Privacy Policy

Last Updated: 24 February 2026

1. Our Commitment to Your Privacy

PipeAlign™ ("we", "us", "our") is committed to protecting and respecting your privacy. PipeAlign is a trading name of LearningCues Media Ltd. This policy explains what personal data we collect, how we use it, and how we use it, and how we secure it when you use our website (PipeAlign.co.uk) and our strategic intelligence services ("Services"), in compliance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Data (Use and Access) Act 2025.

2. Who We Are (The Data Controller)

For the purpose of UK data protection law, the data controller is:

  • Company Name: LearningCues Media Ltd
  • Registered Office: 20-22 Wenlock Road, London, England, N1 7GU
  • Company Registration Number: 08187834 (Registered in England and Wales)
  • ICO Data Protection Registration Number: Z3315579

For any data protection queries, please use the form on our Secure Channel page.

3. What Personal Data We Collect

We collect different types of data depending on how you interact with our Site and Services.

3.a) When you become a Client and order a Report (via the Briefings page):

  • Identity & Contact Data: Your name, email address, job title, and the name of the charity you represent.
  • Strategic Input Data: Information regarding your charity’s mission, strategy documents, or specific industry parameters you provide for analysis.
  • Transaction Data: Details of the Report you've ordered. Your payment details are securely handled by our third-party payment processors (e.g., Squarespace Payments). PipeAlign does not store your full credit card or bank details.

3.b) When you visit our website:

Website Usage Data: We use a minimal number of cookies for the security and functionality of our Site. For more detailed information, please see our full Cookie Policy.

3.c) When you contact us via our Secure Channel:

We collect your name, email address, charity name, and the contents of your message to respond to your specific enquiry.

4. How and Why We Use Your Data (Our Lawful Basis)

We only use your personal data when the law allows us to. We process your data based on the following legal grounds:

4.a) To Fulfil Our Contract with You (Performance of Contract):

Our primary lawful basis for processing client data is the performance of a contract. We use your data to:

  • Process your order and manage payments.
  • Generate your bespoke Strategic Intelligence Report.
  • Deliver the final dossier via secure transfer.

4.b) To Provide Human Oversight (Performance of Contract):

To deliver the "Human-in-the-Loop" standard promised in our Terms of Service, authorized PipeAlign personnel or vetted contractors must access and review your input data (e.g., Mission Statement) and the generated output. This manual processing is required to ensure strategic relevance and compliance with our oversight standards.

4.c) For Our Legitimate Interests (Communication & Improvement):

  • General Enquiries: When you contact us, we have a legitimate interest in responding to your enquiry.
  • Intel Beacons: We analyse email engagement metrics to improve the relevance of our strategic communications.

5. Data Sharing and Confidentiality

Your privacy and the strategic advantage our Service offers are of utmost importance. We do not sell your personal data. We share essential data only with key third-party service providers acting as data processors:

  • Squarespace: Our website hosting and payment platform.
  • TransferNow: Our secure file transfer partner, used to deliver your Report.
  • Google Workspace: For secure email communications and cloud storage.
  • Apollo.io: Our outbound engagement platform.
  • Vetted Intelligence Analysts: Strictly under NDA, vetted contractors may assist in the human oversight process.

6. International Data Transfers

Our operations are based in the UK. Where we use a service provider that processes data outside the UK (e.g., in the US), we ensure appropriate safeguards are in place, such as the UK Extension to the EU-U.S. Data Privacy Framework or the UK's International Data Transfer Agreement (IDTA). International data transfers via Google Workspace, Squarespace, Apollo.io, and TransferNow operate strictly under the UK Extension to the EU-U.S. Data Privacy Framework or the UK IDTA.

7. Data Security

We take the security of your data very seriously. We have implemented appropriate technical and organisational security measures to protect the personal data we hold from unauthorised access, unlawful processing, accidental loss, destruction, or damage.

8. Automated Decision-Making

Exemption from Article 22 (UK GDPR): While our Services utilise AI architectures to process data, we do not engage in "solely automated decision-making" that produces legal effects concerning you. All strategic reports and intelligence outputs are subject to the Human-in-the-Loop oversight process described in Clause 4.b, ensuring human intervention in the final deliverable.

9. Data Retention

We will only retain your personal data for as long as is necessary to fulfil the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

Data Protection Complaints (DUAA Alignment)

In line with the Data (Use and Access) Act 2025 (DUAA), PipeAlign maintains an accessible, formal process for handling data protection complaints. If you wish to exercise your rights or lodge a complaint regarding our data handling, the most direct method is via our Secure Channel.

  • Acknowledgement Rule (30-Day Mandate): We will formally acknowledge any data protection complaint within 30 days of receipt, in strict adherence to the Data (Use and Access) Act 2025 timelines, operating in advance of the mandatory June 2026 deadline.
  • Right to Escalate: You also have the right to lodge a complaint directly with the UK's supervisory authority, the Information Commissioner's Office (ICO), at https://ico.org.uk/.

10. Your Data Protection Rights

Under UK data protection law, you have rights including the right to access, rectification, erasure, restriction, and objection to processing. Please contact us via the Secure Channel to exercise these rights.

11. Changes to This Privacy Policy

We may update this policy from time to time to reflect evolving regulatory requirements. The "Last Updated" date at the top of this page will indicate the latest version.