Privacy Notice

Who we are

The Data in Schools Conference (DISCO) is an event organised from time to time by Equin Limited (“we”, “us”):

Company Number: 06347232
Established: 2007
ICO data protection reference: Z1904040
Name of Data Protection Officer (DPO): Michael Cooper
Email address of DPO:
Telephone Number: 020 3393 4005
Registered Office Address: Unit G Pattern Shop, Trevoarn, Hayle, TR27 4EZ


Equin Limited helps schools make sense of assessment data through software and dedicated expertise. DISCO events are organised to explore the current state of data in schools and discuss what works and what doesn’t.

Our Data Protection Philosophy

We’re committed to protecting your privacy and aim to treat your data only in ways you’d expect. At all times we aim to respect any personal data you share with us, or that we receive from other organisations, and keep it safe. When we use third parties to help us deliver our services and products, we take care to ensure those third parties are equally committed to safeguarding your privacy.

We strive at all times to promote a positive culture around data protection and security. Our policies and processes are under constant review.

About this Privacy Notice

This Privacy Notice (“Notice”), sets out our data collection and processing practices and your options regarding the ways in which your personal information is used. It applies to information we collect about:

  • Visitors to our website;
  • People who purchase tickets to our events;
  • People who contact us.

From time to time, we may develop the DISCO concept and may update this Notice accordingly. If we need to make changes to how we process and use your personal information, we will update this Notice and keep you informed where appropriate.

Information we collect as a Data Controller

We collect certain personal information in our capacity as a Data Controller, in order to run events. We collect information when you contact us or purchase tickets to our events.

This includes any information that you have provided via a ticket vendor (such as Eventbrite), email, in person at an event and/or by any other method. We may keep a record of any correspondence when you get in touch with us.

Lawful basis for processing

Information Collection and UseConsent

When you choose to participate in our events, you consent to allow us to collect and process specific personal data. This can include details such as your name and email address.

By providing us with your consent:

  • You allow us to communicate with you about the event you are attending.
  • You permit us to notify you if you are on a waitlist for an event or any future events that might interest you.
  • You grant us the right to keep a record of our correspondence, should you contact us via ticket vendors, email, in-person, or any other communication channel.

Please note that you have the right to withdraw your consent at any time. Should you choose to do so, we will cease to process your data for the purposes to which you had previously consented, unless we have another lawful basis to do so.

Information Collection and UseContractual Necessity

Upon purchasing tickets for our events or when engaging with services that require a contractual agreement, we need to collect and process certain personal data, including but not limited to your name and email address. This data collection is essential for:

  • Ensuring you receive all necessary information and materials related to the event.
  • Keeping a record of attendees for organisational and logistical purposes.
  • Communicating any changes, updates, or important notifications about the event you will be attending.

The processing of this data is vital for the performance of the contract between you and us. Without this data, we may not be able to fulfil our contractual obligations, such as providing you with the necessary details about the event or ensuring a smooth event experience.

Disclosure of your Information

To provide you with the best possible event experience, we collaborate with partners integral to the staging and execution of the event. Your personal data may be shared with these partners to facilitate specific event-related functions and activities.

The personal information disclosed typically includes your name and email address, which helps in aspects such as identity verification, access control, communication, and provision of event-specific services.

The primary purpose of sharing this information is to facilitate seamless coordination between us and our partners, ensuring that you have an enriching and hassle-free event experience.

We hold our partners to the same high standards of data protection and privacy that we adhere to. Any information shared is done under strict confidentiality agreements, ensuring that your data is used solely for the purposes mentioned and is protected against unauthorised access or misuse.

If you prefer not to have your personal information shared with our event partners, please let us know. While we strive to respect your preferences, please understand that certain non-disclosure requests might affect the services or experiences we can provide at the event.

Storage of your Personal Data

Information held by us about you will be stored on secure servers within the EEA.

We take appropriate measures to ensure that all personal data is kept secure including security measures to prevent personal data from being accidentally lost, or used or accessed in an unauthorised way. We limit access to your personal data to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.

We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.

Unfortunately, the transmission of information via the internet is not completely secure. Although we do our best to protect your personal data at all times, we cannot guarantee the security of your data transmitted through any online means, therefore any transmission remains at your own risk.

Cross-border Data Transfers

When you book tickets to our events using Eventbrite, your data may be stored in the United States. In order to ensure the personal data can be lawfully transferred from the EU to Eventbrite US-based servers, Eventbrite agrees that it is bound by Standard Contractual Clauses (SCCs) which include a UK Addendum. For more information, please refer to Eventbrite’s Privacy documents.


We will hold your data for a period of up to 2 years.

Your personal information will be deleted if you submit a written request to us to delete your data.

Third Parties as Legally Required

We may disclose personal information to third parties in order to:

  • comply with any legal obligation;
  • prevent fraud;
  • resolve disputes;
  • protect the rights or safety of ourselves or our customers.

Your Rights

Under GDPR, you have important rights. In brief, they are as follows:

  • Access to your personal data and to certain other supplementary information (addressed herein);
  • You can request that We correct any mistakes in information that we hold about you;
  • You can request that we delete personal data about you in certain situations;
  • You can request to receive a copy of any information that we hold about you;
  • Object at any time to processing of personal data concerning you for direct marketing;
  • Object to decisions being taken by automated means which produce legal effects concerning you or similarly significantly affects you;
  • Object in certain other situations to our continued processing of your personal data;
  • Otherwise, restrict Our processing of your personal data in certain circumstances;
  • Claim compensation for damage caused by our breach of any data protection laws.

For further information on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals rights under the General Data Protection Regulation.

In order to exercise any of those rights, you will need to contact us using our contact details below. Let us have enough information about you so that we can identify you and let us know the information to which your request relates.

Questions and Complaints

We hope that we can resolve any query or concern you raise about our use of your information.

Contact Details

Director of Operations: Sarah Davey (
Correspondence Address: Equin Limited, Unit G Pattern Shop, Trevoarn, Hayle, TR27 4EZ
Phone: 020 3393 4005

The General Data Protection Regulation also gives you the right to lodge a complaint with a supervisory authority, in particular in the European Union (or European Economic Area) state where you work, normally live or where any alleged infringement of data protection laws occurred. The supervisory authority in the UK is the Information Commissioner who may be contacted at or by telephone: 0303 123 1113.