Articles on: Policies, Terms & Conditions

Meaningful Planet - Privacy Policy

1. Introduction


1.1 Important Information and Who We Are


Welcome to Meaningful Planet Ltd's Privacy and Data Protection Policy ("Privacy Policy").


At Meaningful Planet Ltd ("we", "us", or "our"), we are committed to protecting and respecting your privacy and personal data in compliance with:


  • The UK General Data Protection Regulation (UK GDPR)
  • The Data Protection Act 2018
  • All other mandatory UK data protection laws


This Privacy Policy explains:


  • How we collect, process, and keep your data safe
  • Your privacy rights and how the law protects you
  • The obligations of our employees when processing data


We may collect and use data from:


  • Customers
  • Business contacts
  • Other individuals we have a relationship with or may need to contact


This Privacy Policy applies to all employees and to all personal data processed by us at any time.


1.2 Your Data Controller


Meaningful Planet Ltd is the Data Controller responsible for your personal data.


We are not required to appoint a Data Protection Officer. For any data-related queries, please contact us:

Email: [email protected]

Post: Meaningful Planet Ltd, Building 41 Newport Rd, Northwood, Cowes, United Kingdom, PO31 8BX


You have the right to make a complaint at any time to the Information Commissioner's Office (ICO) at www.ico.org.uk. We would, however, appreciate the chance to resolve your concerns before you contact the ICO.


1.3 Processing Data on Behalf of a Controller


As a Data Controller, we authorise Processors (employees or contracted third parties) to handle personal data on our behalf. Their responsibilities include:


  • Ensuring all processing is based on a valid legal basis (see 2.2)
  • Maintaining confidentiality obligations
  • Implementing appropriate technical and organisational security measures
  • Obtaining prior authorisation before engaging a further processor
  • Assisting with data subject rights requests
  • Providing compliance evidence for audits and inspections
  • Keeping records of all processing activities
  • Cooperating with the ICO on request
  • Processing data only on the Controller's instructions
  • Notifying us without undue delay upon becoming aware of a personal data breach



2.1 Types of Data Collected


"Personal Data" means any information that identifies, or could identify, an individual. It does not include anonymous data.


We may collect, store, and use the following types of personal data:


  • Profile / Identity Data: first name, last name, gender, date of birth
  • Contact Data: phone numbers, addresses, email addresses
  • Marketing & Communications Data: your preferences for receiving marketing and updates from us
  • Billing Data: the name associated with your payment method and your billing address
  • Transactional Data: records of payments made for our services or products


We also collect Aggregated Data - for example, how often users actively select a project to dedicate their contributions to. Aggregated Data is not personal data unless combined with other information that could directly or indirectly identify you. Where we combine aggregated data with personal data, we treat the combined set as personal data under this policy.


We do not collect:


  • Special Category Data (e.g. race or ethnicity, health information, religious beliefs, biometric data, sexual orientation)
  • Criminal conviction or offence data



We rely on the following lawful bases under UK GDPR:


  • Consent: e.g. opting in to email newsletters or marketing communications
  • Contractual Obligations: where information is required to deliver the service you have requested
  • Legal Compliance: where we are required by law to collect or retain data (e.g. fraud prevention, tax records)
  • Legitimate Interests: where necessary for running our business and where doing so does not override your rights and freedoms (e.g. retaining your contact details so we can manage our relationship with you)


3. How We Use Your Personal Data


3.1 Data Uses


We only use your personal data where the law allows us to do so.


3.2 Marketing & Content Updates


If you have opted in to receive marketing communications, you may receive updates, recommendations, and information about our products or services from time to time.


3.3 Change of Purpose


We will only use your personal data for the purposes for which it was collected. If we need to use it for a different, incompatible purpose, we will notify you and explain the legal basis for doing so.


We may process your data without your knowledge or consent where this is required or permitted by law.


4. Your Rights and Our Protections



Under UK data protection law, you have the following rights in relation to your personal data:


  • Right to be Informed – to know how your data is collected, used, and shared
  • Right of Access – to receive a copy of the personal data we hold about you
  • Right to Rectification – to have inaccurate or incomplete data corrected
  • Right to Erasure – to request deletion of your data (subject to legal exceptions)
  • Right to Object – to stop or restrict our processing in certain circumstances, including where we are using your data for direct marketing
  • Right to Restrict Processing – to request that we temporarily halt use of your data in certain circumstances
  • Right to Data Portability – to receive your data in a structured, machine-readable format and transfer it to another party


To exercise any of these rights, contact us at [email protected]. We will respond within one calendar month. There is no fee to make a request, though we may charge a reasonable fee or decline requests that are manifestly unfounded or excessive.


4.2 Your Control Over Your Data


You may delete your account at any time through the Meaningful Planet app. Upon account deletion, we will remove your personal data from our active systems. Please note that:


  • Some data may be retained temporarily in secure backup systems before being purged
  • Certain data (for example, transaction records) may be retained where we have a legal obligation to do so (see Section 6)


You can access the information associated with your account by logging in. Keep your account secure by choosing a strong password and signing out after use. Do not share your login credentials with anyone.


4.3 Data Security and Breach Notification


Your personal data is stored securely and is accessible only by authorised staff under confidentiality obligations. Where we use third-party processors to store or handle your data, we ensure they maintain equivalent security standards.


Whilst we take all reasonable precautions, no data transmission over the internet can be guaranteed as completely secure. Any transmission is made at your own risk. If you believe your interaction with us is no longer secure, please contact us immediately.


In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the Information Commissioner's Office (ICO) within 72 hours of becoming aware of the breach. Where the breach is likely to result in a high risk to you personally, we will also notify you directly without undue delay.


4.4 Marketing Opt-Out


You can opt out of marketing messages at any time by contacting us via your account or in the Meaningful Planet app.


If you opt out of marketing, we may still retain other personal data provided in connection with your account or the delivery of our services.


4.5 How to Request Your Data


To make a subject access request or exercise any of the rights listed in 4.1, please contact us at [email protected]. We may ask you to verify your identity before we process your request.


5. Your Data and Third Parties


5.1 Sharing Your Data


We may share your personal data with trusted third parties where necessary to deliver our services, under strict confidentiality obligations. Our key data processors include:


  • Stripe – payment processing. Card details are processed and stored directly by Stripe; we do not store your card details on our own systems
  • Brevo – email marketing. Used only where you have opted in to receive marketing communications
  • Crisp – customer support. Used to manage support conversations


We may also share data with:


  • Subcontractors or affiliates involved in delivering our services, under equivalent confidentiality obligations
  • Potential acquirers or investors in connection with a business transaction (on a confidential basis)
  • Legal or regulatory authorities where required by law


If Meaningful Planet Ltd is sold or transferred, your data may transfer as part of that transaction. The acquiring entity's privacy policy will govern further use of your data following transfer.



Our website and app may contain links to third-party websites or services. We are not responsible for their privacy practices. We encourage you to read the privacy policy of any external site you visit.


6. Data Retention


We retain your personal data only for as long as necessary for the purpose for which it was collected. Our standard retention periods are:

Data type

Retention period

Customer account data

Duration of contract + 6 years (UK limitation period)

Transaction and payment records

7 years (HMRC requirement)

Marketing preferences

Until you withdraw consent or close your account

Support correspondence

3 years from the date of the interaction

General business communications

3 years


We may retain data for longer than these periods in the event of a complaint, dispute, or where we reasonably believe litigation is a possibility. We review retained data periodically and delete or anonymise data that is no longer required.


7. Age Limit


You must be 16 or older to use Meaningful Planet Ltd. We do not knowingly collect personal data from children under 16. If you are under 16 and have accessed our services, please stop using them immediately.


8. International Transfers of Data


Some of our third-party processors may store or process personal data outside the UK. Where this occurs, we ensure that appropriate safeguards are in place in accordance with UK GDPR requirements. These safeguards may include:


  • Transfer to a country with an adequacy decision recognised by the UK (e.g. the European Economic Area under the UK–EU adequacy decision)
  • Use of UK International Data Transfer Agreements (IDTAs) or equivalent Standard Contractual Clauses
  • Reliance on the processor's own binding corporate rules or approved transfer mechanisms


Our key processors - including Stripe and Brevo - maintain UK and EU-adequate data transfer mechanisms under their own privacy frameworks. Details of their transfer safeguards are available in their respective privacy policies and on request from us at [email protected].


9. Changes to This Policy


We keep this Privacy Policy under regular review and will publish any updates on this page. Material changes will be communicated to you directly where required by law.

Your continued use of our services following any update to this policy constitutes acceptance of the revised terms.


10. Interpretation


  • "Including" means "including but not limited to"
  • Email addresses listed in this policy are provided for their stated purpose only; unrelated correspondence may not receive a response
  • Employees and contractors are not authorised to make representations or waive rights on behalf of Meaningful Planet Ltd
  • Where an email from a Meaningful Planet address conflicts with this policy or our published terms, the policy and terms shall take precedence, unless the correspondence is issued expressly by our legal team

Updated on: 17/03/2026

Was this article helpful?

Share your feedback

Cancel

Thank you!