Privacy Policy

The personal data about you that we collect, process or use (‘Data’) is held securely and treated in accordance with this Policy.  Whenever you give us Data, you are consenting to its collection and use as explained in this Policy, including our use of ‘Cookies’.

Privacy Policy

The Can Do Collective and it’s associated assets are facilitated by Entrepreneurial Scotland and funded by The Scottish Government. Entrepreneurial Scotland is committed to upholding the privacy of Can Do Collective partners, suppliers, and staff. The personal data about you that we collect, process or use (‘Data’) is held securely and treated in accordance with this Policy.  Whenever you give us Data, you are consenting to its collection and use as explained in this Policy, including our use of ‘Cookies’.

This Policy explains when and why we collect personal information about you, how we use it, the conditions under which we may disclose it to others and how we keep it secure.

We may change this Policy from time to time so please check this page occasionally to ensure that you are happy with any changes. By using our website, you are agreeing to be bound by this Policy. If you have any questions regarding this Policy and our privacy practices, please email us at

Who are we?

Our website address is:

The Can Do Collective is facilitated by a dedicated Operations team who are resourced by Entrepreneurial Scotland and funded by The Scottish Government. ES are the official custodian of the ‘Can Do Collective’ brand and it’s associated assets, on behalf of all contributing enterprise and innovation support organisations, known as ‘Partners’. Entrepreneurial Scotland is a private limited company (Company Number SC478348) wholly owned by Entrepreneurial Scotland Foundation, a registered charity (Company Number SC332951, Registered Charity Number SC038858).

How do we collect information from you?

We obtain information about you when you use our website or interact with one of our community activities, for example, when you contact us to enquire about joining the Collective as a Partner, ask for information about collaborative groups or register to attend an event.

What type of information is collected from you?

We collect different information about you depending on how you interact with us.

Joining the Collective and Creating a Partner Profile

If you are enquiring about joining The Can Do Collective; you provide us with personal data such as your name, email address, job title, organisation, and information required to process your enquiry.   After joining you will be required to create a Partner Profile, where we collect other information to help us understand the profile of your organisation, such as who your audience is, what geographical regions your organisation operates in, and information required to create an understanding of your area of expertise and support. As your relationship with us progresses, we collect information such as events and groups you have attended, questionnaires and surveys, which roles you may be interested in and if you have featured in content such interviews or webinars. We also hold information about your data preferences.

Speakers Hub

When you register to becoming a Speaker featured in the Can Do Collective Speakers Hub, you provide us with your name, a headshot image, job title, organisation, short biography, email address, and indicate your area of expertise from a multiple choice list provided.

Other Content Forms

If you would like to contact us via the ‘Get in touch’ contact form, you provide us with your name, organisation, email address, and a description of the nature of your enquiry/message.If you would like to showcase your organisation’s collaborative activity and impact by sharing a case study for the Success Stories page, you provide us with a brief introduction to your project including your name, organisation, email address, and details of the case or story you’d like to be featured.

Events / Meetings / Training Programmes

When you attend one of our events / meetings or programmes, we may share the attendee list with our speakers, other event attendees and any sponsor.  These lists will only ever show your name, job title and company name.

Photos and Videos 

By taking part in our online events or in person events / meetings or training programmes, you should be aware that images may be captured using film photography, digital photography, video, or other mediums. We reserve the right to use the images captured in any brochures, booklets, videos, websites or other media and publicity material produced by us. By taking part in our events / meetings or training programmes you accept that you may be photographed, filmed, or otherwise captured in image form. If you do not wish to appear in any of our publications, please email us at:, alternatively, speak to one of our staff ahead of the event.


When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection. An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: After approval of your comment, your profile picture is visible to the public in the context of your comment.


If you upload images to the website, you should avoid uploading images with embedded locations data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

How do we store your data?

Your data is held on our secure CRM systems called Salesforce and Zoho.  Only ES staff have access to that data and its usage is governed through our data protection policy and processes. Online events are facilitated by Zoom or other on-line platforms, who may retain your registration details but will have no rights to sell or use your data.  For certain virtual events / meetings or training programmes we may record the session for our records and or promotional purposes. We will always stipulate if the session is being recorded at the start of the session.  If you do not wish to appear in any of our recorded events, please email us at:, alternatively, speak to one of our staff ahead of the event. If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

How is your data used?

We manage a marketing programme which means we use your data to communicate with you through several different channels, including email, phone, and where you have followed us – social media.  We may use your data to:

  • process web forms or applications that you have submitted;
  • send you information about events / meetings or training programmes;
  • invite you to participate in surveys or events;
  • seek your views or comments on the services we provide;
  • notify you of changes to our services;
  • send you communications which you have requested, or we believe may be of interest to you. These may include information about campaigns, events, collaborative activities, promotions of our associated companies’ goods and services;
  • process a grant or application.

Information gathered through our surveys will be researched and compiled on an aggregated basis and results may be published on or elsewhere. Such results will not identify you unless you have expressly granted us permission. The information helps us formulate our policy positions and to monitor or improve our support and services.

Who has access to your information?

Everyone in Entrepreneurial Scotland can access your data via WordPress and Salesforce.  We will not:

  • sell or rent your information to third parties; or
  • share your information with third parties for marketing purposes outside of named partners.

Third Party Service Providers working on our behalf

We may pass your information to our third-party service providers, agents, subcontractors and other associated organisations for the purposes of completing tasks and providing services, products or facilities to you on our behalf (for example to send you mailings). However, when we use third party service providers, we disclose only the personal information that is necessary to deliver the service and we have a contract in place that requires them to keep your information secure and not to use it for their own direct marketing purposes. We will not release your information to third parties for them to use for their own direct marketing purposes, unless you have requested us to do so, or we are required to do so by law, for example, by a court order or for the purposes of prevention of fraud or other crime.  The partners we work with can be found on our website

Providing your information via our website may involve the use of third-party applications to facilitate our processes (Formassembly, ScheduleOnce, Event Brite). Your data may be retained by these systems but is owned by ES and the service providers have no rights to access/use/sell this information.

When you create a profile in the Partners Directory, please exercise caution when you are submitting personal data about yourself or others, as it will be available to everyone who subscribes to this.

Your choices

You have a choice about whether you wish to receive marketing from us. If you do not want to receive marketing communications from us then you can “opt out“ by emailing  Please note that this may also mean you do not receive relevant information or offers.

How you can access and update your information

The accuracy of your information is important to us. If at any time you want to verify, update or amend any Data we hold about you or if you become aware of possible errors or inaccuracies in that Data, please email All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information. You also have the right to ask for a copy of the information that we hold about you by emailing

Security precautions in place to protect the loss, misuse, or alteration of your information

When you give us personal information, we take steps to ensure that it is treated securely. Any sensitive information (such as credit or debit card details) is encrypted and sent using a Secure Socket Layer (SSL) connection, ensuring details cannot be intercepted and read.  When you are on a secure page, a lock icon will appear on the bottom of web browsers such as Microsoft Internet Explorer.

Other details (your email address etc.) are transmitted normally over the Internet, and this can never be guaranteed to be 100% secure. As a result, while we strive to protect your personal information, we cannot guarantee the security of any information you transmit to us, and you do so at your own risk. Once we receive your information, we make our best effort to ensure its security on our systems. Where we have given (or where you have chosen) a password which enables you to access certain parts of our websites, you are responsible for keeping this password confidential. Please do not share your password with anyone.


We may analyse your personal information to create a profile of your interests and preferences so that we can contact you with information relevant to you.  We may make use of additional information about you when it is available from external sources to help us do this effectively.

How we use cookies

Like many other websites, our website uses cookies. ‘Cookies‘ are small pieces of information sent by an organisation to your computer and stored on your hard drive to allow that website to recognise you when you visit. They collect statistical data about your browsing actions and patterns and do not identify you as an individual. This helps us to improve our website and deliver a better more personalised service.

What types of cookies are there?

Broadly, there are 4 types of cookie:

Strictly necessary cookies – are essential to make a website work and enable features such as accessing your account or booking an event; many of the functions on our website will not work properly, or at all, if you do not allow these cookies to be used.

Performance cookies – collect anonymous information about you for assessing the performance of a website. Common uses include well-known web analytics tools such as ‘Google Analytics’. The information is solely used to improve how our website works.

Functionality cookies – automatically remember choices that you have previously made to improve your experience next time you visit a website. For example, where you select preferred settings and layout. The information these cookies collect may be anonymised and they cannot track your browsing activity on other websites.

Targeting or Advertising cookies – are like performance cookies, in that they collect information about users’ behaviour. However, this information is used at individual user level to advertise products and services to users based on the behavioral information collected.

Other third-party cookies

A cookie is classed as being first party if it is set by the site being visited. However, a third-party cookie is issued by a different server to that of the domain being visited. It could be used to trigger a banner advert based on the visitor’s viewing habits or for analytical purposes. For example, when visiting a page with content embedded from YouTube, Google, or Facebook. These service providers may set their own cookies on your web browser. Such anonymous cookies may be set by that third party to track the success of their application or to customise their application to you

How to Manage Cookies

Most browsers allow you to turn off cookies. To do this, look at the ‘help’ menu on your browser or visit to find out how to configure these settings on several major browsers.  Switching off cookies may restrict your use of our website and/or delay or affect the way in which it operates.

You can find information about how you can specifically opt out of Google’s use of cookies by visiting Google’s Ads Settings.

Links to other websites

Our website may contain links to other websites run by other organisations. This policy applies only to our website‚ so we encourage you to read the privacy statements on the other websites you visit. We are not responsible for the privacy policies and practices of other sites even if you access them using links from our website.  In addition, if you linked to our website from a third-party site, we cannot be responsible for the privacy policies and practices of the owners and operators of that third-party site.

Where Are you sending my Data?

As part of the services offered to you through this website, the information which you provide to us may be transferred to countries outside the European Union (“EU”). By way of example, this may happen if any of our servers are from time to time located in a country outside of the EU. These countries may not have similar data protection laws to the UK. By submitting your personal data, you are agreeing to this transfer, storing, or processing. If we transfer your information outside of the EU in this way, we will take steps to ensure that appropriate security measures are taken with the aim of ensuring that your privacy rights continue to be protected as outlined in this Policy.

If you use our services while you are outside the EU, your information may be transferred outside the EU to provide you with those services.

How Long Do We Keep Your Data?

We regularly review our retention periods for personal information. We will hold your personal information on our systems for as long as is necessary for the relevant activity, or if it is set out in any relevant contract you hold with us.  We keep this Policy under regular review.

This Policy was last updated in August 2020.