Privacy Policy

Dementia Sphere

Compliant with UK GDPR & Data Protection Act 2018

Last Updated: March 1st, 2026

1. Who we are

Dementia Sphere is the data controller responsible for your personal data.

Contact: info@dementiasphere.com

You have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO).

2. What Personal Data We Collect

Information you provide

  • Name
  • Email address
  • Contact details
  • Messages via contact forms
  • Newsletter/PDF subscriptions
  • Event registrations (if applicable)

Automatically collected data

  • IP address
  • Browser type
  • Device information
  • Pages visited
  • Time spent on site

Sensitive Data

We do not intentionally collect special category health data unless voluntarily submitted (e.g., caregiving stories).

If submitted, such data is processed only with explicit consent and is anonymised unless specified otherwise.

3. Lawful Bases for Processing (UK GDPR Article 6)

We process personal data under:

  • Consent – Newsletter/PDF subscriptions
  • Legitimate Interests – Improving services, responding to enquiries
  • Legal Obligation – Compliance with law
  • Contractual Necessity – If services or paid resources are introduced

For special category data (if provided), we rely on explicit consent (Article 9).

4. How We Use Your Data

We use your data to:

  • Respond to enquiries
  • Provide newsletters/PDF guides (if subscribed)
  • Improve website performance
  • Monitor security
  • Prevent abuse or misuse
  • Comply with legal obligations

We do not sell your personal data.

5. Marketing Communications

You will only receive marketing communications if:

  • You have opted in, or
  • There is a lawful legitimate interest (where permitted by law)

You may:

  • Unsubscribe via email link
  • Contact us to withdraw consent
  • Object to marketing at any time

We honour opt-out requests promptly.

6. Data Retention

We retain personal data:

  • Newsletter subscribers: until you unsubscribe
  • Contact enquiries: up to 3 years after last communication
  • Analytics data: typically, 14–26 months depending on provider
  • Legal/financial records (if applicable): minimum 6 years

After this period, data is deleted or anonymised.

7. Cookies and Tracking

We use cookies for:

  • Essential website functionality
  • Analytics (e.g., Google Analytics)
  • Performance monitoring

You may control cookies via:

  • Browser settings
  • Cookie consent banner (where implemented)

8. Third-Party Processors

We may use third-party service providers for:

  • Website hosting
  • Email marketing platforms
  • Analytics services
  • IT and security services

All processors are contractually required to comply with UK GDPR.

We do not sell or rent personal data.

9. International Data Transfers

Some service providers may store data outside the UK.

Where transfers occur, we ensure:

  • Adequacy decisions, or
  • Standard Contractual Clauses (SCCs), or
  • Equivalent safeguards

10. Your GDPR Rights

You have the right to:

  • Access your data
  • Correct inaccurate data
  • Request erasure (“right to be forgotten”)
  • Restrict processing
  • Object to processing (including marketing)
  • Data portability
  • Withdraw consent at any time
  • Lodge a complaint with the ICO

To exercise rights, contact: info@dementiasphere.com

11. Security Measures

We implement appropriate technical and organisational measures including:

  • Secure hosting
  • SSL encryption
  • Access controls
  • Regular monitoring

However, no online transmission is 100% secure.

12. Children’s Data

This website is not intended for children under 13.

We do not knowingly collect children’s personal data.

13. Changes to This Policy

We may update this Privacy Policy from time to time.

Changes will be posted on this page with an updated date.