Gender Identity Research & Education Society

Our Privacy Policy

GIRES is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, store and protect personal data when you use our services

Data Controller
GIRES is the data controller for the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
GIRES is registered with ICO as a Tier 1 holder of data: Registration reference: ZB382272
Registered Charity No. 1068137.
Email: web@gires.org.uk

What personal data do we collect
We may collect and process the following personal data about you:

  • Contact information: name, email address, organisation (if applicable), postal address (if provided)
  • Subscription preferences: newsletter topics you have selected
  • Payment/donation information to process your purchases – payment services may collect additional data under their own policies
  • Usage data: information on how you use our Website (page views, device type, browser type, referral source)
  • Communications: records of your correspondence with us (e.g., by email, telephone, online form)
  • Other data you provide voluntarily, such as from surveys, registering for training, signing up for events, making enquiries, or uploading materials.

How we collect your personal data
We collect personal data in a variety of ways, including:

  • You provide it directly by registering for newsletters, making a donation, completing a survey, contacting us, registering for events or training, or otherwise interacting with our Website.
  • Automatically via your use of our Website (through cookies, web‑tracking technologies, log files).
  • Via third parties such as payment processors

Purposes and lawful basis for processing
We process your personal data for the following purposes:

  • Sending you our newsletters, training updates, event notices, research updates and resources.
  • Collecting donations
  • Event/training registrations.
  • To respond to your enquiries, correspondence, or feedback.
  • Operating and improving our Website and services (including monitoring usage, analytics, UX).
  • To comply with legal obligations (e.g., accounting, auditing, charity regulation) and to protect our legitimate interests for safeguarding and security.

Cookies and similar technologies
The Gender Identity Research & Education Society and the TranzWiki websites use session cookies as these are used by WordPress to function correctly and smoothly. Session cookies are deleted once you exit the website. The Website does not use or create tracking cookies. You can control the use of cookies through your browser settings and our cookie banner. For further information, please see our Cookies Policy here: https://www.gires.org.uk/cookies/

Sharing your personal data
We may share your personal data with:

  • Service providers acting as data processors, such as email marketing platforms and for processing payment
  • Regulatory or law‑enforcement bodies if required by law or where we believe disclosure is necessary to protect our rights, your safety or the safety of others.
  • With partner organisations if you participate in a joint event or survey, but only where you have consented.

Newsletter and direct marketing
If you subscribe to our newsletter, we will send you information relevant to the topics you selected (e.g., GIRES Newsletter, Research, Resources, Training, Volunteering, Fundraising). You may opt out at any time using the unsubscribe link in any email or by contacting us. When you unsubscribe, we will stop sending you the selected communications, but we may still send you other communications (e.g., updates relating to events you registered for).

Data retention
We will keep your personal data only for as long as necessary for the purposes for which it was collected, including to satisfy legal, accounting or reporting requirements. When no longer needed, we will securely delete or anonymise it.

Your rights
Under the UK GDPR you have various rights in relation to your personal data, including the right to:

  • Request access to the personal data we hold about you.
  • Request correction of inaccurate or incomplete data.
  • Request deletion of your data (in certain circumstances).
  • Request restriction of processing.
  • Object to our processing (including for direct marketing).
  • Request portability of your data (in certain circumstances).
  • Withdraw consent where processing is based on consent.
    If you wish to exercise any of these rights, please contact us at web@gires.org.uk 

Security
We implement appropriate technical and organisational measures to protect your personal data from unauthorised access, alteration, disclosure or destruction. We review our security practices regularly.

Links to other websites
The website may contain links to other external sites. These links do not represent an endorsement of any products, services or information available on such websites. We accept no responsibility or liability for the content, use, availability or information handling practices of such websites.

Changes to this Privacy Policy
We may update this Privacy Policy from time to time (for example, due to changes in law or our operations). Any changes will be published on our Website with an updated “Last updated” date. We encourage you to review this policy periodically.

Contact us
If you have any questions about this Privacy Policy or our data practices, please contact:
Email: web@gires.org.uk

Last Updated: 21st October 2025