We remain open for business and committed to working with you during the COVID-19 pandemic. Please keep an eye on the DRIVA platform and your emails for new support mechanisms. Any enquiries please contact DRIVA Helpdesk at .

Privacy Policy

Privacy notice for businesses, organisations and other external stakeholders in relation to the DRIVA project

The DRIVA project is funded by the European Regional Development Fund with the managing authority being MHCLG. The University of Brighton is the lead partner of the DRIVA project.
As part of the registration to the DRIVA platform, the University of Brighton collects and processes personal data from external parties who register and create a profile at www.drivaartsdriva.com.

The purpose of collecting the data is to enable monitoring for our funder and to enable the DRIVA project team to contact you via MailChimp to tell you about DRIVA events and opportunities. We will also use the information you provide us to match you with like-minded businesses within the DRIVA platform. The data collected will support the ERDF programme research and evaluation activities.

The data collected will not be used for any other purpose than those relating to the DRIVA project.

Data Controller

The Data Controller in respect of enterprise data collected is MHCLG ERDF Managing Authority. The European Regional Development Fund Privacy Notice can be found here.

The Data Controller in respect of collecting data for the DRIVA project and contacting you about relevant DRIVA initiatives is the University of Brighton.

Data Protection Officer

The Data Protection Officer is responsible for advising the university on compliance with data protection legislation and monitoring its performance against it.

If you have any concerns regarding the way in which the university is processing your personal data, please contact

Rachel Page, Head of Data Compliance and Records Management

What information does the DRIVA platform collect?

The DRIVA platform collects a range of information about you. This information will be collected upon registering with the DRIVA platform.

This includes:

  • your name, email address, a contact telephone number and your business address;
  • details about the size of your organisation and your interest in the project

We do not process "special categories" data.

Why do we collect your data?

We use your data so that we can deliver the services you have expressed an interest in via searches within the DRIVA website– this could include:

  • to invite you to an event, workshop, tutorial or conference on a topic you have expressed interested in
  • to send you communications about the DRIVA project at the university
  • to send you information about other DRIVA project members who may be suitable for you to collaborate with
  • to understand what events the DRIVA project could curate to meet the needs of SMEs in the Coast to Capital area
  • to provide monitoring information to ERDF MHCLG

How your data is held?

Your data is held on MailChimp and on the University of Brighton’s servers. MailChimp is certified under EU/US Privacy Shield

Your data is submitted to MHCLG for monitoring purposes.

All data relating to your enquiry is held within the EEA and will not be transferred outside of the EEA.

Who has access to data?

Your information will be shared with DRIVA contracted project partners and other members of the DRIVA community. The university will not share your data with third parties outside of the DRIVA project, including the University of Brighton. Monitoring and Evaluation data will be sent to the Data Controller who are ERDF MHCLG.

How does the university protect data?

The university takes the security of your data seriously. It has internal policies and controls in place to ensure that your data is not lost, accidentally destroyed, misused or disclosed, and is not accessed except by our employees in the proper performance of their duties.

How long we will keep your data?

We will retain your data in accordance with the ERDF retention schedule as stated in their Privacy Notice; MHCLG will not keep your personal data for longer than it needs but as a minimum, will retain data for two years after the closure of the 2014-2020 ERDF programme in line with the European Regional Development Fund document retention guidance to ensure MHCLG meets reporting obligations and to demonstrate compliance with EU Requirements.

Data subject's rights: access, rectification, erasure, restriction of processing, objection to processing, right to data portability

As a data subject, you have a number of rights. You can:

  • access and obtain a copy of your data via a subject access request
  • require the university to change incorrect or incomplete data
  • require the university to delete or stop processing your data, for example where the data is no longer necessary for the purposes of processing
  • object to the processing of your data, in certain circumstances, for example, where the university is relying on its legitimate interests as the legal ground for processing; or for direct marketing purposes
  • ask the university to stop processing data for a period if data is inaccurate or there is a dispute about whether or not your interests override the university's legitimate grounds for processing data
  • withdraw your consent at any time, where we have requested and obtained your consent
  • where our lawful basis is consent or performance of a contract we will allow portability of your data.

If you would like to exercise any of these rights, please contact

Rachel Page, Head of Data Compliance and Records Management

Whether providing personal data is a statutory or contractual requirement and the consequences for failing to provide the data

There is no statutory or contractual requirement to provide your personal data to us, we are processing it under legitimate interest as you have indicated that you are interested to receive information on one of our business services.

The right to complain to the ICO

If you are unsatisfied with the way the university has processed your personal data, or have any questions or concerns about your data please contact dataprotection@brighton.ac.uk.

If we are not able to resolve the issue to your satisfaction, you have the right to apply to the Information Commissioner’s Office (ICO).

Privacy notices

Changes to this notice

We keep our privacy notices under regular review. This privacy notice was last updated in January 2020.

Other privacy notices

We do our utmost to protect your privacy. Please be aware that other privacy notices exist within the university in respect of data held, including but not limited, to activities in relation to your enquiries, application, current students, alumni and use of our website.