Privacy Policy
Elevate Group
Telcom Group Ltd (trading as “Elevate”) is committed to protecting our customer privacy and takes its responsibility regarding the security of customer information very seriously. We will be clear and transparent about the information we are collecting and what we will do with that information.
This Policy sets out the following:
Elevate is the Data Controller and has an appointed Data Protection Officer (DPO) who can be contacted via email at dpo@elevate.uk. Our registered offices are at NorthStar, 135-141 Oldham Street, Manchester, M4 1LN.
Personal data means any information relating to you which allows us to identify you, such as your name, contact details, reference number, payment details and information about your access to our website.
We may collect personal data from you when you contact us or make a purchase for one of our services with us (either directly or indirectly through our trusted third-party partners) or when you contact us.
Specifically, we may collect the following categories of information:
We do not collect Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data).
We use different methods to collect data from and about you including through:
Your data may be used for the following purposes:
We will only process your personal data where we have a legal basis to do so. The legal basis will depend on the reasons we have collected and need to use your personal data for.
In most cases we will need to process your personal data so we can enter into our contract of service with you during which we will have obtained your consent to do so.
We're serious about our commitment to protecting your privacy so we do not sell any of your personal information to any third parties.
We do, however, share your personal data with certain companies who play an essential part in enabling us to provide our service to you, such as payment service providers, IT professional services providers, system administration providers. We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.
We follow strict security procedures in the storage and disclosure of your personal data, and to protect it against accidental loss, destruction or damage. In addition, we limit access to your personal data to those employees who have a business need to know. They will only process your personal data on our instructions, and they are subject to a duty of confidentiality.
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
Once the retention period expires, Personal Data shall be deleted.
We do not perform any profiling based on personal data that has a legal significant effect. We do not make any decisions about you, using automated means and we do not envisage this changing in the near future. If the situation does change, we will notify you in writing.
We may transfer personal data to a country not in Europe where data subjects’ rights may not be adequately protected or enforceable. Whenever we arrange for international transfers of data overseas we will ensure the suitable arrangements are in place to provide suitable safeguards for the people whose information we transfer. When we appoint overseas data processors we check that suitable arrangements are in place such as European Commission Adequacy Decisions, Standard Contractual Clauses, or other permitted mechanisms. These transfers include:
We will only use your personal data to send you marketing material if we have your consent or a legitimate interest to do so.
If you consent (opt-in) to receiving marketing material from us, you can remove that consent (opt-out) at any time by either, clicking on the ‘unsubscribe’ link that appears in all emails we send. If you don’t want to receive texts from us, you can tell us by contacting us at any time. Otherwise, you can always contact us to update your contact preferences.
You have the following rights concerning your personal data:
Your right | Translation |
The right to be informed | We will tell you in clear and plain language when we are collecting, using or sharing information about you |
The right of access | You have the right to know and see what information we hold on you. A written request is called a “Subject Access Request”. We have to provide information within one month of your request. |
The right to rectification | You have the right to have incorrect or incomplete information corrected within one month. This includes any information we have shared with other companies processing data on our behalf. |
The right to erasure | You can request to be forgotten, but this would not be upheld where we have a right to hold information |
The right to restrict processing | You can ask us to stop using your personal information if you are contesting the accuracy or use of the information. We have to stop processing this information until we have corrected it or established, we have a legal right to use it. |
The right to data portability | You can request certain information is shared with another organisation. This only applies to information that is carried out by automation and doesn’t apply to the information we process. |
The right to object | You can object to us using your information, but this right would normally apply for customers rather than staff. For example, customers objecting to direct marketing. |
Rights in relation to automated decision making and profiling | This applied to decisions made entirely by computers, so this doesn’t really apply to Elevate at present. |
Where we process your personal data based on consent you have the right to withdraw your consent at any time. You can exercise these rights at any time by contacting us at dpo@elevate.uk. You also have a right to lodge a complaint with the Supervisory Authority (Information Commissioner's Office (ICO) in the UK) about us via www.ico.org.uk, casework@ico.org.uk or 0303 123 1113