1. Introduction

We are The Open Party, a UK registered political party whose objective is to improve governance of the UK through participation and improvement of the democratic process.

We are committed to placing the rights of individuals at the centre of how we collect, hold, and use personal data.

In our privacy notice, you will find on our website we refer to ourselves as The Open Party, we, us, our, or the Party, so when you see these, you know it is The Open Party that we are referring to.

The Open Party is registered with the Information Commissioner’s Office (ICO) for data protection purposes (registration number ZC012785). For all uses of personal data you read about in our privacy notice, we are the data controller.

Please read the privacy notice, as it provides important information about how we handle your personal data and your rights. If you have any questions about any aspect of any privacy notice, you can contact us by emailing us at [email protected]

For more information, visit our website at openparty.uk

2. Categories of Person

This notice is divided into the relevant category of persons we engage with. Please review the section(s) that apply to you.

a. All users of our website
b. Donors (additional specific information)
c. Supporters and Fellows (additional specific information)

2a. All users of our website

 

What is personal data?

Personal data refers to any information that can identify or relate to an individual. This may include details like your name, contact information, email address, or unique technical data, as well as other information that, when combined, could identify you.

Under UK data protection laws, certain types of personal data are classified as special category data, which require enhanced safeguards. These include racial or ethnic origins, sexual orientation, religious or philosophical beliefs, trade union membership, political beliefs, genetic or biometric data, health, and criminal records.

As a political organisation, The Open Party handles data related to individuals’ political beliefs. The UK Data Protection Act 2018 (Section 8) acknowledges a substantial public interest in political parties processing political belief data to support democratic engagement activities.

What personal data do we collect?

Below is a list of personal data we collect:

• First name, middle name (where applicable) last name
• Home address and postcode
• Email address,
• Telephone number(s)
• Communication preferences
• Copies of documents that identify you to us (e.g. passport, driving license, utility bills, etc)
• Any political expressions of view that are shared with us intentionally for wider publication, such as articles or contributions to our Video Wall.

Below is a list of data that you may suspect we collect, that we do not:

• Any political expressions of view (beyond those identified above)
• Readily identifiable records of voting (These records are only maintained with restricted user access for the purpose of investigating any suspected voter fraud)

 

Where do we get your personal data?

We may collect personal data in a variety of ways and at a variety of times throughout our interactions with you. We refer to “direct data collection” when data is collected directly from you and we refer to “indirect data collection” when the data is not collected directly from you. Here is the list of ways we may collect your personal data from you:

• From yourself when you register an account
• From yourself via email, telephone or face to face communications we have with you (direct data collection);
• From Open Party members, fellows or members of staff who are updating your personal data in our IT systems used to manage our supporters (indirect data collection);
• If required, from an organisation we contract to conduct any due diligence checks (indirect data collection); and
• In unusual circumstances; if applicable, from Police, Law Enforcement Agencies, Healthcare Services including the NHS, Adult Services, Children Services, Local Authority Designated Officers (LADO), charities, charitable organisations or agencies or any other safeguarding related institutions or organisation(s) (indirect data collection).

 

What do we use your personal data for?

We may use your personal data for the following purposes:

• To verify your identity
• To establish your entitlement to take part in our primary votes
• To secure your identity on our voting platform
• To enable you to use the functional aspects of our website: rating questions, contacting us, submitting questions, voting

 

2b. Donors (in addition to that shown in Section 2a)

 

What additional personal data do we collect?

Depending on the size and nature of your donation:

• Home address and postcode (required for donations over £500)
• Payment information (processed by third‑party providers; we do not store full card details)
• Donation amounts and history
• Eligibility information required by electoral law
• Identity documents where required
• Correspondence relating to your donation

 

What are possible additional sources of data?

• Payment processors
• Due diligence or anti‑fraud service providers
• Publicly available registers (e.g., Electoral Register)

 

 What additional purposes do we have for your data?

• Processing and recording donations
• Complying with legal obligations under PPERA
• Conducting due‑diligence checks
• Communicating with you about your donation

 

 Publication of donations

Where required by law, donations above statutory thresholds will be reported to the Electoral Commission and published on their public register.

2c. Supporters and Fellows (in addition to that shown in Section 2a above)

 

What additional personal data do we collect?

• Information provided during events, consultations, or activities
• Records of engagement (e.g., attendance, volunteering)
• Optional demographic information
• Political views intentionally shared for engagement or publication

 

 What additional purposes do we have for your data?

• Managing your supporter or fellow relationship
• Sending updates, newsletters, and invitations
• Facilitating participation in Open Party activities
• Understanding engagement and improving outreach

3. General Information

The following general information applies to all users of our website.

What is our lawful basis for using your data?

The lawful basis for us holding the personal information is either:

• The execution of the purposes above that you are engaging in with us, and or
• The express content you have given us to hold the data.

 

Will we share your data outside of the UK?

It is highly unlikely that The Open Party will share your personal data outside the United Kingdom or the European Union. Should it become necessary, we will only share your data with organizations in countries that meet one of the following criteria:

• The UK or European Commission has deemed the country adequate, meaning it has data protection laws comparable to those in the UK. The UK and EU are considered adequate for each other.
• The transfer is governed by an International Data Transfer Agreement (IDTA) or European Commission Standard Contractual Clauses (SCCs) with a UK-specific addendum. These are legal contracts that obligate the receiving organization to protect your personal data to UK standards.
• The transfer involves a supplier sharing data with their own offices outside the UK and EU, provided they have implemented Binding Corporate Rules. These rules, approved by data protection authorities, ensure data is only shared within the supplier’s verified network of offices and contracted partners.

All suppliers processing personal data on our behalf are required to sign a Data Processing Agreement with The Open Party, regardless of where the data is transferred.

Will we sell your personal information, or otherwise disclose your data to a third party?

We will never sell your personal data to any third party.

We will only ever disclose your personal data to a third party as is necessary for the purposes of our normal activities as a political party as disclosed in this document and on our other publications and website.  This may include but not be limited to:

• Government agencies (e.g. Electoral Commission for the purposes of compliance with electoral law, Police for fraud investigations)
• Third parties we use to execute our activities (e.g. ID verification companies, financial processors)

 

How does Open Party protect your personal data?

The Open Party employs robust technical, organizational, and contractual safeguards to protect the personal data we hold about you. These measures are designed to prevent unauthorized access, use, alteration, or destruction of your data. We continuously review these safeguards to ensure they remain effective and appropriate.

Contact

If you believe that your personal data, or that of another individual, has been unlawfully disclosed or shared, potentially constituting a data incident, please report this to our Data Protection Officer via [email protected]

Data Breaches

Only the Data Protection Officer or a senior member of The Open Party can determine whether a data incident qualifies as a personal data breach. In such cases, The Open Party will take immediate and necessary actions to mitigate any impact on you or others whose data may have been affected.

When a data incident is reported, particularly if it is classified as a personal data breach, we are legally required to process your personal data for purposes such as investigation, analysis, documentation, monitoring, reporting, and implementing remedial measures.

The lawful bases for this processing are UK GDPR Article 6.1(c) and Article 9.2(g), in compliance with obligations under the Data Protection Act 2018 to address data incidents and breaches appropriately. When special category personal data is involved, its use is justified for reasons of substantial public interest, including preventing or detecting unlawful acts, protecting the public, and meeting regulatory and legal obligations.