Skip to content

RICS privacy policy

RICS privacy policy

RICS Privacy Policy (“Policy”) provides information on how the Royal Institution of Chartered Surveyors and any of its subsidiaries, or their subsidiaries, overseas companies, branches or representative offices (“RICS”) and any third party providers collect, use, secure, transfer and share your information. We comply with relevant data protection legislation where our members are located.

The Royal Institution of Chartered Surveyors (RICS) are committed to protecting and respecting your privacy. This Policy explains how we collect personal data, how we use it and who we might share it with.

We may review this policy from time to time so please do check for updates. If you have any questions about this privacy policy, or the way we process personal data, please send an email to the Information Governance Officer at Alternatively, you can write to RICS Information Governance Officer, 55 Colmore Row, Birmingham, B3 2AA.

Contact us

If you have questions relating to our privacy policy, please email our Information Governance Officer.

Email now

RICS privacy policy

  • We're the global professional body promoting and enforcing the highest international standards in the valuation, management and development of land, real estate, construction and infrastructure. Find out more about RICS.

    We are a company incorporated in England, whose registered office is at 12 Great George Street, Parliament Square, London SW1P 3AD (registered with company number RC000487) and registered for VAT purposes with number GB 584940013.

    We are also registered with the Information Commissioner’s Office as a data controller (Registration number: Z7626589)

  • We collect information from you in the following ways:

    • through our websites, including forms and cookies (please refer to the relevant cookie notice for further details)
    • email, post, fax and mail correspondence with us
    • contact via phone
    • our social media channels
    • application and request forms by post
    • in-person contacts with RICS employees, members, affiliates
    • information we gathered via events, and
    • information we receive from external third parties.

    Each time we collect personal data from you we will include a link to this privacy policy so you understand how your data might be used. We will also give you the opportunity to opt-in or out of certain data uses by us.

    How you send information to us is your choice but please be aware that some methods are not secure. If you are unsure how you should send confidential data to us please contact us and we may be able to help you.

  • We will collect different kinds of information from you depending on our relationship with you:

    • We will collect the data we need to administer memberships.
    • To protect the public and to carry out our regulatory duties effectively, we will collect information about members and firms relating to their working practices. It may be necessary to do this without informing members or firms in certain circumstances. This data may also be collected as part of regulatory visits.
    • We will collect the information we need to provide you with the products and services you have requested from us.
    • We will collect information we need to arrange events and the administration of events. This is likely to include dietary requirements and any other pertinent information related to your requirements.
    • If we receive a complaint or query from members, registered firms or members of the public, we will collect the data required to consider the complaint or query effectively.
    • If you apply for a job at RICS we will collect enough data to process your application.
  • We will use your data in accordance with the law. The below sections outline how your data will be used.

    The following activities we will carry out only with your opt-in consent:

    • Sharing your contact details with third parties for them to conduct their own general marketing activities
    • Using your contact details to send you marketing data, if you haven’t bought a product or service from us
    • Using your contact details to tell you about membership opportunities. For example, if you are a student we may send you details about becoming a full member of RICS

    We will use your data in the following ways unless you opt-out or object:

    • We may use your contact details to send you marketing messages, via post, email, SMS text or your social media accounts (such as Facebook and Linkedin), if you have bought a product or service from us. This includes subscriptions and registering as a member.
    • For members we offer a scheme known as ‘Benefits Plus’, when you register as a member with RICS you will be automatically enrolled onto this scheme so you can benefit from discounts and offers from third parties. Member contact details will be shared with third parties so these benefits can be offered. This is in the legitimate interest of RICS and its members and you will be given the opportunity to opt-out of the scheme at the time of registration and at any time by changing your preferences. You can find out more about the Benefits Plus scheme.
    • Sharing your data with our partner charity LionHeart. Find out more details about LionHeart.
    • We may use your contact details to send you surveys and other research material carried out in the legitimate interest of RICS (eg. to improve the services we offer). We may also contact you about other types of research such as the Contractor's Tender Climate Survey, Road Tender Price Index Survey and BCIS Private Housing Construction Price Index.

    Should you provide personal data to us, there are circumstances when we will use it whether you provide us with consent or not. This is likely to be the case where we need to use your data to provide you with services you have requested from us (such as processing payments or delivering products), where we need to process the data for regulatory purposes or any other legal reason. The below lists some of the ways we may use data without your consent:

    • We may publish the results of formal disciplinary hearings in the public domain
    • We will use the personal data of members to administer their accounts and membership
    • We will send information to members about the running of RICS
    • We will send reminders to members about their CPD requirements
    • We will use member data to maintain the RICS member directory
    • We will send practice and guidance notes to members
    • We may share the personal data of our members or firms with other regulatory or public bodies where there is a legal basis to do so
    • We may share the personal data of our members with their employers in circumstances where it will support regulatory activity, the enforcement of professional standards or the effective management of membership
    • We will share personal data with a third party if required to do so by law
    • We may share your data with appropriate third parties when undertaking our regulatory activities. This includes sharing your data with subject matter experts external to RICS and other members of the public if we need to confirm facts as part of an investigation.
    • If you make a complaint we will process your data to address any concerns effectively. We may need to do this even if you change your mind where we have a responsibility to protect the public. This includes complaints through our regulatory team and our dispute resolution service.
    • If you contact us and provide us with your personal data as part of a query we will keep a record of those details.
    • If you are a member of a board or panel associated with RICS we will process your data to ensure the effective running of the board or panel
    • We may share member data with assessors, counsellors and supervisors where required to ensure appropriate working practices and to provide required support.
  • Employees of RICS will have access to your personal data where it is needed to carry out a specific task.

    On occasion we may use third parties to process personal data on our behalf (data processors), if we do this we will use carefully selected data processors and ensure we have appropriate contracts in place to protect your data. For example, we outsource some of our recruitment activities to SHL (a company that specialises in psychometric tests).

    In the ‘How is your information used?’ section it describes circumstances in which other parties may be given access to your data, this includes other regulatory bodies and public authorities such as the police, HMRC and the insolvency service. We may also share your data with third party experts when getting an opinion as part of a regulatory investigation or as part of a dispute resolution service.

    If you are a member and haven’t opted out of the Benefits Plus scheme, your personal data will be shared with the third parties offering discounts and services to members of RICS. You can find out more about the Benefits Plus scheme.

    We may share your data with third parties for them to market their own products and services to you, where you have consented for us to do so.

    To help us understand the impact of our advertising campaigns, find individuals like you who may be interested in our products, and to contact you with marketing and other communications (such as member subscriptions, key RICS events), we may share some personal information with social media and online advertising providers.  They can match this to information about you which they already have themselves through your use of their services. Social media companies that may provide services for us include Facebook, Linkedin, Instagram, WhatsApp, Google, YouTube and Twitter. Our lawful basis for sharing the information and contacting you in this way is legitimate interests, as such you can object at any time, but we will not ask you to opt-in or consent.  You can also change the permissions with your social media company which will prevent them from showing you our communications  

  • We may analyse your personal information to create a profile of your interests and preferences so that we can contact you with information relevant to you. We may make use of additional information about you when it is available from external sources to help us do this effectively.

    You have the right to stop us analysing your personal data for marketing purposes. If you wish to do this, please send your request to

  • You have a right to access the personal data we hold about you. You may ask us to rectify or erase the personal data we hold about you or to restrict the processing we carry out. You can also object to the way we are processing your personal data.

    In some cases, we may not fully comply with your request. For example, if you request access to your personal data in relation to an ongoing investigation we may not provide it to you. This is because it could affect the outcome of the case.

    To submit a question about the way we process your data or to enforce your above rights please contact with your request.

    We would always ask that you contact us first if you have any complaints about the way we are processing your personal data. If you have contacted us and you are still unhappy about the way we are using your data, you can submit a complaint to your national data protection authority.

  • If you have a digital account with RICS you may be able to access our online portal to view and change some of your details. You will also be able to change your preferences regarding marketing messages. Access your account.

    If you wish to access data about you that isn’t available through our online portal you can submit a request for access to

  • We take the security of your data seriously. We have information security management systems in place and have attained the Cyber Essentials certification. Details of the certification can be found on the Cyber Essentials website (certificate number IASME-A-05914).

  • ‘Phishing’ is an email fraud practice intended to gather personal information by deception. Fraudsters pose as a trusted source (like your bank) and try to get you to divulge your personal details.

    If you suspect that you have received a fraudulent email:

    • Don’t click on any links or attachments
    • Report a phishing email that appears to be from RICS, by contacting your regional team.

    Legitimate emails from RICS will not have been sent from a web-based mail server such as Gmail, Hotmail, Yahoo, etc.

    In addition, we will never request money payments through a third party or promise you any kind of cash prize.

    We are aware of the following phishing scam:

    February 2020: Congratulations! You won a loyalty gift from!

    An email is being sent advising the person receiving it that they've won a loyalty gift from

    This is not a promotion we are running.

    We are working hard to ascertain the origin of this message but do not believe any non-publicly available data has been obtained.

    Please be reassured that RICS takes your data protection very seriously.

  • RICS has its headquarters in the UK and this is where most of your personal data is likely to be processed, in addition to the country you reside in. We may share personal data internally within RICS around the world to maintain our professional standards and memberships globally. Where this is done we will do so in accordance with the law.

  • The products and services provided by RICS are intended for individuals over the age of 16. If you are aged 16 or under‚ please get your parent/guardian's permission before you provide us with personal information.

  • We use cookies on our websites to manage the operation and performance of our sites.

    This site (and all websites which are covered by this Policy) incorporates the use of cookies. Cookies are small data text files that are placed on your computer when you visit a website. Cookies help to make websites work efficiently and provide us with information about how our website is used.

    When you visit and other RICS websites linked to this Policy, we use cookies to enable us to collect standard internet log information and visit behavioural patterns. Cookies automatically identify your browser whenever you interact with our site. This helps us to make our site more responsive to your needs and to track and manage information relevant to your specific interests. In this way we can tailor our site to you, deliver a better and more personalised service and track the pages on our site that you are interested in.
    Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how you can manage or delete them, visit
    You can opt out of being tracked by Google Analytics across all websites by visiting

    This website uses the Google AdWords remarketing service to advertise on third party websites (including Google) to previous visitors to our site. It could mean that we advertise to previous visitors who haven’t completed a task on our site, for example using the contact form to make an enquiry. This could be in the form of an advertisement on the Google search results page, or a site in the Google Display Network. Third-party vendors, including Google, use cookies to serve ads based on someone’s past visits to the website. Of course, any data collected will be used in accordance with our own privacy policy and Google’s privacy policy.

    At RICS, we are keen to do all we can to engage with our members and make sure they are getting the best service possible from us. One of the ways that we do this is to monitor the open rates of messages. This means we monitor the number of emails we send out that aren't being read or opened in a specified period. We can then remove these email addresses from our emailing list and we don't send you further messages.

    You can set preferences for how Google advertises to you using the Google Ad Preferences page, and if you want to you can opt out of interest-based advertising entirely by cookie settings or permanently using a browser plugin.

    You should note that if you do not accept the cookies or subsequently choose to disable cookies, you may not be able to access all the services on our site. We also note that one of the cookies we use is essential for parts of the site to operate and has already been set.

    Cookies used on

    Cookie Name



    This cookie is used to confirm the user consent for the usage of cookies to track the user journey.


    This cookie is used to identify the user is logged in


    This cookie is set and read by the JavaScript code when the ClickMap functionality or the Activity Map functionality are enabled; it contains information about the previous link that was clicked on by the user


    Cookie used to store a protected page (that a user has requested to access, which requires authentication via login) in order to be correctly redirected to this page after login is successful (backup for request-landingpage-path cookie).


    Identifies the same visitor across different Marketing Cloud Solution


    A cookie used to keeps a number of values (session ID, pc ID, check and disable) to manage how visitors experience Target campaigns


    This cookie is set and read by the JavaScript code to determine if cookies are enabled (simply set to "True")


    This is Adobe Target cookie. A simple test value used to determine if a visitor supports cookies. Set each time a visitor requests a page.


    This is a ShareThis cookie ID set in the domain of the website operator.

    The cookie is used to calculate visitor, session, camapign data and keep track of site usage for the site's analytics report.


    The AMCVS cookie serves as a flag indicating that the session has been initialized


    This cookie is used by the Application Gateway to maintain sticky session


    Stores multiple values used in the tracking to maintain this value for the duration of the browser session.


    Stores information required by the getPercentPageViewed plugin


    Stores the time, in seconds, that the previous page took to load. Expires at the end of the browser session.


    Stores the value of the s.pageName variable as recorded in the previous Adobe Analytics image request. Expires at the end of the browser session.


    Stories values about the scroll depth on the previous page. Expires at the end of the browser session.


    Stores values required by the getPercentPageViewed plugin. Expires at the end of the browser session.


  • This Policy was last reviewed in May 2018. The content of the policy may be reviewed and changed without prior notice, please visit the policy for any changes.

    Please write to the Information Governance Officer if you:

    a) have any questions about how RICS collects and uses your information
    b) want to access the information RICS hold about you
    c) address any concerns about the information you have provided RICS or
    d) have any complaints about how RICS uses your information.

    RICS Information Governance Officer

    55 Colmore Row, Birmingham, B3 2AA

    Email us now