below, and provide us with enough information to identify you, as well as, inform us of the information that is incorrect and what it should be replaced with.

3. Right to ask us to stop contacting you with direct marketing

If you would like to unsubscribe from the University of Brighton, please contact our Data Compliance Officer, see ‘How to contact us’ below.

Lawful basis for processing

The University of Brighton may rely on one or multiple grounds for processing your personal data including:

1. You have provided consent for the processing;

2. There is a contractual commitment to provide the services and, therefore, processing is necessary to meet those contractual obligations;

3. The information is available to the public at large

4. Public interest

5. The processing is necessary for the purposes of legitimate interests of the University or other third parties and does not affect the fundamental rights and freedoms of the individuals concerned.

How to contact us

If you have any concerns regarding the way in which the university is processing your personal data, please contact Rachel Page, Head of Data Compliance and Records Management: or 01273 642010. 

You can also write to us at the following address:

University of Brighton
Mithras House
Lewes Road

ICO Registration Number:


Data Controller:

 University of Brighton, Mithras House, Lewes Road, Brighton BN2 4GJ

Data Protection Officer:

The Data Protection Officer is responsible for advising the university on compliance with data protection legislation and monitoring its performance against it.

Revisions to the Privacy Policy

We may revise this privacy policy at any time in response to changes in the law or other factors. We encourage you to periodically visit this page to review the most current policy, or obtain a copy by contacting us directly.

Privacy notices

Changes to this noticewe keep our privacy notices under regular review. This privacy notice was last updated in April 2021.

Other privacy notices

We do our utmost to protect your privacy. Please be aware that other privacy notices exist within the university in respect of data held, including but not limited, to activities in relation to your enquiries, application, current students, alumni and use of our website.

The INSPIRE project and its consortium are the owners and sole responsible for the contents of this website. It does not represent the opinion of the Community and the Community is not responsible for any use that might be made of information contained on this site. INSPIRE project has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement No 691440 – INSPIRE.

Copyright © 2016 INSPIRE