Privacy Policy

---

London Geothermal Consortium (“we”, “us” or “the Consortium”) is committed to protecting your privacy and processing your personal data in accordance with applicable data protection laws, including the UK GDPR and the Data Protection Act 2018. This Privacy Policy explains how we collect, use, share and protect the personal information you provide when you visit our website (www.londongeothermal.com) or otherwise interact with us.

2.1. Information You Provide Directly

• Contact forms: name, email address, organization, role, message.
   
• Newsletter sign‑up: name, email address, areas of interest.
   
• Event registrations: name, email, phone number, dietary or accessibility requirements.
   
• Investor inquiries: company name, job title, investment interests.
   

2.2. Automated & Technical Data

• Log files: IP address, browser type, referral URL, pages visited, date/time stamps.
   
• Cookies & tracking: session cookies, analytics cookies (Google Analytics), marketing cookies (LinkedIn Insight, Twitter Pixel).
   

2.3. Third‑Party Data

• Social media: when you comment/share via LinkedIn or Twitter plugins, we may receive basic profile data (name, headline).
   
• Mailing lists: if you join via a partner event or data room, we may receive your contact details under confidentiality terms.
   

We use personal data to:

1. Provide & improve services: respond to enquiries, process registrations, send newsletters.
    
2. Communicate: send updates on projects, policy changes, event invitations.
    
3. Marketing & analytics: measure website performance, run targeted campaigns, analyze user behavior (with opt‑in consent where required).
    
4. Legal & compliance: comply with our legal obligations, defend or bring legal claims.
    

• Consent: for marketing emails and optional cookies.
   
• Contract performance: to fulfill your event bookings or investor agreements.
   
• Legitimate interests: to operate and secure our website, communicate consortium news, and improve our services.
   
• Legal obligation: to retain records for statutory or regulatory purposes.
   

• Essential cookies: required for site functionality (session management, security).
   
• Performance cookies: Google Analytics to understand visitor interactions.
   
• Marketing cookies: LinkedIn Insight Tag, Twitter Pixel – only loaded if you opt in via our cookie banner.
   

You can manage or withdraw consent at any time via the “Cookie Settings” link at the bottom of our site.

We do not sell your personal information. We may share data with:

• Service providers (e.g. website hosting, CRM, email platform) under strict data‑processing agreements.
   
• Event venues & organizers to manage registrations.
   
• Regulatory authorities if required by law or to protect our rights.
   
• Consortium members for project collaboration (only where you’ve explicitly consented or under NDA).
   

Our systems are hosted in the UK and EU. If we transfer your data outside the UK/EU (e.g. to a data‑processor in the US), we ensure adequate safeguards are in place (Standard Contractual Clauses, Privacy Shield certification).

• Contact & enquiry data: retained for up to 3 years after last interaction, unless you request earlier deletion.
   
• Event & investor records: retained for 7 years for audit and regulatory compliance.
   
• Cookies & analytics: retention periods vary (up to 2 years) — see our Cookie Policy for details.
   

Under UK GDPR you have the right to:

• Access your personal data.
   
• Rectify inaccurate or incomplete data.
   
• Erase data (the “right to be forgotten”) where no legal basis exists to retain it.
   
• Restrict or object to processing (e.g. direct marketing).
   
• Data portability: receive your data in a structured, machine‑readable format.
   
• Withdraw consent at any time (for marketing and non‑essential cookies).
   

To exercise any right, please contact us as below. We will respond within one month.

We implement appropriate technical and organizational measures, including:

• Encryption (SSL/TLS) for data in transit.
   
• Access controls and secure password policies.
   
• Regular vulnerability assessments and penetration tests.
   
• Staff training on data protection principles.
   

Our site may contain links to external websites (e.g. partner sites, social media). We are not responsible for the privacy practices of those sites. Please read their own privacy policies.

We may update this Privacy Policy from time to time (e.g. to reflect new legal requirements or changes in our services). The “Last updated” date above will be revised accordingly. We encourage you to review this page periodically.

Data Protection Officer
London Geothermal Ltd
71-75 Shelton Street, Covent Garden, London, England, WC2H 9JQ
Email:  eren.gunuc@londongeothermal.com
Phone: +44 7494 567370

If you have any questions, complaints or wish to lodge a request, please get in touch. You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) at ico.org.uk.