1. Our website may contain links to information on external websites. We are not responsible for the accuracy of information or for the privacy policies of these related websites.
  2. Enabling Innovation do not warrant that functions available on this website will be uninterrupted or error free, that defects will be corrected, or that the server that makes it available are free of viruses or bugs. You acknowledge that it is your responsibility to implement sufficient procedures and virus checks (including anti-virus and other security checks) to satisfy your particular requirements for the accuracy of data input and output.


Cookies may be used to improve your browsing experience. If you would like to disable cookies you will need to change your website browser settings. How to do this will depend on the browser that you use. The website may not work correctly if cookies are switched off.

Privacy Policy

We are committed to protecting your privacy, respecting the confidentiality of the information that you provide to us and informing you of your rights in relation to your personal data. From 25 May 2018 we will process your personal data in accordance with the General Data Protection Regulation.

Why we collect your personal data

The purposes for which your data is being collected may include:

  • Communicating with you about an event for which you have registered
  • Facilitating your company’s relationship with Enabling Innovation on an ongoing basis, including keeping a record of events and projects your company has participated in
  • Complying with the monitoring and reporting requirements of our funders

Where do we get your personal data from?

Enabling Innovation may obtain your data from the following sources:

  • Personal data that we collect automatically from our website
  • Personal data from publicly available sources e.g. via Google, Wikipedia
  • Personal data provided by third parties
  • Personal data provided by you

How we use your personal data

Enabling Innovation processes your personal data in accordance with the Data Protection Act and in line with the Data Protection Policies of the 3 university partners (University of Derby, University of Nottingham & Nottingham Trent University). From 25 May 2018, we will process your personal data in accordance with the General Data Protection Regulation.

The universities may share your personal data, including your sensitive personal data, between colleagues and departments who legitimately need access to that information in order to carry out their normal duties to support and facilitate your relationship with the universities. (For example, if you attend an event as part of the Enabling Innovation programme, that data will be shared with colleagues also involved in delivering the programme to enable us to effectively administrate the programme.) Your data will also be added to the universities’ Customer Relationship Management systems to enable us to effectively manage our relationship with your company. Within the universities, a number of different teams and departments may be involved in interacting with your company and the individuals within your company. By maintaining a record of your interactions with each university, we aim to avoid duplication of contact and to provide a more streamlined communication process.

How long do we keep your data for?

The Enabling Innovation partners will store your personal data in accordance with their records retention schedules and in compliance with the requirements of the programme funders, the European Regional Development Fund (ERDF).

When will we share your data with third parties?

We will only share your data with third parties with your prior consent. For example, if you are participating in a funded project with multiple delivery partners such as the Enabling Innovation programme, we will share your data between the programme delivery partners to enable us to effectively administrate the programme and comply with the reporting requirements of our funders. You will be notified of this data sharing arrangement at the point at which you enrol in the programme.

Legal basis for processing your personal data under the GDPR

Under the General Data Protection Regulation, the partners must establish a legal basis for processing your personal data and communicate this to you. The legal basis for processing your personal data on this occasion is:

  • 6(1)(a) +A4:B9 – Consent of the data subject
  • 6(1)(b) – Processing is necessary for the performance of a contract with the data subject or to take steps to enter into a contract
  • 6(1)(f ) – Necessary for the purposes of legitimate interests pursued by the controller or a third party, except where such interests are overridden by the interests, rights or freedoms of the data subject.

Your rights as a data subject

The GDPR provides you, as a data subject, with a number of rights in relation to your personal data. You have the right to:

  • withdraw your consent where that is the legal basis of our processing
  • access your personal data that we are processing
  • have inaccuracies in the personal data that we hold about you rectified
  • be forgotten
  • request that the processing of your personal data be restricted
  • obtain a copy of your personal data in a commonly used electronic form portability…
  • object to certain processing activities
  • complain to the Information Commissioner’s Office about the way we process your personal data