Privacy Policy

Who we are

The Cellar Trust is a charity working in Bradford district to support people with mental health issues move forward in their recovery and live independent, fulfilling lives.

Your privacy is very important to us and we are committed to letting you know how we use your personal information and how we use your data responsibly. We will never give out or sell the information we have to a third party unless we have your consent or are required to by law in special circumstances.

References to “we”, “us” or “our” in this privacy policy are references to The Cellar Trust, a company limited by guarantee registered in England and Wales, registered company number: 2304802; and a charity registered in England and Wales, registered charity number: 701982.

We are a “data controller” for the purposes of the UK General Data Protection Regulation (UKGDPR) 2016. This means that we are responsible for, and control the processing of, your personal information.

For further information about our privacy practices, please contact Helen Horsman our Information Governance (IG) Lead by:

If you have concerns about how we are holding and processing your data you can also make a complaint to the Information Commissioner’s Office by visiting:

For full details of our data protection and privacy practices please download our Privacy Policy. This includes details of the data we hold about you, why and how we process it and your rights under the UK General Data Protection Regulation (UKGDPR).

If you wish to access the personal data we hold about you please complete the Subject Access Form available to download here alternatively please contact member of staff who will advise on you how to proceed.

You can view full details of your legal rights under UKGDPR legislation here:

Please note, some of these rights only apply in certain circumstances and we may not be able to fulfil every request.


Our full Privacy Policy is available to download as a PDF here:

The Cellar Trust Privacy Policy

The Cellar Trust Data Protection Impact Assessments

A Data Protection Impact Assessment (DPIA) is a process to help organisations identify and minimise the data protection risks of a project or new system. Under the UK General Data Protection Regulation (UKGDPR) we are required to carry out a DPIA for any new projects or systems that involve processing personal data and that are likely to result in a high risk to individuals. As part of our commitment to data protection & security we publish these assessments so you can see what we have done to minimise any risks to individuals and ensure that we are meeting our obligations under data protection law. You can view our DPIAs below.

If you have any questions about these documents please contact Helen Horsman our Information Governance (IG) Lead on 01274 586474,

Breathe HR Data Protection Impact Assessment Jan 2019

MYMUP Data Protection Impact Assessment April 2019