Privacy Policy
Last updated: 13 June 2026
1. Who We Are
This website (charleslinden.institute) is operated by APGH Ltd, a company registered in England and Wales (Company No. 16153717), with registered offices at:
APGH Ltd21 Ellis Street
London SW1X 9AL
United Kingdom
APGH Ltd is the data controller for personal data collected through this website and its associated services. Any questions about how we handle your data should be directed to us at questions@thelindencentre.org.
2. Data We Collect
We collect personal data in the following circumstances:
- Contact form submissions — name, email address, and message content when you contact us via the website contact form.
- Email opt-in — name and email address when you voluntarily subscribe to receive information about anxiety recovery, the Linden Method, or Charles Linden Institute news.
- Analytics data — anonymised usage data (pages visited, session duration, referral source) collected via first-party analytics only when you have accepted analytics cookies. No cross-site tracking or third-party advertising identifiers are used.
- Technical data — IP address, browser type, device type, and timestamp, collected automatically in server logs for security and performance purposes. This data is not linked to any identifiable individual.
We do not collect sensitive categories of personal data (such as health data) through this website. Any information you volunteer about your health in a contact message is treated with strict confidence and used only to respond to your enquiry.
3. How We Use Your Data
| Purpose | Legal Basis |
|---|---|
| Responding to contact form enquiries | Legitimate interest (responding to your request) |
| Sending information you have requested by email | Consent |
| Website analytics to improve our content | Consent (cookie consent required) |
| Security and fraud prevention | Legitimate interest |
| Compliance with legal obligations | Legal obligation |
4. Cookies
We use the following categories of cookies:
- Strictly necessary cookies — required for the website to function (e.g. cookie consent preference storage). These are set without consent.
- Analytics cookies — set only with your explicit consent to measure how visitors use the site. You can accept or decline these via the banner shown on your first visit.
You can change your cookie preferences at any time by clearing your browser cookies and revisiting the site. A fresh consent prompt will be shown. For full details, see our Cookie Policy.
5. Data Sharing
We do not sell, rent, or trade your personal data. We may share data with:
- Email delivery providers — we use Resend (resend.com) to deliver transactional emails. Resend processes data on our behalf under a data processing agreement and is GDPR-compliant.
- Hosting and infrastructure providers — our servers are hosted on infrastructure that may process technical log data. All providers operate under appropriate data processing agreements.
- Legal authorities — if required by law, court order, or to protect the rights and safety of our users or the public.
All third-party processors are required to process your data only on our instructions and to maintain appropriate security measures.
6. International Data Transfers
Where data is transferred outside the United Kingdom or the European Economic Area, we ensure appropriate safeguards are in place — such as Standard Contractual Clauses or an adequacy decision from the UK ICO — in accordance with UK GDPR requirements.
7. Data Retention
- Contact enquiries — retained for up to 2 years from the date of correspondence, then securely deleted.
- Email subscribers — retained until you unsubscribe, after which your address is permanently removed within 30 days.
- Analytics data — aggregated anonymised data retained indefinitely; session-level data deleted after 26 months.
- Server logs — retained for 90 days for security purposes.
8. Your Rights
Under UK GDPR you have the right to:
- Access — request a copy of the personal data we hold about you.
- Rectification — ask us to correct inaccurate or incomplete data.
- Erasure — request deletion of your data where there is no overriding legitimate reason for us to continue processing it.
- Restriction — ask us to restrict processing in certain circumstances.
- Portability — receive your data in a structured, machine-readable format.
- Objection — object to processing based on legitimate interests.
- Withdraw consent — where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
To exercise any of these rights, contact us at questions@thelindencentre.org. We will respond within 30 days. If you are not satisfied with our response, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO).
9. Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or destruction. These include encrypted data transmission (HTTPS), access controls, and regular security reviews. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security but commit to industry-standard best practice.
10. Children's Privacy
Our website is not directed at children under the age of 16. We do not knowingly collect personal data from anyone under 16. If you believe a child has provided us with personal data, please contact us immediately and we will delete it.
11. Changes to This Policy
We may update this Privacy Policy from time to time. The date at the top of this page shows when it was last revised. Material changes will be notified via a notice on the website homepage. Continued use of the website after any update constitutes acceptance of the revised policy.
12. Contact Us
For any privacy-related queries, data subject requests, or complaints:
APGH Ltd — Data Enquiries21 Ellis Street
London SW1X 9AL
United Kingdom
questions@thelindencentre.org



























































