Our Privacy Policy

This policy explains how and why we use per­son­al information. 

About us

We are PEDAL Portobello, a com­pany registered in Scotland (Company No. 353537) with its registered office at 13 Coillesdene Crescent, Joppa, Edinburgh EH15 2JH. We are lis­ted on the Information Commissioner’s register of data con­trol­lers under number:

What inform­a­tion we collect

If you com­mu­nic­ate with us, or do busi­ness with us, this will res­ult in us col­lect­ing per­son­al data about you (for example, we col­lect the name, address, email and tele­phone num­ber of members).

We also col­lect inform­a­tion provided if you fill in a mem­ber­ship form and pay the sub­scrip­tion, com­plete a sur­vey, etc. We do not col­lect sens­it­ive per­son­al data. 

Third party sources. We some­times col­lect addi­tion­al inform­a­tion about actu­al or pro­spect­ive cus­tom­ers from third party sources. Most of the time this won’t be per­son­al data (for example, we might obtain inform­a­tion about a company’s busi­ness, though on occa­sion we may receive per­son­al data (such as a person’s work email or tele­phone num­ber, or details of their role with­in a business).

How we use your information

We only ever use your per­son­al data with your con­sent, or to the extent neces­sary to:

  • Contact you to noti­fy you of any organ­isa­tion­al changes, AGMs, events or meetings;
  • com­ply with a leg­al duty;
  • remem­ber your pref­er­ences e.g. if you ask not to receive mar­ket­ing mater­i­al, we will keep a record of this, or
  • for our own law­ful interests (provided your rights don’t over­ride these).

We will only use your inform­a­tion for the pur­pose it was col­lec­ted (or for similar/related purposes)

We will nev­er sell your per­son­al data or share it with third parties who might use it for their own purposes.


We use per­son­al inform­a­tion (such as email addresses) only to assist in mar­ket­ing and pro­mot­ing our events/meetings and workshops.

You can choose to ‘opt out’ of PEDAL’s com­mu­nic­a­tions by noti­fy­ing us in writ­ing or by email. If you wish to change or update your con­tact details or con­tact pref­er­ences  please let us know.

Information for email recipients

This policy primar­ily cov­ers how we use data relat­ing to our mem­bers, pro­spect­ive mem­bers, web­site vis­it­ors and people who inter­act with us. In these cases we will be the “data con­trol­ler” for the pur­poses of data pro­tec­tion law.

If you have received an email from a PEDAL mem­ber using our ser­vice, we will have acted as a data pro­cessor in respect of your inform­a­tion. This means we have no con­trol of your per­son­al inform­a­tion and the mem­ber is simply using our ser­vice to send emails.

In these situ­ations you should con­tact the PEDAL board to determ­ine details of the mem­ber who sent the email and for details of how and why your per­son­al inform­a­tion was used, or if you wish to exer­cise your rights as an indi­vidu­al in rela­tion to your per­son­al data.

We will only hold inform­a­tion about our mem­bers for the dur­a­tion of their mem­ber­ship with us, after which all data will be removed. We may store logs of addresses we have sent emails to for up to 12 months after that point for the pur­poses of com­pli­ance and sys­tem monitoring.


If you have a received an email or oth­er com­mu­nic­a­tion sent by PEDAL or one of our mem­bers that you believe is spam or in viol­a­tion of our accept­able use policies, please con­tact us immediately. 


We employ a vari­ety of organ­iz­a­tion­al meas­ures to keep per­son­al data safe and to pre­vent unau­thor­ized access to, or use or dis­clos­ure of it.

Data Retention

We remove most inform­a­tion provided to us by mem­bers as soon as they noti­fy us that they no longer wish to remain mem­bers of PEDAL, emails will be retained for up to 12 months after receipt for pur­poses of hand­ling abuse com­plaints and com­pli­ance monitoring.

We will con­tin­ue to store lim­ited inform­a­tion about any mem­ber (includ­ing trans­ac­tion records) for up to 6 years for record keep­ing and admin­is­trat­ive pur­poses. If we con­sider there is a need to store records for longer (for example,it there has been a dis­pute or claim) then we will retain the data for as long as is necessary.

Your rights

We want to ensure you remain in con­trol of your per­son­al data. Part of this is mak­ing sure you under­stand your leg­al rights, which (for indi­vidu­als) are as follows:
• the right to con­firm­a­tion as to wheth­er or not we have your per­son­al data and, if we do, to obtain a copy of it (this is known as a sub­ject access request);
• the right to have inac­cur­ate data rec­ti­fied; and
• the right to object to your data being used for mar­ket­ing or profiling.

Please keep in mind that there are excep­tions to the rights above and, though we will always try to respond to your sat­is­fac­tion, there may be situ­ations where we are unable to do so. If you are not happy with our response, or you believe that your data pro­tec­tion or pri­vacy rights have been infringed, you should con­tact the UK Information Commissioner’s Office, which over­sees data pro­tec­tion com­pli­ance in the UK. Details of how to do this can be found at www.ico.org.uk.

Links to oth­er websites

Our web­site may con­tain links to oth­er web­sites. We do not con­trol those oth­er sites and we can­not be respons­ible for the con­tent of those sites or for the pro­tec­tion of any inform­a­tion you provide to oth­er sites (which are not gov­erned by this pri­vacy policy). We accept no respons­ib­il­ity or liab­il­ity for such oth­er web­sites. You should exer­cise cau­tion when enter­ing per­son­al inform­a­tion online and look at the pri­vacy state­ment applic­able to the web­site in question.


Last mod­i­fied: 16/03/2018