Privacy Policy

Last Updated: 16 September 2025

1. Our Commitment to Your Privacy

PipeAlignᵀᴹ ("we", "us", "our") is committed to protecting and respecting your privacy. PipeAlign is a trading name of LearningCues Media Ltd. This policy explains how we collect, use, and safeguard the personal data you provide to us when you use our website (PipeAlign.co.uk) and our strategic intelligence services ("Service"), in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Who We Are (The Data Controller)

For the purpose of UK data protection law, the data controller is:

  • Company Name: LearningCues Media Ltd

  • Registered Office: 20-22 Wenlock Road, London, England, N1 7GU

  • Company Registration Number: 08187834 (Registered in England and Wales)

  • ICO Data Protection Registration Number: Z3315579

For any data protection queries, please contact our Support Team.

3. What Personal Data We Collect

We collect the following types of personal data to provide you with our Service:

  • Contact Information: Your name, email address, job title, and the name of the charity you represent. This is collected when you respond to our outreach or place an order.

  • Order Information: Details of The PipeAlign Sector Reportᵀᴹ you have ordered, including the specific industry sector you select for analysis.

  • Communication Data: Records of our correspondence with you regarding the Service.

  • Payment Information: Details required to process your payment, which are securely handled by Squarespace's integrated payment platform. Our third-party payment processors will securely handle your payment details. PipeAlign does not store your full credit card or bank details.

  • Website Usage Data: We use strictly necessary cookies for the security and functionality of our private client site. We will ask for your explicit consent for any non-essential analytical cookies.

4. How and Why We Use Your Data (Our Lawful Basis)

We only use your personal data when permitted by law. Our primary lawful basis for processing your data is the performance of a contract. This means we use your data to:

  • Process your order for a Sector Report.

  • Generate and deliver your bespoke report to you via email.

  • Communicate with you about your order and our Service.

  • Manage your secure access to our private client website.

We are committed to the principle of purpose limitation; your data will only be used for the specified, explicit, and legitimate purposes for which it was collected.

5. Data Sharing and Confidentiality

Your privacy and the strategic advantage our Service offers are of utmost importance. We do not sell your personal data. To deliver our Service, we share essential data with key third-party service providers who act as data processors on our behalf.

  • Squarespace: Our website hosting and payment platform.

  • TransferNow: Our secure file transfer partner, used to facilitate the secure delivery of your report.

  • Google: We use Google Workspace for our core email communications and secure cloud storage for our operational documents and client reports.

  • Apollo.io: Our outbound engagement platform, used to manage client outreach communications in line with our invite-only programme. The data shared is limited to your name, job title, and the name and email address of the charity you represent. Apollo.io is certified under the UK Extension to the EU-U.S. Data Privacy Framework, ensuring any data transfers comply with UK GDPR.

Your status as a client of PipeAlign is regarded as confidential and will not be disclosed, in keeping with the private nature of our invite-only programme. We will not share your data with any other third parties without your explicit consent, unless required to do so by law.

6. International Data Transfers

Our operations are based in the UK. If we use a service provider that processes data outside the UK, we will ensure that appropriate safeguards are in place to protect your data in line with UK GDPR requirements. This typically involves using the UK's International Data Transfer Agreement (IDTA) or the UK Addendum to ensure the protection of your rights.

7. Data Security

We take the security of your data very seriously. We have implemented appropriate technical and organisational security measures to protect the personal data we hold from unauthorised access, unlawful processing, accidental loss, destruction, or damage. This includes using a secure, password-protected website and secure data handling procedures.

8. Data Retention

We will only retain your personal data for as long as is necessary to fulfil the purposes for which it was collected. This includes satisfying any legal, accounting, or reporting requirements. Once your data is no longer required, it will be securely deleted.

8A. The Data (Use and Access) Act 2025
The Data (Use and Access) Act 2025 (DUAA) received Royal Assent on 19 June 2025. This new legislation introduces amendments to the UK GDPR and the Data Protection Act 2018. The Information Commissioner's Office (ICO) is in the process of reviewing its guidance as a result of the Act. We are actively monitoring these developments to ensure our policies and procedures remain fully compliant and are committed to updating our practices in line with new legal requirements as guidance is released. The first provisions of the Act came into force on 19 and 20 August 2025, with other changes being phased in between now and June 2026.

This addition demonstrates that you're aware of the latest data protection reforms and are proactively planning for them. It's a key part of showing your legal partner that your business is serious about compliance.

9. Your Data Protection Rights

Under UK data protection law, you have several rights concerning your personal data:

  • The right to be informed: This Privacy Policy provides you with this information.

  • The right of access: You can request a copy of the personal data we hold about you.

  • The right to rectification: You can ask us to correct any inaccurate or incomplete data.

  • The right to erasure: You can request that we delete your personal data where there is no compelling reason for its continued processing.

  • The right to restrict processing: You can ask us to suspend the processing of your personal data in certain circumstances.

  • The right to data portability: You have the right to request that we transfer your personal data to another service provider in a machine-readable format.

  • The right to object: You can object to us processing your personal data.

To exercise any of these rights, please get in touch with our Support Team. You also have the right to lodge a complaint with the UK's supervisory authority, the Information Commissioner's Office (ICO), if you have concerns about how we are handling your data. You can find more information on the ICO website: https://ico.org.uk/.

10. Cookies

Our website uses cookies. A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer.

  • Strictly Necessary Cookies: These are required for the operation of our website, such as enabling you to log into our secure private client site.

  • Analytical/Performance Cookies: These allow us to recognise and count the number of visitors and see how visitors move around our website. We will only use these non-essential cookies with your explicit consent.

For more detailed information on the specific cookies we use and how you can manage your preferences, please see our full Cookie Policy.

11. Changes to This Privacy Policy

We may update this policy from time to time. The "Last Updated" date at the top of this page will indicate the latest version. We recommend you review this page periodically to stay informed about how we are protecting your data.