FosterFlowFosterFlowGo Back

Privacy Policy

Last updated: 1 April 2026

1. Introduction

Welcome to FosterFlow ("we," "us," or "our"). We are committed to protecting and respecting your privacy.

This Privacy Policy explains how we collect, use, and look after your personal data in accordance with the UK General Data Protection Regulation (UK GDPR).

2. The Data We Collect About You

Because of the nature of our business, we collect data from two distinct groups of people:

A. Fostering Agencies (Our Clients & Prospects)

If you are a representative of a fostering agency, we may collect:

  • Identity Data (first name, last name).
  • Contact Data (business email address, phone numbers).
  • Company Data (information about your fostering agency).

B. Potential Foster Carers

If you interact with advertising we manage on social media (such as Facebook or Instagram) on behalf of our clients, we may collect:

  • Identity Data (name).
  • Contact Data (email address, phone number).
  • Screening Data (answers to qualification questions).
  • Communication Data (case notes generated during our SMS, email, and phone conversations with you).

3. How We Use Your Data

For Fostering Agencies:

We use your data to contact you about becoming a client, to manage our relationship with you, and to deliver our marketing services.

For Potential Foster Carers:

When you submit your details via an advertisement, we use your information to:

  • Contact you via SMS, email, and phone calls.
  • Ask screening questions to assess your suitability for fostering.
  • Book appointments on behalf of the fostering agency.
  • Compile case notes to ensure a smooth handover to the fostering agency.

4. Data Sharing and Disclosure

We do not sell your personal data to third parties under any circumstances.

If you are a potential foster carer, your data, including contact details, screening answers, and our case notes, is securely passed only to the specific fostering agency client whose advertisement you responded to. We act as a data processor for these agencies.

We may also share data with trusted IT and system administration service providers, such as CRM platforms and SMS or email gateways, strictly required to operate our business and facilitate our communications with you.

5. Our Lawful Basis for Processing

Under the UK GDPR, we must have a valid lawful basis for processing your data:

  • Consent: When you actively submit your information through a lead form or social media ad.
  • Legitimate Interests: When contacting prospective business clients where it does not override your fundamental rights.
  • Contract: When processing data is necessary to fulfill our service agreement with our clients.

6. Data Security and Retention

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way. We limit access to your personal data to those employees and partners who have a business need to know.

We will only retain your personal data for as long as reasonably necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, or reporting requirements.

7. Your Legal Rights

Under certain circumstances, you have rights under UK data protection laws in relation to your personal data, including the right to:

  • Request access to your personal data.
  • Request correction of your personal data.
  • Request erasure of your personal data (the right to be forgotten).
  • Object to processing of your personal data.
  • Request restriction of processing your personal data.
  • Withdraw consent at any time.

8. Contact Us

If you have any questions about this Privacy Policy, would like to exercise your legal rights, or want to opt out of communications, please contact us at:

FosterFlow

Email: [email protected]