Privacy policy
Last updated : 12-March-2026
Mini Bees Childcare is committed to protecting the privacy and personal data of children, parents, carers, staff, and visitors. We take our responsibilities under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 extremely seriously and ensure that all personal information is handled lawfully, fairly, and transparently. This Privacy Policy explains how we collect, use, store, and protect personal information when you interact with our nursery services or visit our website.
1. Who we are
Mini Bees Childcare provides early years education and childcare services in London.
Legal Entity: MINIBEES Childcare Ltd
Company Number: 13634621
Registered Office: 12 Stukeley Road, London, E7 9QZ, United Kingdom
For the purposes of data protection law, Mini Bees Childcare acts as the Data Controller.
This means we determine how and why personal data is processed.
If you have any questions regarding this Privacy Policy or how your information is handled, please contact us using the details in Section 14
2. Our Commitment to Protecting Children’s Data
As an early years education provider, we process personal data relating to young children, which is considered particularly sensitive.
We therefore apply enhanced safeguards, including:
• restricted staff access to personal records
• secure nursery management systems
• staff data protection training
• safeguarding-compliant information handling
• strict retention and confidentiality policies
All staff members are required to follow EYFS safeguarding and data protection procedures.
3. Information We Collect
We may collect and process the following categories of personal data.
Parent / Guardian Information
• Full name
• Address
• Email address
• Telephone numbers
• Emergency contact details
• Identification documents where required
• Financial information for billing and funding applications
Child Information
• Child’s full name
• Date of birth
• Gender
• Ethnicity (for statutory reporting)
• Developmental records
• Attendance records
Special Category Data
Certain information we collect is classified as special category data under UK GDPR, including:
• Medical conditions
• Allergies
• Dietary requirements
• Disabilities
• Special Educational Needs (SEN)
• Safeguarding or welfare information
This information is processed solely for the protection, welfare, and development of the child.
Website Technical Data
When you visit our website we may collect:
• IP address
• browser type
• pages visited
• referral sources
• time spent on pages
This information helps us improve website performance and user experience.
4. How we collect Information
We collect information in the following ways:
• when you complete registration forms
• when you enquire about nursery places
• when you book a viewing
• when you communicate with us by phone, email, or online forms
• through nursery management software (e.g., Famly)
• through Local Authority funding applications
• through CCTV systems where installed for safeguarding purposes
• automatically when you use our website
5. How We Use Your Information
We process personal data in order to:
• provide early years education and childcare services
• comply with the Early Years Foundation Stage (EYFS) statutory framework
• manage nursery enrolment and waiting lists
• monitor children’s development and learning progress
• communicate with parents regarding their child
• administer nursery fees and payments
• process government childcare funding claims
• comply with safeguarding and child protection obligations
• maintain accurate attendance records
• improve our services and website
We never sell or trade personal data.
6. Lawful Bases for Processing
Under UK GDPR we rely on the following lawful bases:
Contractual Obligation
Processing necessary to provide childcare services agreed between the parent and Mini Bees Childcare.
Legal Obligation
Processing required to comply with:
• Ofsted regulations
• EYFS statutory requirements
• safeguarding legislation
• the Childcare Act
• Local Authority reporting obligations
Legitimate Interests
We process data where it is necessary to run our organisation effectively, such as:
• improving services
• maintaining security
• monitoring website performance
Consent
In certain circumstances we rely on explicit consent, such as:
• photographs or videos used for marketing
• promotional materials
• optional communications
Consent can be withdrawn at any time.
Vital Interests
In emergency situations, personal data may be processed to protect the health or safety of a child.
7. Who We Share Your Information With
We may share personal information with trusted organisations where necessary.
These may include:
Regulatory Authorities
• Ofsted (inspection and compliance)
Local Authorities
For nursery education funding and safeguarding.
Examples include:
• London Borough of Hackney
• London Borough of Newham
• other relevant local authorities
Healthcare Professionals
Where required to support a child’s health or welfare.
Nursery Management Software Providers
Such as:
• Famly
These providers operate under strict data processing agreements.
Professional Advisors
Including:
• accountants
• legal advisors
• insurers
All third-party providers are required to comply with UK GDPR security standards.
8. International Data Transfers
Some technology providers may store data on servers located outside the UK.
Where this occurs, we ensure that appropriate safeguards are in place, including:
• UK adequacy regulations
• Standard Contractual Clauses
• contractual data protection guarantees
9. Data Retention
We only keep personal information for as long as necessary.
Typical retention periods include:
Child records – until the child reaches age 21 (safeguarding best practice)
Accident records – 21 years and 3 months
Financial records – 6 years
General enquiries – 12 months
Retention periods follow ICO guidance and safeguarding best practice.
After this period, records are securely deleted or destroyed.
10. Data Security
We take the protection of personal data seriously and implement appropriate security measures including:
• secure digital systems
• password protected databases
• encrypted communication platforms
• restricted staff access
• staff training in data protection
• secure document storage
• regular system monitoring
Despite these measures, no online transmission can ever be guaranteed to be completely secure.
11. CCTV
Some Mini Bees Childcare locations operate CCTV systems for safeguarding and security purposes.
CCTV is used solely to:
• protect children
• protect staff
• prevent safeguarding incidents
Recordings are stored securely and retained only for a limited period unless required for investigation purposes.
12. Cookies
Our website may use cookies to improve functionality and analyse traffic.
Cookies may be used to:
• understand website usage
• improve navigation
• remember user preferences
You may disable cookies through your browser settings. However, doing so may affect website functionality.
13. Your Data Protection Rights
Under UK GDPR you have the right to:
Access Your Data
Request a copy of the personal data we hold about you.
Rectification
Request correction of inaccurate information.
Erasure
Request deletion of your data where there is no legal reason for us to retain it.
Restriction
Request limits on how we process your data.
Data Portability
Receive your data in a transferable format.
Object to Processing
Object to certain types of processing where applicable.
Withdraw Consent
Where processing relies on consent.
Requests can be made using the contact details below.
14. Contact Details
you have questions regarding this Privacy Policy or your personal data, please contact:
Email: info@minibeeschildcare.co.uk
Telephone: 02034755514
Postal Address: Mini Bees Childcare, 1-9 Sidworth Street, Hackney, London, E8 3SD, United Kingdom
15. Complaints
If you are not satisfied with how we handle your data, you have the right to complain to the UK’s data protection regulator.
Information Commissioner’s Office (ICO)
Website: https://ico.org.uk
Telephone: 0303 123 1113
16. Changes to This Privacy Policy
We may update this Privacy Policy periodically to reflect legal, regulatory, or operational changes.
The latest version will always be available on our website.