Last reviewed: 4 July 2026

1. Who We Are

This website — The Trans Inclusion Toolkit (https://thetransinclusiontoolkit.co.uk) — is operated by SEE Change Happen Ltd, a company registered in England and Wales.

Company Registration: 13138905
Registered Address: 1 The Briars, Waterberry Drive, Waterlooville, PO7 7YH
Contact Email: [email protected]

SEE Change Happen Ltd is the data controller for personal data collected through this site. This means we decide how and why your personal data is processed.

2. What Data We Collect

We collect personal data in the following ways:

Data you provide directly

When you submit a form on this site (such as the contact form or email signup), we collect the information you enter. This may include your first name, last name, email address, job role, organisation name, areas of interest, and any message you choose to write. Form submissions are sent server-side to HubSpot, our customer relationship management platform, only when you explicitly submit the form.

Trans Inclusion Impact Diagnostic

When you take the Trans Inclusion Impact Diagnostic — our free online self-assessment, available at app.thetransinclusiontoolkit.co.uk — we collect the following data:

This data is processed on our platform to generate your diagnostic results, which are available immediately and stored in your account. Your diagnostic data may also be synced to our HubSpot CRM to enable follow-up communications (subject to your consent preferences).

Important: The diagnostic assesses your organisation's governance readiness. It does not ask about your personal gender identity, sexual orientation, religion, or any other special category data as defined under UK GDPR Article 9.

Quinn AI Inclusion Assistant

When you use Quinn — our AI-powered inclusion assistant, available at app.thetransinclusiontoolkit.co.uk — we collect the following data:

Important: Quinn provides general educational guidance — not legal, HR, or professional advice. Responses are AI-generated and may contain errors or inaccuracies. Please do not share personal information about identifiable individuals or confidential organisational data in your conversations with Quinn.

Subscriptions and payments (Stripe)

When you purchase a paid subscription to The Trans Inclusion Toolkit, your payment is processed by Stripe, a PCI DSS Level 1 certified payment processor. We collect and process the following data in connection with your subscription:

Your payment data is processed by Stripe in accordance with their Privacy Policy and is protected by PCI DSS Level 1 security standards — the highest level of certification in the payment industry.

Analytics and tracking

We do not run Google Analytics, social-media pixels, or third-party advertising networks on this site.

We collect a minimal, first-party analytics signal directly on our own server as you browse: the page path you visited and a broad arrival category (for example, direct, search, or referral). This signal is never linked to your name, email address, or any other identifying information; it is not combined with data from other sites; and it does not use device fingerprinting or any persistent cross-site tracking identifier. It exists solely to tell us, in aggregate, which pages are useful and where visitors are arriving from.

This site also loads a tracking script from HubSpot, our CRM platform, to help us understand site usage and support marketing communications. HubSpot's analytics cookies are non-essential and are gated behind this site's own first-party cookie banner, which appears on your first visit: those cookies are only set if you accept the banner; if you decline, no HubSpot analytics cookies are set at all. You can change your choice at any time using the "Manage cookies" link in the site footer, which reopens the banner.

Where this site includes a contact or enquiry form, the information you enter is sent server-side to our CRM (HubSpot) only when you explicitly submit the form, regardless of your cookie consent choice.

Strategic Pathway Data

When you use the Strategic Pathway, we collect and store the following data to provide the service:

Data Retention

Your Strategic Pathway data is retained for 90 days after your last activity on the platform. If you do not log in or use any tool for 90 consecutive days:

  1. 60 days — you will receive an email reminder that your data will be removed.
  2. 75 days — you will receive a second reminder.
  3. 88 days — you will receive a final warning.
  4. 90 days — your pathway data, vault policies, and diagnostic results will be permanently deleted.

Subscription data (payment history, invoices) is retained by Stripe in accordance with their data retention policy and UK financial record-keeping requirements.

You can request immediate deletion of your data at any time by contacting us or using the "Request Deletion" option in your dashboard account settings.

AI Processing

Several tools in the Strategic Pathway use artificial intelligence (OpenAI GPT models) to analyse your policies and generate guidance. When you use these tools:

3. How We Use Your Data

We use the personal data we collect to:

Under the UK General Data Protection Regulation (UK GDPR), we must have a lawful basis for processing your personal data. We rely on the following bases:

5. Cookies

Cookies are small text files placed on your device when you visit a website. This site does not set any analytics or advertising cookies unless you accept them via the cookie banner described below. The following cookies are used:

Functional and security cookies (always set)

__cf_bm — Cloudflare bot management, used to protect the site from automated abuse (expires after 30 minutes).
Turnstile verification cookie — set only when you submit a form, to confirm you are not a bot (short expiry).

Analytics cookies (only if you accept)

This site shows a first-party cookie banner on your first visit. If you accept, HubSpot sets the following cookies to help us understand site usage:

If you decline, none of these cookies are set and no HubSpot analytics tracking takes place. Your accept/decline choice itself is stored in your browser's local storage, not a cookie. You can change your choice at any time using the "Manage cookies" link in the site footer, which reopens the banner.

Preferences

Your light/dark theme preference is stored in your browser's local storage, not a cookie, and never leaves your device.

Account and platform cookies

If you sign in to your account at app.thetransinclusiontoolkit.co.uk, that platform sets a strictly necessary authentication cookie to keep you signed in. This is covered by this Privacy Policy but operates on the app subdomain, not on this marketing site.

Managing cookies

You can control cookies through your browser settings at any time. To change your analytics consent choice, use the "Manage cookies" link in the site footer to reopen the cookie banner and select accept or decline. Declining removes the HubSpot analytics cookies described above; the strictly necessary security cookies remain, as the site cannot function safely without them.

6. Third-Party Services

We use the following third-party services that may process your data:

Each of these services operates under its own privacy policy. We have data processing agreements in place where required.

7. Data Sharing

We do not sell your personal data to third parties. We share personal data only in the following circumstances:

8. Data Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

While we take all reasonable steps to protect your data, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security.

9. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected:

You may request deletion of your personal data at any time by contacting [email protected].

10. Your Rights

Under the UK GDPR, you have the following rights regarding your personal data:

To exercise any of these rights, please contact [email protected]. We will respond within 30 days of receiving your request. If we need more time (up to a further 60 days for complex requests), we will inform you and explain why.

11. International Data Transfers

HubSpot, our CRM and marketing platform, processes some data in the United States. HubSpot maintains appropriate safeguards for international data transfers, including Standard Contractual Clauses approved by the European Commission and the UK International Data Transfer Agreement. For details, please refer to HubSpot's Data Processing Agreement.

Stripe processes payment data in the United States and other jurisdictions. Stripe maintains appropriate safeguards for international data transfers, including Standard Contractual Clauses and certification under the EU-US Data Privacy Framework. See Stripe's Privacy Policy for details.

Cloudflare provides hosting, content delivery, and security for this site across its global edge network. Where this involves processing personal data outside the United Kingdom, it takes place under Cloudflare's Data Processing Addendum, which incorporates the European Commission's Standard Contractual Clauses and the UK Addendum (International Data Transfer Agreement). See Cloudflare's Privacy Policy for details.

OpenAI processes Quinn chat data in the United States, under OpenAI's Data Processing Addendum, which incorporates the Standard Contractual Clauses and the UK Addendum. Pinecone also processes data in the United States, under Pinecone's Data Processing Addendum, which incorporates the Standard Contractual Clauses and the UK Addendum.

12. Changes to This Policy

We may update this privacy policy from time to time. Changes will be posted on this page with a revised "Last updated" date. Where changes are material, we may also notify email subscribers directly. We encourage you to review this policy periodically.

13. Contact Us

If you have questions about this privacy policy or how we handle your data, please contact us:

Email: [email protected]
Post: SEE Change Happen Ltd, 1 The Briars, Waterberry Drive, Waterlooville, PO7 7YH

If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Information Commissioner's Office
Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
Website: https://ico.org.uk
Telephone: 0303 123 1113