The website www.collectplus.co.uk is operated by PayPoint Network Limited, under company number 02973115 with our registered office at 1 The Boulevard, Shire Park, Welwyn Garden City, Hertfordshire AL7 1EL.
This Privacy Statement tells you what to expect when the PayPoint Group (“PayPoint”) collects personal information about users of the Collect+ website, and applies to the information we collect from that website.
It is intended to give you a better understanding of the data we use and what we do with your data.
For the purpose of this Privacy Notice;
Client means an organisation using a PayPoint service to facilitate the send and receipt of parcels on behalf of their customer (including but is not limited to, the Client carrier).
Customer means a consumer or business that is a customer of a client.
PayPoint means a member of the PayPoint Group.
Member of the Public means individual members of the public that may or may not receive or use Collect+ services.
We will only use your information where we have your consent or we have another lawful reason for using it. These reasons include where we:
We may from time to time disclose information as follows;
PayPoint electronic communication systems are monitored without user consent to: investigate or detect unauthorised use; prevent or detect crime; establish the existence of facts relevant to PayPoint; or ascertain compliance with regulatory practices relevant to the business of PayPoint.
Calls to PayPoint are recorded for operational and training purposes. Calls are not processed against the individual data subject.
When you use our website, we may collect:
Where you provide us with personal data we are the data controller of any such data. This means we are responsible for, and control the processing of, your personal information.
Where information is provided by you in order to undertake parcel tracking services, such as a unique tracking number, we may provide you with a link to our Client carrier’s website for you to continue to track your parcel directly. In such instance, any personal data you have provided will be transferred to that page.
We may share any personal data which we may receive from you in relation to the Collect+ Send service with the relevant Client who provides the service, in order to ensure you are provided with the relevant service.
If you are a Member of the Public, we may collect certain personal data, such as name and email address, from you for the following activities:
In order to provide services or support to Clients, Customers and Members of the Public, PayPoint may use service providers implementing “cloud” based and other technology. These services may include operational, technical and administrative support that is based outside the UK and/or EEA. Any transfer of personal data that is outside the UK and/or EEA will be in accordance with the recommended data transfer models applicable at the time.
PayPoint applies transparency when collecting and using personal information. If you have concerns over the use of your personal data please contact us.
This Privacy Statement are not an exhaustive list of all aspects of PayPoint’s collection and use of personal information. If you wish to have any additional information or explanation please contact us via the contact details set out below.
If you want to request information about our privacy policies or a complaint you can e-mail us at firstname.lastname@example.org or write to us at:
If you have a complaint in relation to the use of your personal data you may contact us in the first instance. If you are still not happy we have resolved the matter you may also contact the Information Commissioner’s Office. Contact details are available on the Information Commissioner’s website.
Individuals can find out if we hold any personal information by making a “subject access request” under the Data Protection Act 2018. If we do hold information about you we will:
To make a request to PayPoint for any personal information we may hold, you need to put the request in writing addressing it to our Data Protection Officer at the address provided below. We cannot disclose information in relation to other data subjects, client information or client customer information under such a request. We will remove information relating to other data subject or other organisation from the information we send you.
If you agree, we will try to deal with your request informally, for example by providing you with the specific information you need over the telephone. If you have e-mailed us we will respond by e-mail. Please note e-mail communications are no guaranteed to be secure due to the nature of the communication method.
The Information Commissioner has provided a guide on its website to data subject access requests. This provides indications of the circumstances when an access request can be limited or declined. For example, a data subject access request does not entitle the data subject to information relating to or confidential to a third party. Data subject access requests are available to individuals but not businesses.
Under the Data Protection Act 2018, you have rights as an individual which you can exercise in relation to the information we hold about you. You can read more about these rights here – https://ico.org.uk/for-the-public/is-my-information-being-handled-correctly/
Any e-mail sent to us, including any attachments, may be monitored and used by us for reasons of security and for monitoring compliance with PayPoint policies. E-mail monitoring or blocking software may also be used. Please be aware that you have a responsibility to ensure that any e-mail you send to us is within the bounds of the law.
When you visit our website www.paypoint.com, or any other PayPoint website, please see the specific website privacy notice for details of cookies and other information specific to that website.
This Privacy Notice does not cover the links within any PayPoint website or documentation linking to other websites. We encourage you to read the privacy statements on any other websites you visit.
PayPoint takes its obligations to keep data secure seriously. It is ISO 27001 accredited and a PCI compliant organisation for the purpose of processing card payment data.
This Privacy Notice shall be governed by and construed in accordance with English law and the parties hereby submit to the exclusive jurisdiction of the English courts in respect of all matters arising in connection herewith.
Information we hold in relation to payments is retained for statutory and regulatory purposes (including tax records). Payment information may be retained for periods of 3 or 5 years or such other period as required by law. Information relating to tax records may be held for 7 years or such other period are required by law. Where we hold information on behalf of a Client, the retention period is as specified by the Client. We can provide more information on retention periods for specific types of information if you email email@example.com. Our retention policy is updated from time to time to reflect changes in our obligations and legal duties.
If you want to request information about our privacy policies or a complaint you can e-mail us at firstname.lastname@example.org or write to us at:Data Protection Officer
If you are not happy with our response to any query or wish to complain you may also contact the Information Commissioner’s Office via https://ico.org.uk/concerns/ or by using the contact details at https://ico.org.uk/global/contact-us/
We may update this Privacy Statement from time to time and in particular as the legal environment in relation to your information changes.
This Privacy Statement was last updated on 3 September 2021