Website Disclaimer, Privacy Policy and Data Breach Policy

Yes to Life’s website provides access to information about therapies for cancer and is intended in particular to assist its users to find out about alternative therapies that may be available. Yes to Life has used all reasonable care and skill in compiling the content of this website (including organising reviews by medically qualified reviewers to the extent referred to on the website) but neither Yes to Life nor any such reviewers or contributors of content provides any warranty or guarantee as to the accuracy of any information on this website and cannot accept liability for any errors or omissions.

Yes to Life’s website content is not provided or (except to the extent referred to on the website) reviewed by fully qualified health practitioners or doctors able to give advice on medical matters. Cancer is a very serious and individual disease. Users must consult with experts in their appropriate medical field before taking up any form of treatment. The information contained on the website is not intended or implied to be a substitute for professional medical advice nor is it intended to be for medical diagnosis or treatment.

Neither Yes to Life nor any reviewer or contributor of content on the website shall be liable to any person for any loss or damage which may arise from the use of the information contained on this website. These exclusions of liability will not apply to damages arising from death or personal injury caused by the negligence of Yes to Life or any of its employees or agents or of a reviewer or contributor of content.

This disclaimer is prepared under and shall be governed by English law.

Yes to Life Privacy Policy

At Yes to Life we are committed to protecting and respecting your privacy.

Who are we?

We are Yes to Life, the UK’s cancer charity who empower people with cancer to make informed decisions about their cancer care options. Our charity registration number is 1112812 and our company number is 05495576.  Our office is at the address above.

This Policy

This policy sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us.  Please do read the following carefully to understand our views and practices regarding your personal data and how we will treat it.  By visiting you are accepting and consenting to the practices described by this policy.

Our Data Protection Officer for this can be contacted at

Information we collect from you

In determining what we keep and what we retain we must first recognise what is legitimate data and what is direct marketing data and the we will be seeking consent from people whose data we currently hold across all forms of communication.

How do we collect information from you?

We obtain information about you when you use our website, contact our helpline; call our office; attend one of our events; donate; and/or take part in a fundraiser.

What type of information is collected from you?

This can depend on why you are contacting the charity.

If you are calling or emailing the helpline, the personal data we might collect will be stored securely on our database and only sent to a third party with your permission.  Our system only enables sending personal data to third parties if you expressly give permission in order to progress the support we offer you.

Generally, details of this information will be retained for 5 years and will then be anonymised for research purposes.  However, if we are continuing to support you beyond a 5-year period this information will be securely retained. The anonymised data enables the charity to analyse its performance and the number of people it is supporting.

If you are applying for funding; you will be asked to fill out a Funding Application Form (FAF).

The information held on this form is stored on our secure database and a record is kept of all the awards from our grants system that you have been given by the charity.  Whilst we continue to support a person their data will be retained on our secure database. If we have stopped supporting someone for a period of 1 year, their data will be anonymised for analysis of the charity’s performance and the levels of engagement and funding.

If you attend one of our events your data will be collected by the event site, which is currently Eventbrite.  Click here to review Eventbrite’s EU data protection policy.

As a data processor we can download the information stored by Eventbrite but will only contact you if you have agreed to opt-in to receive information about our events. An opt-in facility is built into Eventbrite.

As some of our events are filmed, we understand that photographs and filmed images of people are considered personal data as they can be identified by these images.  Prior to any events which are being filmed, all attendees will be asked when booking their tickets to consent to them being filmed. There will also be notices clearly marked at the venue and all attendees will be required to sign a simple consent form when they register on the day.

If you do not wish to opt-in your personal details will be deleted and only the number of attendees and if available, their place of residence will be kept for evaluation purposes.

If you donate to the charity through one of the giving sites:

Just Giving:;

Virgin Giving;

BT My Donate:

As data processors we download reports from these sites to allocate donations to the right funds within the charity.  Once this information has been allocated, personal details are deleted and not stored.

All sites have an opt-in facility to enable us to make direct contact with the donor.

Our donations site is hosted by Charity Check-Out:  An opt-in is built into the system to enable the charity to contact those who have opted-in.

Who has access to your information?

  1. We will not sell or rent your information to third parties.
  2. We will not share your information with third parties for marketing purposes.

Your choices

You have a choice about whether you wish to receive information from us. If you do not want to receive direct marketing communications from us about the vital work, we do then you can select your choices by ticking the relevant boxes situated on the form on which we collect your information.

We will not contact you for marketing purposes by email, phone or text message unless you have given your prior consent. We will not contact you for marketing purposes by post if you have indicated that you do not wish to be contacted. You can change your marketing preferences at any time by contacting us by email:; or by calling us on 0203 222 0587.  As part of our compliance process, everyone on our mailing lists has been contacted to determine whether they wish to opt-in to receive information from the charity.  Those who unsubscribe are deleted automatically.

How you can access and update your information

The accuracy of your information is important to us. We’re working on ways to make it easier for you to review and correct the information that we hold about you. In the meantime, if you change email address, or any of the other information we hold is inaccurate or out of date, please email us at: or write to us at Yes to Life, 71-75 Shelton Street, Covent Garden, London WC2H 9JQ. You can also call us on 0203 222 0587.

You have the right to ask us not to process your personal data for marketing purposes.  We will usually inform you (before collecting your data) of the purpose for collecting this. You can exercise your right to prevent such processing by checking certain boxes on the forms we use to collect your data.  This will be clearly identified for you to see.

You have the right to request that information we hold about you is deleted. Requests for a copy of the information we hold should be made to  We may charge £10 for information requests to cover our costs in providing you with details of the information we hold about you.

Non-sensitive details (your email address etc.) are transmitted normally over the Internet, and this can never be guaranteed to be 100% secure. As a result, while we strive to protect your personal information, we cannot guarantee the security of any information you transmit to us, and you do so at your own risk. Once we receive your information, we make our best effort to ensure its security on our systems.


We may analyse your personal information to create a profile of your interests and preferences so that we can contact you with information relevant to you but only if you have chosen to opt-in.

Use of ‘cookies’

Like other commercial websites, our Site uses a technology called “cookies” and web server logs to collect information about how our Site is used. A cookie is a very small text document, which often includes an anonymous unique identifier. When you visit a website, that Site’s computer asks your computer for permission to store this file in a part of your hard drive specifically designated for cookies.

Information gathered through cookies and web server logs may include the date and time of visits, the pages viewed, time spent at our Site, and the Sites visited just before and just after our Site. Cookies, in conjunction with our web server’s log files, allow us to calculate the aggregate number of people visiting our Site and which parts of the Site are most popular. This helps us gather feedback so that we can improve our Site and better serve our customers. Cookies do not allow us to gather any personal Information about you and we do not generally store any personal information that you provided to us in your cookies.

We use ‘session’ cookies which enable you to carry information across pages of the Site and avoid having to re-enter information. Session cookies enable us to compile statistics that help us to understand how the Site is being used and to improve its structure. We also use ‘persistent’ cookies which remain in the cookies file of your browser for longer and help us to recognise you as a unique visitor to the Site, tailoring the content of certain areas of the Site to offer you content that matches your preferred interests.

You can refuse to accept cookies by activating the setting on your browser which allows you to refuse the setting of cookies. However, if you select this setting you may be unable to access certain parts of the Site.

Links to other websites

Our website may contain links to other websites run by other organisations. This privacy policy applies only to our website‚ so we encourage you to read the privacy statements on the other websites you visit. We cannot be responsible for the privacy policies and practices of other sites even if you access them using links from our website.

In addition, if you linked to our website from a third-party site, we cannot be responsible for the privacy policies and practices of the owners and operators of that third-party site and recommend that you check the policy of that third-party site.

16 or Under

We are concerned to protect the privacy of children aged 16 or under. If you are aged 16 or under‚ please get your parent/guardian’s permission beforehand whenever you provide us with personal information.

Changes to our Privacy Policy

We may change this Policy from time to time and in doing so we will publish information in respect of any changes on our website.


Questions, comments and requests regarding this privacy policy are welcomed and should be addressed to or in writing to 71-75 Shelton Street, Covent Garden, London WC2H 9JQ.

Data Breach Policy

If the charity suffers a security breach and personal data is compromised, we will notify the ICO within 72 hours. Our report to the ICO will detail what data has been breached (amount, type of data), the likely consequences, the steps already taken to mitigate and the name of our Data Protection Officer. We recognise that data that is properly encrypted or anonymised but lost/stolen is not considered a breach as it can’t be linked to individuals.


All relevant emails will include an opt-out or unsubscribe link where appropriate – ie this will not include day to day emails corresponding with those under the service of the charity

Retention of a Suppression List

To ensure we meet an individual’s requirements to opt-out we will be required to retain a Suppression List. Individuals may ask us to remove or delete their details from a database or marketing list. However, in most cases we should follow the marketing industry practice of suppressing their details in accordance with ICO guidelines. Rather than deleting an individual’s details entirely, suppression involves retaining just enough information to ensure that their preferences are respected in the future

How will we delete information?

  • Paper information no longer required will be shredded.
  • USB sticks will never be used for storage of personal data and any data collected on a USB stick once transferred will be deleted using a secure deletion system
  • Any hard disk drives from old, redundant hard drives will be physically destroyed
  • Database data will be deleted
  • Any personal data will be deleted as appropriate.
  • Our IT Support and Hosting Company will be advised regularly on any deletions and appropriate action taken under their Data Breach Policy.

Review of this Policy

We keep this Policy under regular review. This Policy was last updated in March 2018.