Privacy Policy

Last updated: 11 June 2026

This policy describes how the National Emergency Briefing (NEB) screening map ("the map") handles personal information. The map helps people find and host community screenings. It is operated in support of NEB and uses secure digital services to store data and send messages.

This policy should be read alongside the main NEB privacy policy at nebriefing.org/privacy-policy, which covers wider NEB campaigning activities.

Who is responsible for your data?

National Emergency Briefing is responsible for personal data submitted through the screening map. If you have questions or wish to exercise your data protection rights, contact info@nebriefing.org.

What information we collect

Depending on how you use the map, we may collect:

  • Account details (if you register): your email address, password (stored securely and never shown in plain text), and an internal contact name used for administration. Your login email is not displayed on the public map.
  • Screening details (if you submit a screening): venue name, description, location or postcode, screening date and time, ticket or website links, organisation name, and optional contact name.
  • Organiser contact email (optional): if you provide one, it is used so people can contact you about your screening. It is not shown publicly on the map or in public data feeds.
  • Messages to organisers: if a visitor uses "Contact organiser", we process their name, email address, and message so it can be delivered to the organiser. We keep a short audit record (screening reference, sender name, sender email, and time sent) but do not store the message body in our database.
  • In-app chat (if you are logged in and use chat): messages between users involved in a screening enquiry. Personal contact details are blocked in chat messages.

What is shown publicly on the map

After a screening is approved by an administrator, information intended for the public may appear on the map and in the public list view. This typically includes the screening title, location, date, description, organisation name, optional contact name, and links you provide. Email addresses are not displayed publicly and are not included in public data accessible through the map's public interface.

Screenings marked "Invitation only" are shown on the map with a distinct marker so visitors can see that the event is not open to the general public. Location and event details may still be visible.

How we use your information

  • To display approved community screenings on the map
  • To moderate submissions before they go live
  • To let visitors contact organisers about a screening (without exposing organiser emails)
  • To operate accounts, submissions, and optional in-app chat
  • To maintain security, prevent abuse, and improve the service

We do not sell your data and we do not share it with third parties for commercial marketing purposes.

Legal basis (UK GDPR)

We process personal data where necessary to run the screening map (contract / legitimate interests), where you have given clear consent (for example, optional contact details and communications), and where required to meet legal obligations. Public event information is published based on the information you choose to submit and approve for display.

Who we share data with

We use trusted service providers that process data on our behalf under UK GDPR-compliant arrangements, including:

  • Supabase — secure database and account authentication
  • Netlify — website hosting
  • Resend — delivery of "Contact organiser" emails
  • Postcode lookup services (for example api.postcodes.io) — to place screenings on the map when you enter a UK postcode
  • Map tile providers (via OpenStreetMap / Leaflet) — to render the map; your browser may request map images from those services

How we protect your data

  • Row-level security and access controls in our database
  • Public map data is limited to safe fields — not full organiser contact records
  • Organiser emails are only accessed on the server when sending a contact message
  • Administrative access is restricted to authorised staff
  • Connections to our services use encryption in transit (HTTPS)

How long we keep data

We keep screening and account data for as long as needed to operate the map, support hosts and visitors, and meet legal or safeguarding requirements. You may ask us to delete your account or screening data by contacting info@nebriefing.org. Some records may be retained where we have a lawful reason to do so.

Cookies and similar technologies

The map uses essential cookies and browser storage (for example, to keep you logged in and to load map data efficiently). We do not use cookies for advertising or third-party marketing on this application.

Your rights

Under UK data protection law you may have the right to access, correct, erase, restrict, or object to certain processing of your personal data, and to withdraw consent where processing is based on consent. You may also have the right to lodge a complaint with the Information Commissioner's Office (ICO). To exercise your rights, contact info@nebriefing.org.

Changes to this policy

We may update this policy when the map changes. The "Last updated" date at the top will be revised when that happens.

← Back to map

Powered byHope for the Future
v2.0Privacy