LAST UPDATED: 20 SEPTEMBER, 2021
Welcome to TrustElevate!
Alternatively, you can write to us at:
The Privacy Officer
20 Air Street, Soho
London, W1B 5DL, UK.
We are registered under the Companies Act, 2006, and our registration is: 08046357.
Our registered office address is: 8 Coldbath Square, London, United Kingdom, EC1R 5HL.
We are registered with the UK Office of the Information Commissioner ICO Number ZA476685.
According to Article 27 of the European Union’s General Data Protection Regulation our representative in the EEA is TrustElevate limited (company registration number C97824), with a registered office at 103, Palazzo Pietro Stiges, Strait Street, Valletta VLT 1436, Malta.
TrustElevate is the provider of age verification and consent technology and the focus of our work is on making the internet safe through supporting businesses that handle children, young people and adults’ data.
What information we collect
We collect your data when you use:
our products and services (including VeriPass, KYC Youth, AgeCheck, and MyFamily);
products and services you access via our website (such as social media data).
We collect the following data:
For businesses that rely on our service, such as banks, social media, gaming platforms and partners that also rely on our service but also offer our service to their enterprise customers, we collect:
Professional information (for businesses and partners only)
We collect information you provide to us, such as:
registration information when setting up an account on our website, for example, your name, child’s date of birth; email address, login data;
form submission information including queries and competitions;
customer service queries information.
Information provided to us by you
Device, location and usage information
We collect and use the data that was picked up when you interacted with our website and products. For analytical and marketing purposes (where we have your consent) we collect usage data such as pages visited, links clicked, geography, language preference, traffic source, bounce rate and more.
We collect technical information such as browser, device data, IP address.
We collect information so that we can:
Manage incoming sales enquiries.
Manage incoming event enquiries.
Manage incoming business partner enquiries.
Deliver our services to you.
To allow us to run and improve operation of our website to ensure good user experience.
Fix technical issues and bugs.
Improve our marketing performance.
Conduct research on our products and services.
Information provided to us by third parties
TrustElevate may need to use information from third parties such as mobile number data, data from fraud prevention and credit checks agencies.
Information from social media and publicly available resources
Where it is in our legitimate interests we may collect publicly available data such as social media data, data from websites, media outlets.
Under our Terms and Conditions we may collect and process personal data in order to deliver services to businesses that partner with us
internal record keeping;
to allow us to monitor usage statistics as a basis for future improvements to relevant website processes;
to enable us to track system use by user - with explicit and informed consent;
to restrict access;
building a database of anonymised data based on your use of the platform for further statistical analysis and product development;
publishing anonymous statistics under the condition that no personally identifiable information can be derived from such statistics;
using the information to improve our products and services;
where you have given your consent for us to send you information and newsletters relating to our products and services using the contact details which you have provided;
for research purposes. We will always seek your consent and may contact you by email, phone, fax or mail. We may use the information to customise the website according to your interests. You can revoke consent and unsubscribe at anytime by clicking the Unsubscribe link or contacting email@example.com.
We will not use this information to contact you with marketing promotions without your permission, and we never share your information with other organisations for marketing purposes. Please see the section How we share your data for more information.
How we use your information
We will only use your personal information for the purpose it was collected. Most commonly, this will include the following circumstances:
When we need to perform services relating to a contract we have entered into with you, this could include:
For application and registration purposes prior to participating in an event or activity.
To support, deliver and administer our services, programmes, events and activities and to update or inform you about them.
To provide updates and information about TrustElevate’s services.
Where it is necessary for our legitimate interests (or those of a third party), and your interests and fundamental rights do not override those interests. Usually, this will include:
For internal record keeping.
To monitor and evaluate the effectiveness of our products (KYC-Youth, MyFamily, AgeCheck, Veripass), programmes, events, and activities, through data tracking, research, statistical analysis, and surveys.
To contact you with updates and information about our services, events, programmes and activities that may be relevant to you where you have not objected to us doing so.
To take photographs, audio and video footage at our events, and activities for use in TrustElevate digital and printed materials - with your consent and we will provide an opt-out at events.
Where you have given us your consent to provide you with information about TrustElevate services, updates, programmes, events, and activities that we think may be relevant to you. We will only send electronic marketing messages in the following circumstances:
When you have consented to this by completing the relevant field on our web forms.
You are a teacher/parent/carer/advisor with whom we have an existing contractual relationship.
If you do not want us to use your data in this way you do not need to provide your consent, and you can use the unsubscribe link in our email communications at any time to opt out.
We may also use your personal information in the following situations:
Where we need to comply with a legal obligation.
Where we need to protect your interests (or someone else's interests).
Where it is required in the public interest or for official purposes.
How we store and protect your data
Your information is held securely in the UK and EEA. Information may be stored and processed in any country in which our agents operate. If your information is transferred outside the UK for these purposes, then we take measures to ensure that your data remains protected at all times to the standard imposed by the UK and EU General Data Protection Regulation. In certain circumstances, courts, law enforcement agencies, regulatory agencies or security authorities in those other countries may be entitled to access your personal data.
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online. TrustElevate websites are maintained on a secure server. All our suppliers and contractors meet the standards we require. Staff training is undertaken regularly, and checks are made by IT staff to ensure data quality is maintained.
TrustElevate operates a stringent Security Policy. The safeguards use encrypted transfer and storage and security protocols and procedures.
All emails received from and destined for Internet hosts are scanned by security systems installed at TrustElevate. The policy covers the following areas:
All messages that contain viruses are quarantined and deleted.
The following are quarantined, checked and then released as appropriate:
Messages that contain attachments that are known virus carriers.
Messages that contain encrypted data, password protected documents or have encrypted signatures.
Messages that contain movies or music files.
Messages that contain words and/or phrases that are common in SPAM messages are scored and may be quarantined.
Messages that contain English profanity.
In most of these cases a warning message is returned to the sender explaining that the message has been quarantined. Quarantine areas within the email security systems at TrustElevate are checked at regular intervals throughout the working day. Messages that are deemed 'good' will be released to their intended destination.
Unfortunately, no data transmission or storage system is completely secure. If you feel that the security of your account or interaction with us has been compromised, please contact us immediately. If such a disclosure does occur, we will contact you as soon as possible to explain what has happened and take all steps required of us to meet our legal obligations.
How we share your data
We check the data you provide against multiple authoritative data sources to verify the data you provide, and we receive a yes/no response. We do not hold or share your data with other businesses. See relevant sections in the privacy policies on the websites of the companies that use our service.
Concerning your use of this website, data you provide and permission will be used as follows:
Delivering and improving our services - age and identity check, verifying parental responsibility and consent.
Monitoring and evaluation in line with this policy.
Due diligence checks.
Law enforcement. TrustElevate might disclose the data for legal purposes such as legal proceedings, search warrant, court order.
Analytics and marketing tools
We use tracking tools to evaluate the effectiveness of our website performance, product and business services.
Third parties service providers and business partners
We are using third parties to help us with improving our services and business performance. Such companies include email communications, SMS messages tools, call tracking tools.
All third-party processors we use are legally obliged to safeguard your information to the same standards in this Policy.
Data will only be shared using secure data transfer methods and stored by us and our partners on secure systems. We and our partners will not use your personal data in any way that would affect you individually.
Any data released into the public domain will only appear in aggregate form and will be fully anonymised to prevent identification at an individual level.
How long do we keep your data?
TrustElevate has a range of obligations to keep the data that you provide. These include ensuring that transactions are processed correctly, identifying fraud, and complying with any laws and rules that apply to us and to our service providers. TrustElevate has a Data Retention Policy - per product - to ensure that your data is not held for longer than is necessary. We hold the information that you provide to us while you are an active, registered user and subscriber, and when you register for our services. Therefore, even if you close your account or membership with us, we may keep certain data to meet our obligations but for no longer than required or permitted by law.
This retention policy will be reviewed each year to ensure it remains fit for purpose and compliant with relevant legislation.
Your rights in controlling your personal data
We will not sell, share, distribute or rent your personal information to third parties unless we have your permission, or are required by law to do so. We may use your personal information to send you promotional information about third parties which we think you may find interesting if you tell us that you wish this to happen and give your consent.
We may publish anonymous statistics under the condition that no personally identifiable information can be derived by third parties from such statistics.
You can ask us to make changes in how your data is handled and we will respond promptly should a request be made. You have the following rights over the personal data about you that we are holding and processing:
Right to be informed. This Policy provides you with information in relation to how your data is processed. This ensures that we are transparent about what we will do with the information you supply to us.
Right of access. You may request details of personal information which we hold about you under the Data Protection Act 2018 and UK General Data Protection Regulation. This is called a Subject Access Request. Further information on this process and how to apply will be accessible from each of the businesses that rely on our service.
Right to request information held is accurate and how to update it. If you believe that any information we are holding on you is incorrect or incomplete, please email us at firstname.lastname@example.org and we will respond as quickly as possible.
Right to erasure. In certain circumstances, you may ask us to delete information about you and stop processing or publishing it (often called the Right to be Forgotten).
Right to object to the processing that is likely to cause you damage or distress. Where you challenge the accuracy or lawful processing of your information, we will consider this.
Right to receive an electronic copy of any information you have consented to us holding known as data portability. You can ask us to provide the personal data about you that you have provided to us and that we hold, securely and in a machine-readable format, so it can be moved, copied or transferred to be used across different services or for you to give to another organisation.
Right to object. We will ensure that we have the right consents in place for sending you information. You can unsubscribe from our mailings and remove your details at any time. If you wish to stop receiving communications from us, you will be able to do so by contacting us at email@example.com.
Rights related to automated decision making. If there is additional profiling based on the information we hold, then you can object to us making decisions about you based on such processing.
A cookie is a small file which asks permission to be placed on your computer's hard drive. Once you agree by clicking the Accept box on the website, the file is added, and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences such as identifying your computer's previous visits to a website, ascertaining the most popular features of a website or enabling an organisation to present specific information to you.
This site, and all other TrustElevate applications use session cookies that allow you to:
carry information across pages of the site;
avoid having to re-enter information;
maintain a shopping basket or booking form;
to allow you, after login, to access information or receive privileges.
No information about you is stored in the session cookie and it is deleted automatically as soon as you close the browser window to leave the site. No other forms of cookies are used, nor do we place any code on your computer.
Links to other websites
If you are dissatisfied with the way TrustElevate has processed your personal data, or if you have any questions or concerns about your data please contact firstname.lastname@example.org. If we are not able to resolve the issue to your satisfaction, you have the right to apply to the Information Commissioner’s Office (ICO). They can be contacted at https://ico.org.uk/make-a-complaint/.
The Information Commissioner’s Office
Changes to this Policy
This privacy notice was last updated on September 20, 2021.