Legal & Policies

1 Who We Are

The data controller for your personal information is The Networker Group Ltd, a company registered in England and Wales (Company No: 15252227). Our registered address is Magpas HQ, Barnwell Road, Alconbury Weald, Huntingdon, Cambridgeshire PE28 4YF.

For all data protection enquiries, please contact us at hello@the-networker.co.uk.

2 What Data We Collect

Depending on how you interact with us, we may collect the following categories of personal data:

• Account & identity data: name, username, email address, password (stored hashed)
• Contact data: billing address, phone number (if provided)
• Organiser data: if you list events, we also collect business name, business address, organiser bio, payout details and tax/VAT information
• Booking data: events you book or attend, attendee names you provide at checkout, dietary or accessibility requirements where supplied, and the answers to any questions an organiser asks at booking
• Payment data: all card payments are processed directly by Stripe. We never see, handle or store your full card details. We receive only a transaction reference, the amount, the last four digits of the card and the cardholder country.
• Technical data: IP address, browser type, device identifiers, operating system, referring URL and pages viewed (collected via cookies and server logs)
• Marketing data: your communication preferences and engagement with our emails
• Communications: any correspondence you send us, including support tickets and reviews

We do not knowingly collect personal data from children under 16. If you believe a child has given us personal data, please contact us and we will delete it.

3 How We Use Your Data

We use your personal data to:

• Create and manage your Networker account
• Process ticket purchases and pass booking details to the relevant event organiser
• Pay event organisers their share of ticket revenue (via Stripe Connect)
• Send transactional emails – booking confirmations, e-tickets, event reminders, refund notifications and important account notices (these are not marketing and cannot be opted out of while you have an active booking or account)
• Send personalised event recommendations based on the interests you choose in your profile. You can update your interests, change frequency, or turn recommendations off completely at any time from your account settings or the unsubscribe link in any email.
• Send our newsletter and marketing emails, but only where you have given us specific consent or, for previous customers, on a soft opt-in basis under PECR (you can opt out at any time)
• Improve our platform, debug issues and prevent fraud
• Respond to enquiries and provide customer support
• Comply with our legal, accounting and tax obligations

Automated decision-making: we do not make any decisions that produce legal or similarly significant effects on you using solely automated means. Stripe may run automated fraud checks on payments – you can request a manual review by contacting us.

4 Legal Basis for Processing

We only process your personal data where we have a valid lawful basis under Article 6 of the UK GDPR:

• Contract (Art. 6(1)(b)): processing necessary to provide your account, fulfil your ticket purchase and pass details to the organiser
• Consent (Art. 6(1)(a)): for marketing emails to new subscribers, non-essential cookies and any optional data you provide
• Legitimate interests (Art. 6(1)(f)): to operate, secure and improve our service, prevent fraud, and market similar services to existing customers (PECR soft opt-in). You can object at any time.
• Legal obligation (Art. 6(1)(c)): to keep accounting records (HMRC requires 6 years), respond to lawful requests and meet our regulatory duties

5 Who We Share Data With

We do not sell your personal data. We share it only with the parties below, under written data processing agreements where required:

• Event organisers: when you book a ticket, we share your name, email and any booking-question answers with the organiser of that event so they can run it. The organiser becomes an independent controller of that data and is responsible for their own privacy practices.
• Stripe Payments Europe Ltd: processes all card payments. Stripe is PCI-DSS Level 1 certified. stripe.com/gb/privacy
• Email service providers: we use a reputable provider to send transactional and marketing emails on our behalf
• Hosting and infrastructure providers: servers, backups and content delivery
• Analytics providers: only with your cookie consent — see our Cookie Policy
• Professional advisers: accountants, auditors and legal advisers, where reasonably necessary
• Authorities: HMRC, the police, the ICO or courts, where required by law or a valid order

6 International Transfers

Most of our processors store data within the UK or the European Economic Area (EEA). Where data is transferred outside the UK (for example, to providers with infrastructure in the United States), we rely on one of the following safeguards required by Article 46 of the UK GDPR:

• UK adequacy regulations (where the receiving country has been deemed adequate by the UK Government)
• The UK International Data Transfer Agreement (IDTA) or the UK Addendum to the EU Standard Contractual Clauses
• The UK Extension to the EU-US Data Privacy Framework, where the recipient is certified

You can request a copy of the relevant safeguards by emailing hello@the-networker.co.uk.

7 How Long We Keep Your Data

• Account data: for as long as your account is active, plus 12 months after closure
• Transaction and ticketing records: 6 years from the end of the relevant tax year (HMRC requirement)
• Marketing preferences and unsubscribe lists: kept indefinitely so we can honour your opt-out
• Server logs and analytics: typically 12 months
• Support enquiries: 2 years from resolution

After these periods, data is securely deleted or anonymised.

8 Your Rights

Under the UK GDPR you have the following rights, free of charge in most circumstances:

• Right of access: request a copy of the data we hold about you
• Right to rectification: ask us to correct inaccurate or incomplete data
• Right to erasure: request deletion of your data ("right to be forgotten"), subject to legal retention requirements
• Right to restrict processing: ask us to limit how we use your data
• Right to data portability: receive your data in a structured, commonly-used and machine-readable format
• Right to object: object to processing based on legitimate interests, or to direct marketing at any time
• Right to withdraw consent: where processing relies on consent, you may withdraw it at any time without affecting prior processing

To exercise any right, email hello@the-networker.co.uk. We will respond within one calendar month, although this can be extended by two further months for complex requests (we'll let you know if so).

If you're unhappy with how we've handled your data, you have the right to complain to the Information Commissioner's Office (ICO). We'd appreciate the chance to put things right first, but you do not have to contact us before complaining.

Website: ico.org.uk · Helpline: 0303 123 1113

9 Security

We use industry-standard technical and organisational measures to protect your data, including TLS encryption in transit, encrypted backups, access controls, hashed passwords and regular security reviews. Card data never touches our servers — it is collected directly by Stripe via their secure elements.

No system is 100% secure. If we ever become aware of a personal-data breach that is likely to result in a risk to your rights and freedoms, we will notify the ICO within 72 hours and let affected users know without undue delay, as required by Articles 33–34 UK GDPR.

1 The Six GDPR Principles

All personal data we process is handled in accordance with the six core GDPR principles:

• Lawfulness, fairness and transparency: we only process data where we have a legal basis, and we tell you what we're doing with it
• Purpose limitation: data is only collected for specific, explicit and legitimate purposes and not used in ways incompatible with those purposes
• Data minimisation: we only collect data that is adequate, relevant and limited to what is necessary
• Accuracy: we take reasonable steps to ensure data is accurate and kept up to date
• Storage limitation: data is not kept longer than necessary — see our retention periods in the Privacy Policy
• Integrity and confidentiality: we implement appropriate technical and organisational measures to keep data secure

2 Lawful Basis for Each Activity

• Membership registration: Contract — necessary to fulfil your membership
• Event bookings: Contract — necessary to process your ticket purchase
• Newsletter / email marketing: Consent — you opt in at the point of sign-up
• Business Showcase listing: Contract — to display your listing as agreed
• Website analytics: Legitimate interests — to improve the platform
• Live chat (HubSpot): Legitimate interests / Consent (cookie consent required)

3 Consent Management

Where consent is our lawful basis, we ensure it is:

• Freely given — not bundled with other terms
• Specific — obtained for a clearly stated purpose
• Informed — you are told exactly how your data will be used
• Unambiguous — given by a clear affirmative action (e.g. ticking a checkbox)
• Withdrawable — you can withdraw consent at any time by unsubscribing or contacting us

4 Data Subject Rights

We respect and facilitate all data subject rights under UK GDPR. To exercise your rights, email hello@the-networker.co.uk. We will acknowledge your request within 72 hours and respond in full within 30 days (extendable by a further 60 days for complex requests).

• Right to be informed · Right of access · Right to rectification
• Right to erasure · Right to restrict processing · Right to data portability
• Right to object · Rights related to automated decision-making and profiling

5 Data Breach Procedure

In the event of a personal data breach we will:

• Assess the risk to individuals' rights and freedoms within 24 hours of discovery
• Notify the ICO within 72 hours if the breach is likely to result in a risk to those rights and freedoms
• Notify affected individuals without undue delay if the breach is likely to result in a high risk
• Document all breaches, regardless of whether notification is required

6 Third-Party Processors

All third-party data processors (HubSpot, Brevo, Stripe, Zoom, WordPress/WooCommerce) are bound by data processing agreements (DPAs). We only use processors who provide sufficient guarantees that they implement appropriate technical and organisational measures in line with UK GDPR.

1 Community Standards

• Treat everyone with respect, regardless of background, identity or opinion
• No harassment, hate speech, threats, doxxing or discrimination
• Be honest about who you are, what your event offers, and what you're selling
• Don't use other users' contact details — obtained through the platform — to add them to marketing lists without their explicit consent (this is also a PECR requirement)

2 Attending Events

• Turn up to events you've booked, or cancel in good time if your plans change
• Follow the organiser's house rules at the venue
• If something goes wrong at an event, raise it with the organiser first — most issues are resolved quickly that way

3 Listing & Running Events

• Keep your event listings accurate, complete and up to date — including date, location, capacity, age limits and what's included
• Publish a clear refund policy before tickets go on sale, and honour it
• Respond to attendee enquiries promptly — within 3 working days is a good benchmark
• Comply with all relevant law: licensing, health & safety, consumer rights, advertising standards, accessibility and tax
• Never run events that promote illegal activity, hate, harassment or fraud

4 Reviews & User Content

Reviews on event and organiser pages are written by attendees who have used the platform. They are personal opinions, not statements by The Networker, and we do not edit, rewrite or post reviews on anyone's behalf.

• Reviews must be honest and based on a real experience of the event
• Organisers must not write or commission fake reviews, or offer incentives in exchange for a positive review (this would breach the Digital Markets, Competition and Consumers Act 2024)
• We may remove content that is unlawful, defamatory, misleading, off-topic or breaches these guidelines
• Featured Events are paid placements — being featured does not mean they have been reviewed or endorsed by us

5 Reporting Problems

If you see something that breaks these rules — a misleading listing, abusive behaviour, suspected fraud — please report it to hello@the-networker.co.uk. We review every report and act on credible ones, while protecting the privacy of the person reporting where we can.

6 Consequences of Breach

Depending on the severity, a breach may lead to a warning, content removal, withholding of funds (for organisers, pending investigation), suspension or permanent removal from the platform. Where conduct is unlawful, we may also report it to the relevant authorities.

1 What Are Affiliate Links?

An affiliate link is a special URL that tracks whether a purchase or sign-up was made after clicking a link from our platform. If a purchase is made, we may receive a small commission from the third-party provider. This does not affect the price you pay.

2 Our Disclosure Commitment

• Any page, email or post containing affiliate links will be clearly labelled with a disclosure notice
• Affiliated content will always be marked with language such as "This post contains affiliate links" or "Ad" where required by ASA guidelines
• We will never recommend a product or service solely because of an affiliate arrangement — recommendations are based on genuine merit

3 Sponsored Content

The Networker occasionally features sponsored content — articles, events or listings that have been paid for by a third party. All sponsored content is clearly labelled as "Sponsored" or "Paid Partnership". Sponsored content does not imply endorsement of the sponsor by The Networker.

4 Business Showcase Sponsorship

Featured listings and page sponsorships in the Business Showcase are paid placements. These are clearly labelled as "Featured" or "Sponsor" on the platform. Payment for a featured position does not affect the accuracy or impartiality of the information displayed.

5 Third-Party Links

Our platform may contain links to third-party websites. These are provided for convenience and information only. The Networker Group Ltd has no control over the content of those sites and accepts no responsibility for them or for any loss or damage that may arise from your use of them.

1 What Are Cookies?

Cookies are small text files placed on your device when you visit a website. We also use similar technologies such as local storage and pixels — references to "cookies" in this policy include those. Cookies can be set by us (first-party) or by a third-party service we have embedded (third-party).

2 How We Ask for Consent

When you first visit the site, a cookie banner appears. Strictly necessary cookies are set automatically (PECR allows this without consent because the site cannot function without them). All other cookies — analytics, marketing and preference cookies — are off by default and only set if you click "Accept all" or enable them via "Manage preferences". You can change or withdraw consent at any time using the "Cookie settings" link in the site footer.

3 Categories of Cookies We Use

• Strictly necessary: session cookies that keep you logged in, remember items in your basket, prevent CSRF attacks and load-balance our servers. No consent required.
• Functional / preference: remember choices like language or accessibility settings to improve your experience. Consent required.
• Analytics: let us count visitors and see how the site is used so we can improve it. We aggregate this data and don't try to identify individuals. Consent required.
• Marketing: measure the effectiveness of our advertising and may be used for retargeting. Consent required.
• Third-party embedded services: Stripe sets cookies when you reach the payment step (essential for fraud prevention and processing your payment). Embedded video or map providers may also set cookies if their content is loaded.

4 Managing Cookies in Your Browser

In addition to our cookie banner, every modern browser lets you view, block or delete cookies. The Information Commissioner's Office maintains plain-English instructions at ico.org.uk/your-data-matters/online/cookies. Please note that blocking strictly necessary cookies will stop parts of the site from working.

5 Do Not Track

Some browsers send a "Do Not Track" signal. There is currently no agreed UK standard for how websites should respond to this signal, so we rely on the cookie banner to record your preferences. We will treat clear opt-out signals respectfully where they reach us.

6 Changes to This Policy

We may update this Cookie Policy when we add or change services. The date below shows when it was last reviewed.

1 Company Information

• Company name: The Networker Group Ltd
• Registered in: England and Wales
• Company number: 15252227
• VAT number: 454 4092 94
• Registered address: Magpas HQ, Barnwell Road, Alconbury Weald, Huntingdon, Cambridgeshire PE28 4YF
• Trading address: As above
• Email: hello@the-networker.co.uk
• Website: www.the-networker.co.uk

2 Regulatory Status

The Networker Group Ltd is not a regulated financial services firm and does not provide financial or investment advice. We are an online networking and business directory platform. Our events, listings and communications are for information and networking purposes only and do not constitute professional advice of any kind.

3 Disclaimers

• We make no warranty that the platform will be uninterrupted, error-free or virus-free
• We are not responsible for the accuracy of information provided by members in their listings or event descriptions

4 Complaints Procedure

If you wish to lodge a complaint, please email hello@the-networker.co.uk with a clear description of your concern. We aim to acknowledge complaints within 2 business days and to resolve them within 14 days wherever possible.

You may also find the following resources helpful:

• ICO (Information Commissioner's Office): ico.org.uk / 0303 123 1113
• Citizens Advice: citizensadvice.org.uk
• Small Claims Court: for financial disputes under £10,000

5 Changes to Policies

We may update the policies on this page from time to time. Where changes are material, we will notify registered members by email.