Last updated: 5 February 2026
IronLife (“IronLife”, “we”, “us”, “our”) is committed to protecting your personal data and respecting your privacy. We recognise the sensitivity of health-related information and handle all data lawfully, fairly and transparently.
This policy explains how we collect, use, store and protect personal information.
IronLife is a UK-based charitable organisation dedicated to improving awareness, prevention, screening and policy relating to iron deficiency and women’s health.
For the purposes of data protection law, IronLife is the Data Controller.
Contact:
Email: hello@shinefoundation.org.uk
Website: www.ironlife.org.uk
We may collect and process the following information:
a) Personal details
– Name
– Email address
– Postal address
– Telephone number
b) Health-related information (where provided voluntarily)
– Information relating to iron deficiency, symptoms, screening or treatment
– Information submitted through quizzes, surveys or screening initiatives
c) Engagement and fundraising data
– Donation history
– Event registrations
– Communications preferences
d) Technical data
– IP address
– Website usage data (via cookies – see section 9)
– We only collect data that is necessary for our charitable purposes.
Health information is classed as special category data under UK GDPR. We only process this data where:
– You have given explicit consent, or
– It is necessary for charitable, research or public health purposes, with appropriate safeguards in place.
You are always free to withdraw consent.
We use personal data to:
– Provide information, advice and support
– Deliver screening, awareness and education initiatives
– Communicate about SHINE activities, campaigns and events
– Process donations and fundraising activities
– Conduct research and evaluation (usually anonymised)
– Meet legal, regulatory and governance obligations
We do not sell or trade personal data.
We process personal data under one or more of the following legal bases:
– Consent
– Legitimate interests (charitable activities)
– Legal obligation
– Public interest and research purposes
We may share data with:
– Trusted service providers (e.g. website hosting, donation platforms)
– Research or evaluation partners (normally anonymised)
– Regulators or authorities where legally required
All third parties are required to maintain appropriate security and confidentiality.
We retain personal data only for as long as necessary:
– To fulfil the purpose it was collected for
– To meet legal and regulatory requirements
Health data is retained for the shortest appropriate period and anonymised wherever possible.
You have the right to:
– Access your personal data
– Request correction of inaccurate data
– Request deletion of your data
– Restrict or object to processing
– Withdraw consent at any time
– Lodge a complaint with the Information Commissioner’s Office (ICO)
ICO website: https://www.ico.org.uk
Our website may use cookies to improve functionality and understand usage. You can control cookie settings through your browser.
We take appropriate technical and organisational measures to protect personal data against loss, misuse, unauthorised access or disclosure.
We may update this policy from time to time. The latest version will always be available on our website.
