This consultation website is operated on behalf of:

Shaftesbury AV Limited and Shaftesbury Soho Limited (the Data Controllers)

Shaftesbury AV Limited and Shaftesbury Soho Limited are responsible for deciding how and why personal data submitted through this website is used.

Concilio Communications Limited manages the technical operation of this website on behalf of Shaftesbury AV Limited and Shaftesbury Soho Limited.

This Privacy Notice (together with the Cookie Policy) explains how personal data is collected and used through carnabysohoconsultation.co.uk as part of the public consultation process relating to proposals in the Carnaby and Soho area.

The website allows members of the public and stakeholders to review project information and provide feedback as part of the consultation process.

We may collect the following types of personal data when you interact with this website. 

Contact information 

If you submit a consultation form, we may collect: 

• your name
  
• organisation (if provided)
  
• email address
  
• postcode 

Consultation responses 

If you provide feedback on the proposals, we may collect: 

• comments
  
• survey responses
  
• opinions about consultation materials 

This information helps inform the consultation process. 

Technical information 

We also collect limited technical information automatically when you visit the website, such as: 

• IP address
  
• browser type
  
• device information 

This helps ensure the website works correctly and remains secure. 

Personal data submitted through this website may be used to: 

• manage consultation responses
  
• understand community feedback
  
• help inform planning proposals
  
• respond to enquiries submitted through the website
  
• maintain the security and performance of the website
  
• send consultation updates where you have chosen to receive them 

Consultation responses are normally reviewed in summary or anonymised form wherever possible. 

Automated decisions 

Personal data submitted through this website is not used for automated decision-making or profiling. Consultation responses are reviewed by the project team as part of the consultation process and are not subject to automated processing for decision-making purposes. 

Under the UK General Data Protection Regulation (UK GDPR), personal data collected through this consultation website is processed on the following legal bases. 

Legitimate interests 

To carry out public consultation activity and review feedback relating to planning proposals. 

Consent 

Where you choose to receive consultation updates or communications. 

Processing through this website does not take place on the basis of contractual necessity. 

Legal obligations 

Where consultation responses must be retained to demonstrate that consultation has been carried out in accordance with planning requirements. 

Personal data may be shared with: 

• Concilio Communications Limited (as the technical provider managing this website on behalf of Shaftesbury AV Limited and Shaftesbury Soho Limited)
  
• Supporting ROLE, as the hosting and infrastructure provider supporting the operation of this consultation website
  
• professional advisers supporting the consultation process
  
• local planning authorities where required as part of consultation reporting
  
• Shaftesbury Capital group companies, where necessary for the management and development of relevant estates and projects
  
• regulatory or enforcement bodies where disclosure is required by law or regulation
  
• prospective buyers or investors in the event of a sale, restructuring or transfer of any relevant part of Shaftesbury Capital’s business 

Personal data is not sold to third parties.

Consultation responses may be retained for the duration of the consultation and planning process and for an appropriate period afterwards where required to demonstrate compliance with planning requirements. 

Contact details provided for consultation updates are retained until you withdraw your consent. 

Technical security information is retained only as long as necessary to maintain the safe operation of the website. 

We do not transfer your personal data outside the UK. However, some technical service providers supporting this website (such as analytics providers) may process limited technical data outside the United Kingdom. 

Where this happens, appropriate safeguards such as International Data Transfer Agreements (IDTAs) or Standard Contractual Clauses (SCCs) are used to protect personal data. 

Personal data submitted through this consultation website is stored and processed within the United Kingdom. In limited circumstances, certain technical service providers supporting the operation and security of the website may process restricted categories of technical data outside the United Kingdom. 

Where this occurs, appropriate safeguards are applied in accordance with UK data protection legislation to ensure that personal data continues to be protected to an equivalent standard. 

This website uses cookies and similar technologies to support website functionality and understand how visitors use the consultation platform. 

Further information is available in our Cookie Policy.

Under the UK GDPR, you have the right to: 

• request access to your personal data
  
• request correction of inaccurate personal data
  
• request deletion of your personal data
  
• restrict how your data is used
  
• object to processing based on legitimate interests
  
• withdraw consent where processing is based on consent 

Please contact us using the contact information below if you wish to discuss or exercise any of your rights described above. 

If you have questions about how your personal data is used through this consultation website, you can contact the Data Controller: 

Shaftesbury AV Limited and Shaftesbury Soho Limited (Data Controllers) 

Concilio Communications Limited manages the technical operation of this website on behalf of the Data Controllers and can assist with enquiries relating to the platform: 

Technical Implementation: Concilio Communications Limited, 131 Finsbury Pavement, London, EC2A 1NT 

Technical Contact: admin@conciliocomms.com 

ICO Registration (Concilio Comms Limited): ZA430553 

If you are not satisfied with how your personal data has been handled, you have the right to lodge a complaint with the: 

Information Commissioner’s Office (ICO) 

https://ico.org.uk 

This Privacy Notice may be updated from time to time to reflect legal, technical, or consultation process changes. 

Alternative formats of this notice are available on request. 

Data Controller: means a natural or legal person which determines the means and purposes of processing of personal data.

Data Subject: means an individual whom the personal data is about.

EEA: means the European Economic Area.

GDPR: means the General Data Protection Regulation (EU) 2016/679.  References to the GDPR also include the equivalent regime implemented in the UK by the Data Protection Act 2018.

ICO: the Information Commissioner’s Office regulates the processing of personal data by all organisations within the UK.

Legitimate Interests: this is a ground which can be used by organisations as a lawful basis of processing, for example where personal data is used in ways that could reasonably be expected, or there is a compelling reason for the processing.

Member States: means those countries which are part of the European Union.

Service Providers: these are a range of third parties to whom we outsource certain functions of our business. For example, we have service providers who provide / support IT applications or systems, which means that your personal data will be hosted on their servers, but under our control and direction. We require all our service providers to respect the confidentiality and security of personal data.