Privacy Policy

We believe that our aims can only be achieved through an inclusive mass movement. In order to build the lasting network of support that builds that movement, we collect data in order to inform you and activists like you about what you can do to help achieve our collective aims, and to give you the opportunity to be more involved. We also take seriously our duty to keep your data secure. We have developed this policy so that you know what we do with your data.

This policy applies to:

• Momentum – an unincorporated association with members
• Momentum Information Ltd.
• Momentum Campaign (Services) Ltd.

These entities are collectively referred to as “Momentum”, “we” and “us” in this document unless otherwise specified.

In this Privacy Policy we also make reference to “the wider Momentum organisation”. This includes, but is not limited to, local branches, elected representatives, candidates, members, volunteers and staff. These bodies and individuals may be (joint) controllers in their own right or processors acting on behalf of the organisation, depending on the circumstance.

1. How your data is collected

1.1 Who collects your data

Momentum Information Ltd. is the legal owner and a controller of your data. However the day-to-day processing of your data is primarily carried out by personnel employed by Momentum Campaign (Services) Ltd, which, as such, will sometimes act as (joint) controller or sometimes as processor, depending on the circumstance. 

1.2 What data is collected

In most circumstances we will only ask you for your name and contact details, and payment details if you are joining Momentum the unincorporated association as a member or donating. Sometimes we ask for additional information about you and your views and interests and activities you take part in, if this helps in campaigns or in keeping campaigns relevant to you. Additional information we may ask you to provide may include geographic information (for example, your postcode and constituency), your willingness to volunteer, your date of birth, gender, ethnicity, employer and occupation, whether or not you are a member of a political party, trade union or other organisation, and whether or not you are a student.

If you join Momentum the unincorporated association as a member or donate, then your financial details will only ever be stored by third parties, such as Paypal, GoCardless, Stripe and your and our banking service providers. We may also securely store details of when you made a payment, how much you paid and when and how much you intend to pay in the future on our Nationbuilder database. If you make payments using a cheque or cash, we will also securely store physical records of this. If you donate more than £500, we will also maintain records of this in order to comply with our duties under the Political Parties Elections and Referendums Act 2000.

We will also collect information such as your Internet Protocol (IP) address for monitoring and improving the effectiveness of our website services as well as its security.

1.3 Where we obtain your data from

In most cases, we will obtain your data directly from you, using an electronic or physical form, or verbally.

We may sometimes supplement your data with other publicly available information where we have your consent to do so, where it is necessary to do so in order to comply with a contract we have with you, one of our legal obligations or legitimate interests, or where you have given other organisations permission to share your data with us.

We also make use of cookies. Cookies are small files that are downloaded onto your computer (or your mobile phone or other electronic device) from websites that you visit.  Cookies contain information that allows websites to recognise that you have used the site before.

1.4 Managing cookies

You can control which types of cookies you allow. You can delete cookies and clear your browser’s cache (history).

The following links describe how to control cookies for some popular web browsers:

• Mozilla Firefox
• Google Chrome
• Microsoft Edge
• Opera
• Apple Safari
• Microsoft Internet Explorer

2. How your data is kept secure

2.1 What Momentum does to keep your data secure

We have physical, electronic, and managerial procedures to help safeguard, prevent unauthorised access to your data, maintain data security, and correctly use your information. These include protecting your information using firewalls, password protection and, where appropriate, encryption.

We use Paypal and GoCardless in order to process financial transactions. These services may process your financial details. Both of these services are registered with the Financial Conduct Authority and use advanced encryption technology in order to protect transactions and your data.

Momentum has agreements with all third-party service providers we use in order to process your data to ensure that they take appropriate measures to ensure the security of your information. Momentum Information Ltd has agreements to ensure the same with Momentum Campaign (Services) Ltd and members of Momentum the unincorporated association that process your data on its behalf.

We train our staff and volunteers to understand data protection and to keep your data secure. We ensure that all individuals who have access to your data sign data protection agreements and non-disclosure agreements, which detail their duties to keep your data secure and not to disclose it to anyone else without our authorisation.

3. Who has access to your data

We will never sell your data but sometimes it is necessary to share your information, either within the wider Momentum organisation, with other organisations or individuals who share our values and aims, with our service providers or with data processors. Data is only ever shared where we have a lawful basis to do so.

We share data with:

– The wider Momentum organisation

– Trade unions

– Elected representatives who support Momentum 

– Campaigns that support Momentum 

– Professional advisers

– Suppliers

– Service providers (including Nationbuilder, Paypal and GoCardless) 

– Financial organisations – such as credit card payment providers

– Regulatory bodies

Where we share data with the wider Momentum organisation, we ensure that the recipient of the data signs an agreement that they will use the data only for the purposes for which it was provided and will take necessary measures to ensure its security.

In Momentum, only those authorised to process your data can access it. We make sure that staff and volunteers see only the data that is necessary to perform their tasks.

If you are resident in Wales or Scotland and join Momentum the unincorporated association as a member, then you will automatically become a member of Welsh Labour Grassroots or Campaign for Socialism respectively, and the information you provide us when joining will be shared with them.

3.2 International Transfers

In order to process your data for the purposes outlined below, we may need to transfer your data to countries or jurisdictions outside the EEA. In each case, we ensure that our suppliers provide adequate protection for the rights of data individuals in connection the transfer of their personal data. Currently, we expect all suppliers to use a standard contractual clause approved by the European Union or be subject to Privacy Shield scheme in the United States.

4. How your data is processed

We have and collect data for use in Momentum’s campaign and to build a lasting network of support and debate around the ideas it inspires. It will be used to help us provide you with information to match your interests. We may also use it to alert you of activities you may be interested in and events happening in your area now and in the future.

We build a lasting network of support and debate around the ideas that Momentum’s campaign inspires by using your data to improve our communications, helping them reach you and people like you or reach people that they have not reached before.

We will process your data and contact you for the following reasons:

• To inform you about our campaigns and campaigns we support
• To let you know how you can help support and/or fund our campaigns and campaigns we support
• To let you know how you can campaign with us and with campaigns we support
• To let you know how you can volunteer with us or if we have job vacancies

Other purposes for which we may process your data include:

• Complying with our legal obligations
• Processing your donations and joining fees
• Answering your enquiries
• Responding to complaints
• Informing you of how you can vote in internal the elections of Momentum the unincorporated association or enjoy other benefits of membership

5. The bases on which we process your data

We process your data on the following bases:

• Consent
• Contract
• Legal obligation
• Legitimate interest

We process most of the data that we hold on the basis of consent. At times, we process your name and contact details, payment details and additional information about you and your views, interests and activities you take part in on the basis of consent. Where we process your data on the basis of your consent, that processing of your data will be restricted to those types of processing for which we have received your consent and we shall indicate which categories of data we are going to process on the basis of your consent.

Momentum may have a contract with you. For example, if you join Momentum the unincorporated association, then your agreement to its constitution amounts to a contract. If you are a member of Momentum, then we will process your name and contact details, payment details and geographic information (such as your postcode and constituency) as well as details of your membership of political parties on the basis of your membership agreement, for the purposes of administering your membership, in order to check your membership status and eligibility for continued membership, in order to determine which benefits of membership you are eligible for and in order to inform you of these benefits.

If it is necessary for us to process your data in order to comply with any other contracts we may have with you, then when we enter into the contract with you we will inform you of this, as well as informing you of the types of processing that it will be necessary for us to carry out, the categories of data that we will process and the purposes of our doing so.

We have various legal obligations, such as obligations to report donations under Political Parties Elections and Referendums Act 2000. If you make a donation, then we will process your name, details of whether or not you are on the electoral roll, and details of when and how much you donated on the basis of our legal obligations for the purposes of maintaining records of and reporting on regulated donations to us.

Momentum is a campaigning organisation that has a legitimate interest in producing and improving its political communications in a democratic society in order to build a lasting network of support and debate around the ideas that its campaign inspires. These communications are defined as “marketing” in the data protection legislation. We process your name, contact details and additional information about you, your views and interests, and activities you take part in on the basis of this legitimate interest, in order to improve these communications and help them reach you and people like you or reach people that they have not reached before.

When we share your data with other organisations or individuals who share our values and aims, we will rely on legitimate interest in circumstances where we haven’t sought your consent.

6. How Momentum will communicate with you

For any direct “marketing” communications about our campaigning we will only contact you via email or text if we have your permission to do so. 

You may also see campaigning online and on some social media sites if you have interaction with us before.

To respond to your queries we will contact you either via the medium you used to contact us or by a medium you have indicated you would like us to respond with. If it is necessary to contact you for any administrative purposes then we will usually try to email, text or call you, usually in that order, depending on what contact details we have available for you.

7. How Momentum Protects Children’s privacy

No information should be submitted or posted to Momentum by children under the age of 13 without prior consent of their parent or guardian.

8. How you can affect the way Momentum communicates with you

When you interact with us, we will ask you to tell us how you prefer to be contacted.

You can unsubscribe from contact at any time here.

If you ask for your data to be erased, we will immediately remove your data from all live systems. Sometimes, usually for technical reasons, we will temporarily transfer your data to a secure backup until we can safely destroy it.  

You can make requests in relation to your data by completing our Data Subject Request Form. We ask you to use this form because it makes it easier for us to process your requests, but if you would prefer to make a request via email or telephone, or in person, then you may do so and this will not affect how your request is processed. You can contact us via [email protected] 

The requests you can make using our Data Subject Request Form, or by other means, include requests that you have a right to make under data protection law. These are requests to access or rectify your data and requests for us to restrict the ways in which we process your data, provide you with the data we hold on you in a portable format and log an objection you have to our processing of your data.

9. How to find out more or make a complaint

If you would like to make a complaint to us about how your data is processed please complete this form.

You also have a right to make a complaint to the Information Commissioner’s Office. Information on how you can do so is available here.

You can contact our Compliance Officer at [email protected] subject: “GDPR enquiry”.