Skip to content

Privacy policy

We care about your privacy.

Privacy policy

This privacy policy outlines how we (Made Open) gather and handle your personal information while using our platform.

Our commitments to you include:

  1. Collecting personal information only to enhance your platform experience.
  2. Requesting and recording your consent before collecting any personal information.
  3. Never selling your personal data to third parties.
  4. Clearly explaining the purpose of collecting personal information, unless it's evident.
  5. Safeguarding and securely storing your data.
  6. Respecting your preferences and rights regarding data storage.
  7. Sending only relevant emails related to your website usage.
  8. Obtaining your explicit consent before sending any marketing-related emails.

1. Who we are

Made Open and Bristol City Council have entered into an agreement whereby Made Open permits Bristol City Council (Authorised User) and registered users (End Users), access to and use of our software and services.

We agree that members of Bristol City Council own the Intellectual Property Rights for their own user-generated content and data. You agree that Made Open owns the Intellectual Property Rights to our software, services and documentation.

All parties agree that if Made Open or Bristol City Council processes any personal data on your behalf when performing its obligations under their agreement, for the purposes of data protection legislation, the data controller is Bristol City Council and the data processor is Made Open.

Bristol City Council is licensing this software as the lead coordinator and can be contacted via email: communities@bristol.gov.uk.

Made Open is a limited company registered in England and Wales (registration number is 4309700). We are registered with the Information Commissioner’s Office (reg no: Z2818556). Our office address is:

Unit FF26
Health and Wellbeing Innovation Centre
Truro
Cornwall
TR1 3FF

All data captured via this platform is securely stored with Made Open's internet hosting provider Cloud Above Ltd, of:

Unit 1,
1 King Mark House,
Tregunnel Hill,
Newquay,
Cornwall
TR7 1GF

2. What personal data we collect

All the personal data we collect is outlined in the table below:

Data type What this means
Identity data
  • Your name (mandatory)
  • What you do (optional)
  • A short biography (mandatory)
  • A profile image of you (optional)
  • Social media and website links (optional)
  • Confirmation that you are over 16 (mandatory)
Contact data
  • Your email address (mandatory)
  • Your phone number (optional)
  • Your address (optional)
Location data Your region and the organisation you work for (optional)
Financial data None
Marketing data None
Activity data

Date:

  • When you registered.
  • When you last updated your profile.
  • When you last added an activity.
  • When you last made a connection.
  • When you last posted a message.
  • When you last completed an exchange.

General interactions:

  • Your account type (mandatory)
  • Your interests (optional)
  • Have you signed up for a newsletter?
  • Have you completed your profile?
  • How many badges do you have?
  • How many connections have you made?
  • How many messages have you sent?
  • How many activities have you created?
Technical data
  • Internet protocol (IP) address (automatic)
  • Your login data (automatic)
  • Browser type and version (automatic)
  • Time zone setting and location (automatic)
  • Browser plug-in types and versions (automatic)
  • Operating system you use to access this platform (automatic)

Aggregated data

We gather, use and share "aggregated data" like statistics or demographics. This type of data, while derived from personal data, doesn't reveal your identity and doesn't fall under GDPR's definition of personal data. Any information that can identify you directly or indirectly will be treated as personal data and handled according to our Privacy Policy.

No special categories of personal data

We don't gather any sensitive personal information about you such as race, religion, health details or criminal history.

3. How we use your personal data

We'll only use your personal data for the listed purposes unless we have a good reason that aligns with the original purpose. If we ever need to use it for a different reason, we'll update the Privacy Policy and explain the legal basis for doing so.

What is our “legal basis” for processing your personal data?

We follow the GDPR, which requires a legal basis for using your data. Usually, we rely on:

  1. Contractual necessity: When we need your data for a contract.
  2. Legitimate interests: When it's necessary for our interests and yours.
  3. Compliance with law: When we must follow legal obligations.
  4. Consent: When you give specific approval.

We typically don't rely on your consent, except for direct marketing communications.

Here is a table showing the legal bases for using your personal data:

Purpose Categories of personal data involved Our legal basis for this use of data
Registering an account Identity / contact data Contractual necessity
Setting up your profile Identity data Legitimate interest
Setting up your Best Match Activity data Legitimate interest
Your activities Activity / contact data Legitimate interest
Your messages Activity data Legitimate interest / compliance with law
Your connections Activity data Legitimate interest
Joining the timebank Identity data Legitimate interest
Member management Identity / contact / activity data Contractual necessity / legitimate interest
Communications Contact data Contractual necessity / legitimate interest

4. Who we share your personal data with

We use your information as described. Third parties get your personal details only with your consent or to protect our business interests. We may share your info in these situations:

  1. With our employees to enhance the platform's user experience.
  2. When required by law.
  3. If we sell our business or assets.
  4. To establish, exercise or defend legal rights.
  5. To protect Made Open, our clients or others.

We won't provide or sell your info to third parties, except as mentioned. See the table below for details on who we share your data with, what we share and why.

Who we share data with What we share Why we access it
Made Open Communications Ltd All data As the software supplier, Made Open processes data on behalf of their customers.
Bristol City Council and their Authorised Users. All data As the customer, Bristol City Council are the data controller.
Cloud Above Ltd Technical data Data from our software is safely stored by our hosting provider, Cloud Above Ltd.
Mailgun Contact data To process important system notifications, like "You have a new connection request".
Emailblaster Contact data To send newsletters, website updates and information, such as "We've updated our terms and conditions".
Google Analytics Technical data To use website data to enhance user experience.

5. How we secure your personal data

We prioritise the security of your data. Your personal information is stored securely on our UK-based servers, which have strong password protection, regular updates, an industry-standard Firewall and authentication processes.

To prevent hacking, we use recognised security measures like password hashing, salting and techniques against SQL injection. However, transmitting data over the Internet isn't entirely secure. While we strive to protect your data, we can't guarantee its security during transmission.

Please keep your password confidential; we won't ask for it unless you're logging in. Don't share your password with others to ensure the security of your account.

6. How long we store your personal data for

We'll keep your personal data only until:

  1. You delete your account.
  2. You exercise your right to be forgotten.
  3. The website is shut down.

Unless the law requires a longer retention period.

7. Your personal data rights

You have the right to:

  1. Access your personal data, getting a copy and ensuring lawful processing.
  2. Correct any incomplete or inaccurate personal data we hold about you.
  3. Request the erasure of your data if there's no good reason for us to process it.
  4. Object to processing based on Legitimate Interest or for marketing purposes.
  5. Ask for the suspension of processing if you question accuracy or purpose.
  6. Receive your personal data in a machine-readable format or transfer it to a third party.
  7. Withdraw consent, impacting certain platform functionalities, if we rely on your consent for processing. We'll inform you if this affects your access when you withdraw consent.

8. Things to be mindful of

Our children policy:

This platform is meant for users aged 16 and above; we don't knowingly collect data from those under 16.

Third-party personal data:

We don't currently collect personal data from third-parties. 

Third-party links:

Our platform may have links to third-party sites. Clicking on them may allow third parties to collect or share your data. We're not responsible for their privacy policies, so check them when you leave our platform.

Data requirements:

If we need more personal data to comply with the law or our terms, and you don't provide it when requested, we may have to limit your platform use. We'll inform you if this happens.

Marketing preferences:

We don't send marketing messages from third parties. You can adjust your marketing preferences anytime on the platform or through opt-out links in marketing messages. Opting out won't affect personal data provided through platform use.

9. How to exercise your rights

To use any of the rights mentioned earlier, please email: communities@bristol.gov.uk.

Accessing your personal data or exercising other rights usually doesn't require a fee. However, if your request is unfounded, repetitive or excessive, we might charge a reasonable fee or refuse to comply. To confirm your identity, we may ask for specific information, ensuring your data is protected. We aim to respond within a month, but if it's complex or we receive multiple requests, it may take longer. We'll keep you informed in such cases.

10. Making a complaint

If you want to complain about this Privacy Policy or how we handle your personal data, please email: communities@bristol.gov.uk

You can exercise any of these rights, ask questions about how we use your personal data or complain by contacting Bristol City Council at data.protection@bristol.gov.uk or by writing to our data protection officer at:

Data Protection Officer Information Governance Bristol City Council City Hall College Green Bristol BS1 5TR

If you think we have dealt with your information inappropriately or unlawfully, you have the right to complain to the ICO at: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF Website: https://ico.org.uk/

You can access BCC Can Do Bristol privacy notice in a downloadable format here: Can Do Bristol Privacy Notice

Add new activity

Add an offer

Offer to help others in your network.

Add an ask

Request help from your network.

Add an event

Promote and manage your one-off, daily or weekly events.

Add a volunteering opportunity

Recruit volunteers by sharing your opportunity.

Would you like to save your progress?


Note: Saving as a draft means your activity will be available for you to edit in your dashboard.​

Selecting delete marks your activity as deleted in your dashboard.​

Please sign in or register

Sign in Register

Delete my account

Selecting this option will permanently delete your account data. You will no longer have access to your account or any associated information.

If you want to request a copy of your data, please wait until you receive your data before selecting this option.

Delete my account

Connect with __XXX__

Search Can Do Bristol

Activities

Find activities and services from members in your community.

Search activities

Members

Find people and organisations who are using Can Do Bristol

Search members

X hours given for:
Title

Cookies on Can Do Bristol

We use cookies to give you the best online experience.

Select 'Accept all' to agree to all cookies.

Some cookies are essential. Others can be controlled in your cookie preferences.