Home
Services
- Membership Insights Programme
- Bespoke Projects
Workshops
About
- Who We Are
- Partners
News & blog
Sign in

Privacy policy

Last Updated: 18 February 2026

Next Review: June 2026

1. Who We Are

Layercake CX Ltd is a UK‑based consultancy specialising in strategy, analytics, and digital delivery for membership organisations.

We operate as:

Data Controller when processing personal data for our own operations, marketing, and website analytics.
Data Processor when processing personal data on behalf of our clients within their systems.

We comply with UK GDPR, EU GDPR (where applicable) and the Data Use and Accountability Act (DUAA) 2026.

Registered Office: 71-75 Shelton Street, Covent Garden, London, United Kingdom, WC2H 9JQ

Company Number: 14529453

Data Protection Lead: Damian Watson

Contact:

2. Acting as a Data Processor (Client Work)

When providing analytics, strategy, or digital delivery services, we typically access personal data hosted in client-owned systems.

The client remains the Data Controller.

We only process personal data based on the client’s documented instructions.
We only access data necessary for delivery of the services.
We do not store, copy, extract, or re‑use client data for our own purposes.
We do not transfer client data to our own systems unless explicitly required and authorised.

For questions about personal data handled by a Layercake client, please contact that organisation directly.

3. Personal Data We Collect as a Controller

When you interact with us directly (email, meetings, workshops, events, website), we may collect:

Name, job title and organisation
Business email address
Business telephone number
Billing and invoicing information
Communications you send us
Website usage data through cookies (see our Cookie Policy)

We do not collect sensitive data.

4. How We Use Your Personal Data

We use personal data for:

Business communications

Managing enquiries, responding to requests, maintaining relationships.

Contract delivery

Managing proposals, agreements, invoicing, and service delivery.

Marketing (B2B)

Sending information about events, insights, workshops, and relevant services to membership‑sector professionals.

Website analytics

Understanding how our website is used, improving content and usability.

Legal obligations

Accounting, tax records, preventing fraud, record keeping.

5. Lawful Basis for Processing

Under UK GDPR, EU GDPR and DUAA 2026, we rely on:

Performance of a contract – service delivery, invoicing.
Legitimate interests – B2B marketing, business operations, analytics.
Legal obligation – tax, accounting, compliance.
Consent – for optional marketing or non‑essential cookies.

We only use non‑essential cookies with your consent.

6. Marketing Communications

We may send marketing communications if:

you are a relevant professional in the membership sector
you requested information from us
you attended one of our workshops/events
you provided consent (where required)

You can unsubscribe at any time using the link in our emails or by sending us a message through our Contact Us form.

7. Sharing Your Data

We do not sell personal data.

We may share limited personal data with:

accountants, auditors, legal advisers
IT and software providers (email, CRM, project tools)
subcontractors supporting client delivery

All providers are subject to confidentiality and data protection obligations.

As a processor, we only share or access client data based on client instructions.

8. International Transfers

If a third‑party provider processes data outside the UK, we ensure:

adequacy regulations, or
ICO‑approved safeguards (UK IDTA, SCCs)

Client data used in delivery projects normally remains within client‑controlled systems.

9. Data Retention

We retain personal data only as necessary for:

the duration of client relationships
tax and accounting obligations
legitimate business record keeping

Retention for client datasets is determined by the client (when we act as processor).

10. Security

We implement proportionate technical and organisational measures including:

access controls and least‑privilege permissions
secure devices (encrypted, password‑protected)
approved cloud systems
staff confidentiality and data protection training
incident response and breach management procedures
data minimisation and secure deletion practices

When working inside client systems, infrastructure security remains under client governance.

11. Your Rights

You have rights under data protection law, including:

access to your data
correction
deletion
restriction
objection
portability (where applicable)

If your request is broad or unclear, we may request clarification.

Under DUAA 2026, the statutory timeline pauses until clarification is received.

Complaints:

If you are unhappy with how we process personal data:

1. Send us a message through our Contact Us form.

2. If you remain dissatisfied:

UK: Information Commissioner’s Office (ICO)
EU: your local supervisory authority

We acknowledge complaints within 30 days.

11. Contacting Us

For questions about this Privacy Notice or personal data processing:

Damian Watson

Data Protection Lead

Layercake CX Ltd

71–75 Shelton Street

Covent Garden, London, WC2H 9JQ

Privacy Notice

Registered in England | Company number: 14529453 | Registered office address: 71-75 Shelton Street, Covent Garden, London, United Kingdom, WC2H 9JQ

Connect with us:

Henry Lee

Henry Lee is a commercial strategist with over 20 years of experience crafting long-term revenue strategies, including driving businesses to achieve remarkable x10 growth. With a background in purpose-driven businesses across logistics, IT, and membership associations, he has held senior leadership roles, including Managing Director and Commercial Director positions.

As an Associate Partner of Layercake, Henry works with clients and teams to develop high-impact commercial strategies—rooted in delivering value for clients, fostering positive environments for teams to perform, and creating societal good. Passionate about driving sustainable revenue growth, he is also dedicated to mentoring young talent and recently joined The King’s Trust as a mentor.

Tom Fox

Thomas Fox is a web analytics consultant with over 10 years of experience helping organisations – particularly associations – turn website data into meaningful insights that drive decision-making and performance. With a background spanning analytics leadership roles across media, consultancy, and defence sectors, Thomas has developed and executed measurement strategies, implemented Google Analytics solutions, and built data teams from the ground up.

Now operating as an independent consultant, he partners with clients to unlock the full value of their digital data – translating complex metrics into clear, actionable business insights. He’s worked with clients such as the Institute of Internal Communication, UK Athletics, and the Health Foundation, and brings a practical, user-first approach that helps teams build digital confidence and make data work in the real world.

Justyna Griffiths

Justyna keeps Layercake’s projects running smoothly. She coordinates client communications, organises meetings, and makes sure teams have what they need to deliver on time. With over 12 years of experience managing projects across the public and private sectors, she brings structure, clarity, and a steady hand to complex work. Justyna also quality-checks data and processes, helping ensure that every project meets the high standards clients expect.

Tracy Gravesande

Tracy Gravesande has a gift for simplifying complex ideas into scalable systems and is a seasoned learning strategist dedicated to making education more valuable—for teams and clients alike. At Layercake, she designs and delivers strategy workshops that guide organisations toward becoming data-led, creates engaging learning materials focused on data-informed strategy and action tracking, and supports associations in building impactful learning and development programmes.

Driven by a deep passion for empowering others with the right tools and resources, Tracy helps people succeed and organisations thrive. We’re delighted to welcome her on board—her expertise furthers our mission to help associations deliver impact through data.

Damian Watson

Damian Watson is the founder and CEO of Layercake, a consultancy that helps associations turn their data into strategic advantage. He began his career leading digital transformation in UK Central Government and has since delivered digital and agile change across industries including retail, banking, insurance—and even on the Wizarding World of Harry Potter.

Over the past five years Damian has specialised in the membership sector, working with associations to improve member experience, unlock insight from data, and responsibly integrate emerging technologies. His current focus includes:

Designing learning and leadership development offerings for current and future membership leaders
Building scalable core models for member growth, engagement, and financial performance,

Advancing data-first, AI-powered experiences that drive measurable value for associations and their members.

Get in touch

I would like to receive news, tips and tricks, and other promotional material

Thank you!

Ellie Denney

Previously Head of Digital Marketing for the National Trust, Ellie has more than 20 years’ experience working in, building and leading digital marketing teams. With the help of the competent team she built, and partners she brought on board, she laid the foundations for the National Trust’s long-term digital marketing success - including transformative growth in digital revenues and unprecedented membership growth. Her work with the National Trust saw her recognized as someone at the forefront of digital media via BIMA 100.

Now, an independent marketing consultant, Ellie provides marketing consultancy and training to charities, visitor attractions and member associations. Her client list is impressive and includes The Woodland Trust, The Royal Horticultural Society, WWT, The British Horse Society, The international Institute For Environment and Development and the Chartered Institute of Arbitrators. Last year saw her recognised as Digital Woman for Good at the Digital Women Awards.

Di Garfield

Di Garfield is a senior consultant to nonprofit leadership teams working with them to bring clarity to strategy, strengthen governance and improve organisational performance across complex, mission-led environments.

With a background spanning communications, digital transformation and operational leadership, Di’s work focuses on turning ambition into action. She helps align people and processes to improve decision-making and long-term sustainability.

Alongside her consultancy work, Di is a co-founder and advisory committee member of Rare Dementia Support, helping it grow from a volunteer initiative into a national service with the world’s first rare dementia support centre based in London.

Dave Campbell

Dave is an independent consultant supporting organisations rethink, reshape and revitalise their membership propositions, ensuring value is at the heart of their offering.

Dave has more than 17 years' experience working in senior roles within membership organisations, most recently as Membership Services Director for the Association for Consultancy and Engineering (ACE) and the Environmental Industries Commission (EIC), where he spearheaded the introduction of a refreshed membership proposition, new CRM system and new subscription and funding model.

He has previously held membership organisational roles focusing on commercial, marketing, communications, events, and training, education and skills, in sectors covering construction, manufacturing, engineering, students' unions, and the arts.

Created with