Green cacao pods hanging from tree branches with lush tropical foliage in the blurred background.

Privacy policy

Last updated: 16 October 2025

1. Introduction

The Federation of Cocoa Commerce (FCC) (“we”, “our”, or “us”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect information about you when you visit our website or interact with us online.

By using our website, you acknowledge and agree to the terms of this Privacy Policy.

 

2. Who We Are

The Federation of Cocoa Commerce is a UK-based organisation that supports and represents the global cocoa trade.

Data Controller:
Federation of Cocoa Commerce (FCC)
1 Sun Street First Floor, 1 Sun Street, London, England, EC2A 2EP
Email: fcc@cocoafederation.com

We are registered with the UK Information Commissioner’s Office (ICO) as a data controller under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

 

3. Information We Collect

We collect and process the following types of personal data:

  • Contact information: your name, email address, phone number, and company details (where applicable) — when you complete our membership application form or contact us.
     
  • Technical information: such as IP address, browser type, and operating system — collected automatically through cookies and similar technologies.
     
  • Usage information: details about how you interact with our website (pages visited, time spent, navigation patterns).

We do not collect sensitive personal data (such as health information, race, or political opinions).

 

4. How We Use Your Information

We use personal data for the following purposes:

  • To process and manage membership applications and renewals.
     
  • To communicate with you about your membership or enquiries.
     
  • To operate, maintain, and improve our website and services.
     
  • To send updates, newsletters, or event information (where you have opted in).
     
  • To comply with legal or regulatory obligations.

 

5. Lawful Basis for Processing

Under the UK GDPR, we process personal data on the following lawful bases:

  • Consent – when you have given clear permission (e.g. accepting cookies or subscribing to updates).
     
  • Contract – when processing is necessary to provide membership services or handle applications.
     
  • Legitimate interests – to operate and improve our organisation, communicate effectively, and protect our legal rights.
     
  • Legal obligation – when processing is required to comply with applicable laws or regulations.

 

6. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to improve user experience, monitor performance, and analyse website traffic.

When you first visit our website, you will be asked to accept or reject non-essential cookies.

You can change or withdraw your cookie preferences at any time via your browser settings.

For more information, please see our Cookie Policy (if available).

 

7. International Data Transfers

As an organisation with members and partners around the world, your personal data may be transferred outside the UK.

Where this occurs, we ensure that adequate safeguards are in place — for example, using standard contractual clauses approved by the UK Information Commissioner’s Office (ICO) — to protect your information.

 

8. Data Security

We implement appropriate technical and organisational measures to protect your personal data from unauthorised access, loss, misuse, or disclosure.

Access to your personal data is restricted to authorised FCC personnel and trusted service providers who need it for legitimate business purposes.

 

9. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, or reporting requirements.

When personal data is no longer required, it will be securely deleted or anonymised.

 

10. Sharing of Information

We do not sell or rent personal data to third parties.

We may share personal data with trusted third-party service providers (such as website hosts, IT support, or email providers) under strict confidentiality and data processing agreements.

We may also disclose information if required by law, regulation, or court order.

 

11. Your Data Protection Rights

Under the UK GDPR, you have the following rights:

  • Right of access – to request a copy of your personal data.
     
  • Right to rectification – to correct inaccurate or incomplete data.
     
  • Right to erasure – to request deletion of your data in certain circumstances.
     
  • Right to restrict processing – to limit how we use your data.
     
  • Right to object – to object to processing based on legitimate interests.
     
  • Right to data portability – to request a copy of your data in a usable format.
     
  • Right to withdraw consent – where processing is based on consent.
     

To exercise any of these rights, please contact us at fcc@cocoafederation.com.

If you are unhappy with how we handle your data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO) at www.ico.org.uk.

 

12. Links to Other Websites

Our website may contain links to third-party websites.

We are not responsible for the content or privacy practices of such websites and encourage you to read their privacy policies.

 

13. Changes to This Policy

We may update this Privacy Policy from time to time.

Any updates will be posted on this page with a revised “last updated” date.

 

14. Contact Us

If you have any questions, concerns, or requests about this Privacy Policy or how we handle your data, please contact us at:

Federation of Cocoa Commerce (FCC)
1 Sun Street First Floor, 1 Sun Street, London, England, EC2A 2EP
Email: fcc@cocoafederation.com
Website: https://www.cocoafederation.com/