top of page

Privacy Policy


The Exchange Creative Community understands that your privacy is important to you and that you care about how your personal data is used and shared online. We respect and value the privacy of everyone who visits our websites: &  We will only collect and use personal data in ways that are described here, and in a manner that is consistent with our obligations and your rights under the law. Links within our site to other websites are not covered by this privacy policy.

Who are we?

The Exchange Creative Community CIC is a community-led arts organisation based in Morecambe. Since its foundation in 2015, the group are focused on delivering arts projects for and with the community that are accessible, that create opportunities and that foster creative learning. We registered as a Community Interest Company (CIC) and regulated by the CIC regulator CIC no: 9672869

Who’s in control?

It is important that you understand who is responsible for keeping your personal data safe. We are the “data controller” of all the personal data collected on this website for the purposes set out in this privacy policy. This means that it is our responsibility for deciding how your personal data is used and ensuring that your personal data is handled in accordance with the law.

Directors Beki Melrose and Jo Bambrough of The Exchange Creative Community CIC are responsible for making sure your personal data is treated in accordance with this Privacy Policy and the law. Full contact information for enquiries can be found in Contact Information Section.


Keeping Your Information Secure

We have appropriate security measures in place to prevent personal information from being accidentally lost, or used or accessed in an unauthorised way.We limit access to your personal information to those who have genuine business and need to access it. Those processing your information will do so only in an authorised manor and are subject to a duty of confidentiality.

We will also use technological and organisation methods to keep your information secure. These include the following examples:
Payments are encrypted using SSL
All data is stored on secure servers

Access is restricted and limited to specific users with associated permissions

Whilst we use all reasonable efforts to secure your personal data, in using the site you acknowledge that the use of the internet is not entirely secure and for this reason we cannot guarantee the security and integrity of any personal data that are transferred from you or to you via the internet. If you have any particular concerns about your information please do not hesitate to contact us. 


What data do we collect and where from?

We collect data from you when you visit the website, use the contact form, make a purchase from our online store, complete a feedback survey, subscribe to our newsletter and/or sign up for membership. When you sign up to our mailing lists or memberships packages in store or at events we will transfer the information to securely manage it digitally on the same online systems with the same privacy policy guidelines. We may use software tools to measure and collect session information, including page response times, length of visit to certain pages, page interaction information. We also collect personally identifiable information which might include: 

  • Full Name 

  • IP Address

  • Email Address;

  • Postal Address;

  • Telephone Number;

  • Credit Card information

  • Billing Details

  • Comments

  • Feedback

  • Gender;

  • Date of Birth;

  • Occupation;

  • Disabilities;

  • Creative Interests;

  • Social Media Shares;

  • Page Views;

  • Device Information e.g. desktop, tablet, and mobile;

  • Visit Duration;

  • Traffic Information e.g. referral address


Third Party Software

Our website (Including  content management system, website contact form, sign up forms, surveys  and newsletter subscription ) is hosted on the  platform. provides us with the online platform that allows us to sell our products and manage service to you. Your data may be stored through’s data storage, databases and the general applications. They store your data on secure servers behind a firewall. 


All direct payment gateways offered by and used by our company adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.

Wix has taken steps to comply with the European Union (EU) General Data Protection Regulation (GDPR) law, which is explained in their Privacy Policy


We also collect website usage data using Google Analytics. The website uses a cookie for Google Analytics. It does not capture or store personal information, but merely logs the user’s IP address which is automatically recognised by the web server. This is used to record the number of visitors to our website, volumes of usage, visit duration, device information, etc. For more information about Google Analytics visit the Google Analytics website.

Our websites have a number of embedded feeds. The embedded feeds behave in the same way as if the visitor has visited the other website. These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

If you do not wish to accept cookies on to your machine you can disable them by adjusting the settings on your browser. However, this may affect the functionality of The Exchange Creative Community’s website.

We also use Paypal to process Credit/Debit card payments.  Paypal does not keep most personal payment data longer than a few minutes, unless the customer has actively chosen to store their payment-card details for future use (not currently available to Jolt customers). Paypal does however store the last 4 digits of payment-cards, type of card, and expiry date of card. This data, in addition to customer name, address, email and phone-number can be viewed by authorised staff at The Exchange CIC that have log-in access to the Paypal account. You can see the privacy policy of Paypal here.


What do we use your data for?

We aim to be transparent when processing your personal data, so it is important that you understand how and why we use your personal data that we collect. We may contact you to notify you regarding your account, to troubleshoot problems, resolve a dispute, collect fees or monies owed, to poll your opinions through surveys or questionnaires, to send updates about our organisation or as necessary inline with agreements or applicable laws. This might be through email, telephone, text message, and/or postal mail.


We collect your information  for the following purposes:
To provide and operate services
To provide our users with ongoing customer assistance and technical support

To be able to contact our Visitors and users with general or personalised service related notices and promotional messages
To create aggregated statistical data and other aggregated and/or inferred non-personal information, which we may use to provide and improve our services
To comply with any applicable laws and regulations.



We use your personal data that you supplied during purchases to manage, process and deliver your orders. 

Managing your membership / subscriptions

We use your personal data that you supplied during sign-up process to manage and oversee your membership and inform  and update you of our business, events and opportunities available.

Marketing & Communications

We use the personal data you provide during the newsletter sign-up process to provide you with occasional summaries of our activities and news updates. It is important for you to know that you can opt-out of direct marketing at any time. This can be done by clicking the “unsubscribe link” at the bottom of our email marketing correspondence we send you. Alternatively, you can contact us at to inform us of your  opt-out request.

Tailoring content to our audience

We use the personal data provided by Google Analytics. To gauge interest in our events, projects, workshops, etc. This data will then be used to determine the long-term viability of these projects and help us inform future funding decisions.


Requests to view, update or withdraw your information...

Requests to see a copy of the data stored by us, requests for updates or to withdraw please contact us at or send us mail to The Exchange Creative Community CIC, 13 West Street, Morecambe, LA3 1RB to notify us of your request.
You may be asked for supporting information to help confirm your identity, though for additional security reasons we will not be able to provide precise details about payment-cards.

Privacy Policy Updates

We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it. 

Questions and your contact information

If you have any further enquiries you are invited to contact us at:
Address: The Exchange Creative Community CIC, 13 West Street, Morecambe, LA3 1RB


bottom of page