Not With My NHS Data Back

Privacy notice

We hold as little of your data as we can get away with.

A campaign about medical confidentiality has to walk the talk. Here is exactly what we collect, what we don't, and how to ask for your name to be removed.

What we never collect or store

  • Your address and postcode. These are used only inside your browser — to look up your MP via the public Parliament API and to draft your letters. They are never transmitted to our server and never written to our database.
  • Your email address. Letters open in your own email client; we never see or store the address you send them from.
  • The contents of your letters, including any personal note you write into the MP letter.
  • Tracking cookies, advertising IDs, analytics fingerprints, or any third-party trackers.

What we do collect

1. Anonymous send-count

When you generate the six-letter pack, we record a single row containing your MP's name and your constituency — no name, no address, no email, no IP. This is used to show the live signature counter and to demonstrate constituency reach to journalists and MPs. Lawful basis: legitimate interest (Article 6(1)(f) UK GDPR) — running a transparent public-interest campaign, with negligible impact on you.

2. Open-letter signatures (only if you choose)

If you tick "Also add my name to the open letter", or sign the open letter directly, we store:

  • your full name (required)
  • your organisation (optional, open-letter page only)
  • your town or city (optional, open-letter page only)
  • the timestamp you signed.

We do not store your IP address, email, postcode or any other identifier. The list is held in a UK/EU-region database.

How your data is used — and what is public:

  • Your full name is never shown on this website. It is used only on the version of the open letter delivered to the Office of the National Data Guardian.
  • On this website we publish a signatories table containing only your initials, your town (if you gave one) and the date you signed. We do not show the time of day, your organisation, or your full name.
  • We also show an aggregate count of signatories on this site.

Lawful basis: your consent (Article 6(1)(a) UK GDPR), given by ticking the box / submitting the open-letter form. You can withdraw it at any time (see below).

Retention

We keep open-letter signatures until the campaign closes or until you ask us to remove yours, whichever comes first. The anonymous send-count is kept indefinitely as part of the campaign record — it does not identify you.

Your rights

Under UK GDPR you have the right to access, rectify, erase, restrict or object to our processing of your personal data, and to withdraw consent at any time. Because we hold so little, this is usually a one-line email.

To remove your name from the open letter, email connect@notwithmynhsdata.org from any address, telling us the exact name you signed with and (if you gave one) the town. We will remove it within 7 days and reply to confirm.

If you are unhappy with how we have handled your data, you can complain to the Information Commissioner's Office at ico.org.uk/make-a-complaint.

Who is the data controller

Not With My NHS Data is an independent, non-commercial citizens' campaign. The named data controller is Terence Adam Townsend, the campaign organiser, contactable at connect@notwithmynhsdata.org.

Third parties

We use the public UK Parliament Members API to look up your MP from your postcode — this request happens directly from your browser. We use Stripe to process donations (donation pages only) under Stripe's own privacy policy. We do not share the open-letter signatory list with any third party other than the Office of the National Data Guardian as described above.

Last updated: 4 June 2026.