Find out more about Covid-19 Business Support
Follow us on Twitter Like us on Facebook
Privacy Policy

1. Introduction

We operate this Privacy and Cookies Policy because we are committed to safeguarding the privacy of those using our website ( and the confidentiality of any information that we collect about you. 

We are Hull City Centre (BID) Co. Limited.  We are a limited company in England (number 05483900) whose registered office is 34-38 Beverley Road, Hull, HU3 1YE.  We are the data controller in respect of all personal data collected.

This Privacy and Cookies Policy sets out how we will use any personal data that we may obtain from you.  Our website is not intended for children and we do not knowingly collect data relating to children.  If we change any of the terms of our Privacy and Cookies Policy we will post the revised policy on our website behind the “Privacy and Cookies Policy” link at the bottom of each page.

Whenever you submit your information to us, whether it be by using our website, by email, over the telephone, in person or by any other means, we will collect and use of such information in accordance with the terms of this Privacy and Cookies Policy.  We are committed to ensuring that all personal data we hold is treated properly and in accordance with applicable data protection legislation.  In accordance with data protection legislation, we are required to explain to you how we will treat any personal data which we collect from or about you.

You have the right to lodge a complaint with the Information Commissioner’s Office (“ICO”) if you have any concerns with regard to the way in which we process your personal data. Visit We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance. 

2. What information do we collect and how do we use it?

You may give us information about you by corresponding with us by phone, e-mail, social media, in person or otherwise, by submitting an enquiry via our website, by becoming a Hull Business Improvement District member or by opting in to receive our newsletter or general written updates that have relevance to you/your organisation

The information we may collect, use, store and transfer about you includes the following:

a)         name, username or similar identifier (such as social media handle), title and job title (“Identity Data”);

b)         work contact details, address, email address and telephone number(s) (“Contact Data”);

c)         bank account and payment card details (“Financial Data”);

d)         your preferences in receiving marketing from us and your communication preferences (“Marketing Data”).

We may also automatically collect data about you such as internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access our website (“Technical Data”) as you interact with our website.  We collect Technical data by using cookies and other similar technologies.  Please refer to section 8 for further information regarding the cookies used on our website.

We have set out below a description of what personal data you may give us, the ways we use your personal data, and which of the legal bases we rely on to do so.


Type of Data

Lawful basis for processing


To respond to an enquiry made by you (whether by phone/email/social media/ through the website or by other means).

(a) Identity Data;

(b) Contact Data;

(c) Information submitted pursuant to your enquiry.

Necessary for our legitimate interests (to respond to your enquiry and provide you with the information requested regarding our organisation and the services we provide).

To provide you with our newsletter.

(a) Identity Data;

(b) Contact Data;

(c) Marketing Data.

(a) Consent;

(b) Legitimate interests (where legally permitted to do so in order to promote our organisations and the services we provide).

If you subsequently decide that you no longer wish to receive our newsletter please see section 4 below.

On becoming a BID member, providing and provide you with the benefits of being a BID member.

(a) Identity Data;

(b) Contact Data;

(c) Financial Data.

Performance of a contract with you.

To administer and protect our business and our website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data).

(a) Identity Data;

(b) Contact Data;

(c) Technical Data.

(a) Necessary for our legitimate interests (for running our business, provision of administration and IT services, network security, to prevent fraud and in the context of a business reorganisation or group restructuring exercise)

(b) Necessary to comply with a legal obligation

To use data analytics to improve our website, customer relationships and experiences.

(a) Technical Data.

Necessary for our legitimate interests (to keep our website updated and relevant, to develop our business and to inform our marketing strategy).

You warrant that any information you supply to us is accurate and up to date, that you will inform us if any such information requires updating, and that if you submit a third party’s details to us you have that third party’s permission to do so.If we require your information for the purposes of performing a contract with you and you fail to provide this information, or if the information you provide is not accurate, we may not be able to perform the contract we have or are trying to enter into with you.

We will not sell any of your personal data to any third party.

3. Third Parties

We may share personal data about you:

a)         with third parties who are directly involved in dealing with any request or enquiry made by you for example, the local authority.

b)         where such disclosure is required by law;

c)         with third parties who are providing us with professional advice;

d)         where the disclosure is in connection with any criminal investigation, legal proceedings or prospective legal proceedings where permitted by law;

e)         where the disclosure is in order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk);

f)          where we are required to enforce our terms of use; or

g)         where we have stated or informed you otherwise (e.g. in this policy or on our website);

h)         data may be held on third parties portals which may be used for business purposes and administration.

We will not pass on your personal data to any third party for the purpose of marketing unless we have obtained your consent to do so.     

We may also disclose your personal data to third parties in the event that we sell or buy any business or assets (in which case we may disclose your personal data to the prospective seller or buyer of such business or assets) or if we, or substantially all of our assets are acquired by a third party, in which case personal data held by us about our customers and subscribers will be one of the transferred assets.

4. How do you stop marketing information being sent to you?

If you are receiving our newsletter or any other general written information you can ask us to stop sending our newsletter at any time by emailing us at or or clicking on the appropriate link in the footer of any of our marketing emails.  It may take up to 15 working days to remove you from our marketing lists.

5. Security and International Transfers

We will take all reasonable steps to protect your personal data.  However, the Internet is global and no data transmitted via the Internet can be guaranteed by us to be completely secure during transmission.  We cannot guarantee the security of any data that you disclose online and we will not be responsible for any breach of security unless this is due to our negligence or wilful default.  It is possible that the information you provide to us will be temporarily transferred outside of the United Kingdom as it passes between you and us.

Your personal data may be transferred to third parties located outside the UK/EEA (European Economic Area) who process your personal data on our behalf (for example, if you have requested to receive our newsletter, your information will be held with MailChimp, which is based in the US).  Whenever we transfer your personal data out of the UK/EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

(a)          The transfer is to a third party located in a country that has been deemed to provide an adequate level of protection for personal data by the United Kingdom and or European Commission.  

(b)          The transfer is subject to use of a contract approved by the United Kingdom’s Data Protection supervisory body, the ICO and aligned with the Data Protection Act 2018 and UK GDPR, which gives personal data the same protection it has in Europe.  

(c)           The transfer is to a third party based outside of the UK/EEA, where there is no adequacy agreement in place, requires IDTAs or BCRs (International Data Transfer Agreement / Binding Corporate Rules) which provides similar protection to personal data shared between the UK and the EEA.

6. Your Rights

If you are receiving our newsletter, you can ask us to stop sending our newsletter or any other general written information at any time.  Please see section 4 above for further information on how to do this.

You have a legal right to see a copy of the personal data that we keep about you, subject to certain exemptions.  Requests for such information should be made by email to or

In some circumstances you may also have a right to:

a)         rectify or erase any personal data we hold about you;

b)         restrict our processing of your personal data;

c)         object to us processing your personal data;

d)         data portability in respect of your personal data.

In accordance with applicable data protection legislation, we follow security procedures when we process your personal data.  We may therefore request proof of your identity before disclosing certain information to you or acting on any requests pursuant to this section 6.

Please contact us at the above address if you have any reason to believe that information we hold about you is inaccurate.

7.  How long do we retain your personal data?

We only retain your personal data for as long as we need it for the purpose for which is was collected.  Whilst taking in to consideration our legal obligations, we will on an ongoing basis: review the length of time we retain your personal data; consider the purpose or purposes for which we hold your personal data for in deciding whether (and for how long) to retain it; securely delete your personal data if it is no longer needed for such purpose or purposes; and update, archive or securely delete your personal data if it goes out of date.  Please contact us at or for further information. 

8. Cookies

Our website uses “cookies” to ensure you receive the best possible visitor experience.  Cookies are small files which are sent by a web server to an individual’s computer which are then stored on that computer’s hard drive.  A cookie contains text, and is like an identification card which can only be translated by the server it originated from.

Cookies cannot tell us information such as your email address, which we can only collect where you tell us, for example if you submit an enquiry to us.

Our website uses the following cookies for the following purposes:

Cookie Name

Cookie Description

Google Analytics

These cookies are used to collect information about how visitors use our website. We use the information to compile reports and to help us improve the website. The cookies collect information in an anonymous form, including the number of visitors to the website, where visitors have come to the website from and the pages they visited.  Read Google's overview of privacy and safeguarding data

Most internet browsers allow you to prevent cookies being stored on your computer.  Alternatively you may be able to configure your browser to accept all cookies or to notify you when a cookie is offered by our server.  You may also be able to delete all cookies currently stored on your web browser.

Therefore unless you change your browser settings you will automatically accept cookies from our website.

We may also collect information about where you are on the Internet (e.g. the URL you came from, IP address, and domain types like and .com), your browser type, the country where your computer is located, the pages of our website that were viewed during your visit and any search terms that you entered on our website.  We will use this information to administer our website, for internal operations (including troubleshooting, data analysis, testing, research, statistical and survey purposes) and as part of our efforts to keep our website safe and secure.

For further information about cookies and how they are used, please visit

9. What about third party websites that you can access via our website?

Our website contains links to other websites which are outside our control and are not covered by this Privacy and Cookies Policy.  If you access other websites using the links provided, the operators of those websites may collect personal data from you which will be used in accordance with their respective privacy policies which you should read.  We are not liable for the practices of such third party website operators in respect of your personal data.

You acknowledge that any information that you post using our social media facilities will be viewable by anybody who visits those websites and that such information is also subject to the relevant provider’s privacy policy.  You are advised to consult each such privacy policy to see how they will use your data.