RampRC logo blue e1762794368719

Privacy Policy

RampRC CIC is committed to protecting your personal data and respecting your privacy in accordance with UK data protection law.

Last Updated: March 2026  |  Next Review: March 2027  |  ICO Registration No: ZC102029

1. Who We Are

RampRC CIC is a Community Interest Company registered in England and Wales (Company No: 17057802). We operate RC Car Build and Race and Media Production Pathway programmes for young people aged 14 to 16 (Group 1) and young adults aged 17 to 21 (Group 2, extendable to 25 where commissioned).

We are the data controller for the personal information collected through this website. This means we determine how and why your personal data is processed.

We are registered with the Information Commissioner's Office (ICO). ICO Registration No: ZC102029.

Data Controller Contact

Michael Holder, Managing Director
RampRC CIC
71-75 Shelton Street, Covent Garden, London, WC2H 9JQ
Telephone: 07873 996809
Email (general): admin@ramprc.com
Email (support): support@ramprc.com
Website: www.ramprc.com

2. What Data We Collect

When you create an account:

  • Name
  • Email address
  • Username and encrypted password
  • Account registration date
  • Any profile information you choose to provide

When you use our contact form:

  • Name
  • Email address
  • The content of your message

Automatically collected:

  • IP address
  • Browser type and version
  • Device type
  • Pages visited and time spent
  • Login timestamps

3. How We Collect It

We collect personal data through the following means:

  • Account registration: when you create a user account on this website.
  • Contact form: when you submit an enquiry via our contact page.
  • Cookies and tracking: automatically via your browser when you visit the site (see Section 7).
  • Direct communication: when you email or telephone us.

We do not collect data from children under 14. If you believe a child under 14 has submitted personal data to us, please contact us immediately at support@ramprc.com so we can delete it.

4. Why We Use Your Data and Our Lawful Basis

Account Management

To create and manage your user account, authenticate logins, and provide access to member content.

Lawful basis: Contract

Responding to Enquiries

To respond to messages submitted via our contact form or sent directly by email or telephone.

Lawful basis: Legitimate interests

Site Security and Performance

To monitor for suspicious activity, prevent fraud, and maintain the security and stability of the website.

Lawful basis: Legitimate interests

Legal Obligations

To comply with safeguarding duties, ICO requirements, and any other legal or regulatory obligations.

Lawful basis: Legal obligation

5. Who We Share Data With

We do not sell, rent, or trade your personal data. We may share it only in the following circumstances:

  • Hosting providers: our website host processes data on our behalf under a data processing agreement.
  • WordPress plugins: core functionality plugins such as our membership plugin and page builder may process basic user data as part of site operation.
  • Safeguarding authorities: where we are legally required to share information to protect the welfare of a child or vulnerable person.
  • Legal authorities: where required by law, court order, or regulatory requirement.

We do not transfer your data outside of the UK or European Economic Area (EEA) unless appropriate safeguards are in place.

6. How Long We Keep Your Data

We retain personal data only for as long as necessary for the purpose it was collected, in line with our Data Retention Policy (2026).

  • Account data: held for the duration of your account. If you close your account, data is deleted within 30 days unless retention is required by law.
  • Contact form submissions: retained for up to 12 months, then securely deleted.
  • Safeguarding records: retained in accordance with statutory safeguarding guidance, which may be up to 25 years depending on the nature of the record.
  • Technical/server logs: typically retained for up to 90 days for security purposes.

7. Cookies

Our website uses cookies, which are small text files stored on your device, to keep the site functioning correctly.

Essential Cookies
Required for the website to function. These include login session cookies set by WordPress. You cannot opt out of these.
Functional Cookies
Remember your preferences and settings across visits, such as language or display options.
Analytics Cookies
We may use analytics tools to understand how visitors use our site. This section will be updated to name the specific tool once confirmed.

You can control cookies through your browser settings. Disabling essential cookies may affect how the site works. For more information, visit www.aboutcookies.org.

8. Your Rights Under UK GDPR

Under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, you have the following rights regarding your personal data.

Right of Access

Request a copy of the personal data we hold about you (a Subject Access Request).

Right to Rectification

Ask us to correct inaccurate or incomplete data we hold about you.

Right to Erasure

Request that we delete your personal data, where there is no compelling reason for us to keep it.

Right to Restrict Processing

Ask us to limit how we use your data in certain circumstances.

Right to Data Portability

Request your data in a structured, machine-readable format to transfer to another service.

Right to Object

Object to us processing your data where we rely on legitimate interests as our lawful basis.

To exercise any of these rights, contact us at support@ramprc.com. We will respond within one calendar month. There is no charge for most requests. If a request is complex or repeated, we may charge a reasonable fee or extend our response time and will inform you if this applies.

9. How We Keep Your Data Safe

We take data security seriously and have implemented appropriate technical and organisational measures, including:

  • SSL/HTTPS encryption on all pages of the website
  • Passwords stored using strong one-way encryption (hashing)
  • Access to personal data restricted to authorised staff only
  • Regular WordPress core, theme, and plugin updates to address security vulnerabilities
  • Staff awareness of data protection responsibilities

In the event of a personal data breach, we will notify the ICO within 72 hours where required, and affected individuals without undue delay.

10. Third-Party Links

Our website may contain links to external websites that are not operated by RampRC CIC. These may include social media platforms, partner organisations, or other resources.

We have no control over the content or privacy practices of those sites and are not responsible for their privacy policies.

We recommend you read the privacy policy of any external website you visit before providing personal information.

11. How to Complain

If you have a concern about how we handle your personal data, please contact us first:

Email: admin@ramprc.com

Telephone: 07873 996809

If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

  • Website: www.ico.org.uk
  • Helpline: 0303 123 1113
  • Post: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, SK9 5AF

12. Changes to This Policy

We review this Privacy Policy at least annually, or whenever there is a significant change to our services, the law, or the tools we use.

When we make changes, we will update the "Last Updated" date at the top of this page. Where changes are significant, we will notify registered users by email.

Continued use of this website after changes have been made constitutes your acceptance of the updated policy.

Questions About Your Privacy?

If you have any questions about this Privacy Policy or how RampRC CIC handles your personal data, please get in touch with us directly.

Contact Us

RampRC CIC  |  Company No: 17057802  |  ICO Reg: ZC102029  |  Last Updated: March 2026

Wordpress Social Share Plugin powered by Ultimatelysocial