​

Privacy Policy

Be/HereMCR CIC

Last updated: January 2026

​

Be/Here (“we”, “us”, “our”) is committed to protecting your privacy and handling your personal data with care, respect, and transparency. We understand that privacy is especially important when accessing mental health support, and we take our responsibilities seriously.

This Privacy Policy explains how we collect, use, store, and protect your personal data in line with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

Be/Here is a queer-affirming mental health service providing person-centred therapy, free mental health skills workshops, support groups, training, and community events.

Data Controller:
Be/Here CIC
Greater Manchester, UK

Contact:
Email: info@beheremcr
Website: www.beheremcr.co.uk

If you have any questions about this policy or how your data is used, you can contact us using the details above.

2. What Personal Data We Collect

We may collect and process the following types of personal data:

a) General Information

• Name

• Email address

• Phone number

• Pronouns (where provided)

• Contact preferences

b) Service-Related Information

• Therapy or workshop bookings

• Attendance records

• Communications with us (email, forms, messages)

c) Special Category Data (Sensitive Data)

When you access therapy or certain support services, we may collect special category data, including:

• Mental health information

• Gender identity or sexual orientation (only where voluntarily disclosed)

• Relevant personal circumstances shared for therapeutic or support purposes

We only collect this information where it is necessary and with appropriate safeguards in place.

3. How We Collect Your Data

We collect personal data when you:

• Complete a form on our website

• Book therapy sessions, workshops, or events

• Contact us by email or social media

• Sign up to newsletters or updates

• Engage with our services in person or online

4. Lawful Bases for Processing

Under UK GDPR, we must have a lawful reason to process your data. These include:

• Consent – where you have clearly agreed

• Contract – to provide therapy or booked services

• Legal obligation – where required by law

• Vital interests – to protect someone’s life

• Legitimate interests – to run Be/Here effectively, safely, and ethically

For special category data, we rely on:

• Explicit consent

• Provision of health or social care support

• Safeguarding and risk management obligations

5. How We Use Your Data

We use your data to:

• Provide therapy, workshops, and support services

• Manage bookings and attendance

• Communicate with you about services or changes

• Improve our services and community support

• Meet safeguarding, insurance, and legal requirements

We do not sell your data or use it for intrusive marketing.

6. Confidentiality & Therapy Data

Therapy and support information is treated as strictly confidential.

We will only share information without your consent where:

• There is a serious risk of harm to you or others

• We are legally required to do so

• Safeguarding concerns apply

Any disclosures are kept to the minimum necessary.

7. Data Sharing

We may share limited data with:

• Trusted professionals (e.g. supervisors, only anonymised where possible)

• Service providers who help us operate (e.g. booking systems, email platforms)

• Regulators or authorities if legally required

All third parties are required to comply with UK GDPR.

8. How We Store & Protect Your Data

We take appropriate technical and organisational measures to protect your data, including:

• Secure password-protected systems

• Encrypted digital storage where possible

• Limited access on a need-to-know basis

Paper records (where used) are stored securely.

9. How Long We Keep Your Data

We only keep personal data for as long as necessary:

• Therapy records: retained in line with professional and insurance requirements

• General enquiries: usually deleted after 12 months

• Marketing consent: until you withdraw consent

You can ask for more detail on retention at any time.

10. Your Rights

Under UK GDPR, you have the right to:

• Access your personal data

• Request correction of inaccurate data

• Request deletion (where applicable)

• Restrict or object to processing

• Withdraw consent at any time

• Lodge a complaint with the Information Commissioner’s Office (ICO)

ICO website: www.ico.org.uk

11. Cookies & Website Analytics

Our website may use essential cookies and basic analytics to understand how visitors use our site.

You can manage or disable cookies through your browser settings.

12. Children & Young People

Our services are primarily designed for adults. Where services are offered to under-18s, additional consent and safeguarding measures apply.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on our website with an updated date.

14. Contact Us

If you have any questions, concerns, or requests regarding your data, please contact:

Be/Here CIC
Email: info@beheremcr.co.uk

​