Last updated: November 2025
Datasurance is a trading style of Datasurance Limited (“Datasurance”, “we”, “our” and “us”) is committed to protecting the privacy of the users visiting the Datasurance website (the ‘Website’).
This website, cookies and consumer services privacy policy (“Privacy Policy”) describes how and why Datasurance uses personal data about:
You should read this Privacy Policy to understand what we are doing with your personal data, the basis on which we undertake such use, who we share your data with and your rights in relation to your personal data.
“Personal data” is any information that relates to an identifiable natural person. Your name, address and contact details are all examples, if they identify you. The term “process” means any activity relating to personal data, including (for example) its collection, storage, transfer or other use.
We are a so-called “Controller” of your personal data. This means that we make decisions about how and why we process your personal data and because of this, we are responsible for making sure that it is used in accordance with data protection laws. We may also make available other privacy policies or information notices in relation to specific products or business functions. These will apply in conjunction with this Privacy Policy so please ensure that you review each document, as applicable.
We can be contacted by any of the following methods:
Post: Datasurance 5 South Charlotte Street, Edinburgh, EH2 4AN
Email: support@datasurance.co.uk
Phone: 0800 634 6635
Depending on your use of the Website, use of consumer services and any contact with us (whether through the Website or otherwise), we will collect and/or receive the following types of information:
We process your personal data for particular purposes in connection with:
We are required by law to always have a ‘lawful Basis’ (meaning a reason or justification) for processing your personal data. There are a number of lawful basis set out in data protection law but we consider the following to be most relevant to our processing of your personal data:
The table below sets out the purposes for which we process your personal data and the relevant lawful basis on which we rely for that processing. Please note that where we have indicated that our use of your personal data is necessary for us to comply with legal obligations or for us to take steps, at your request, to enter into an arrangement with you (or perform it), and you choose not to provide the relevant personal data, we may not be able to enter into or continue our arrangement with you. Practically, this may mean that you are not able to access certain areas of our Website or receive certain services.
Where our processing of your personal data is based on your consent, you have the right to withdraw your consent at any time. If you do decide to withdraw your consent, we will stop processing your personal data for that purpose unless there is another lawful basis that also applies and which we are relying on – in which case, we will let you know.
Please note that in order to provide certain consumer services products (in particular, those related to your credit rating), your credit reference information will be processing in accordance with the following fair processing notices (such processing is not covered by this notice): We may also convert your personal data into statistical or aggregated form to better protect your privacy, or so that you are not identified or identifiable (thereby creating anonymized data). Anonymized data is not personal data and we may use such data to conduct research and analysis, including to produce statistical research and reports. For example, to help us understand and improve the use of our Website
Datasurance may share your information with the following entities:
Affiliates and Third Parties: Datasurance may share your information with its affiliates—companies that control, are controlled by, or under common control with Datasurance —as well as selected third parties with whom Datasurance works.
These recipients within and outside our group, may be processing your personal data on our behalf as a Service Provider (see below) or they may be processing it for their own purposes as a controller in their own right.
We have summarised below the categories of recipients with whom we are likely to share your personal data.
Service Providers: Datasurance may share your personal data with entities that provide services to it, such as vendors and suppliers that provide Datasurance with technology, services, and/or content for the operation and maintenance of the Website. Access to your personal data by these service providers is limited to the information reasonably necessary for the Service Provider to perform its limited function. Datasurance takes steps to help ensure that Service Providers keep your personal data confidential and comply with Datasurance’s privacy and security requirements.
Disclosure for Legal Reasons or as necessary to protect Datasurance: Datasurance may release personal data to other parties: (1) to comply with valid legal requirements such as laws, regulations, search warrants or court orders; (2) in special cases, such as a physical threat to you or others, a threat to public security, or a threat to Datasurance’s system or network; or (3) cases in which Datasurance believes it is reasonably necessary to investigate or prevent suspected or actual harm, abuse, fraud, or illegal conduct. Changes in Assurance’s corporate structure: If all or any part of Datasurance is sold, merged or otherwise transferred to another entity (including a transfer of Datasurance’s assets), the personal data you have provided to Datasurance may be transferred as part of that transaction.
Datasurance is a UK based company and the majority of our processing of your personal data takes place within the UK. In addition, some of our Service Providers (please see above) may have processing operations in other jurisdictions.
Please be aware that the data protection laws in some jurisdictions may not provide the same level of protection to your personal data as is provided to it under UK laws. Non-UK Users: The Website is intended for users within the United Kingdom. If you use this Website from outside the United Kingdom, please be aware that information you provide to Datasurance or that Datasurance obtains as a result of your use of this Website may be processed and transferred to the United Kingdom and be subject to the laws of the United Kingdom.
We will use your personal data in order to communicate relevant information in relation to your use of the Website, to respond to any queries or complaints you may have and to provide updates in relation to the consumer services and products you receive from us.
In addition, we would like to keep you up to date with other products and services that we provide and which may be of interest to you. Where you have enquired about or purchased consumer services products from us, you will have been given the option to opt out of receiving our newsletter and other marketing communications from us, in relation to similar products and services that we provide. Where you did not choose to opt out, we will send such communications to you via email.
You opt-out of receiving these marketing communications at any time by either contacting us (please see the section ‘HOW CAN YOU CONTACT US?’ above) or following the instructions within the relevant communications.
We also use targeting cookies and third party cookies on our Website, which track your browsing habits and tailor advertising to you. Please see the ‘COOKIES’ section below, which explains our use of cookies and how you can amend your cookies preferences.
Datasurance are committed to protecting the security of your personal data and implement appropriate technical and organisational measures taking into account the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of you, as an individual.
We will only retain your personal data for a limited period of time and for no longer than is necessary for the purposes for which we are processing it.
For example, we will typically retain personal data in relation to consumer services customers, for so long as they receive those services and for a period of up to 6 years following cancellation of the services.
In some cases, it may be necessary for us to retain your personal data for different periods. The factors that direct how long we will retain personal data include the following:
What is a Cookie?
Cookies are text files containing small amounts of information which are downloaded to your device when you visit a website. A device can refer to a computer, smartphone, tablet or any other device from which you gain internet access). Cookies are then sent back to the originating website on each subsequent visit, or to another website that recognises that cookie. Cookies are useful because they allow a website to recognise a user’s device.
You can find more information about cookies at: http://www.allaboutcookies.org
For a video about cookies visit:
Cookies do lots of different jobs, like letting you navigate between pages efficiently, remembering your preferences, and generally improve the user experience. They can also help to ensure that adverts you see online are more relevant to you and your interests.
How we use cookies?
The cookies used on the Website have been categorised based on the categories found in the ICC UK Cookie guide. A list of all the cookies used on the Website, by category, is set out below.
Category 1: Strictly necessary cookies – These cookies enable services you have specifically asked for.
These cookies are essential in order to enable you to move around the Website and use its features, such as accessing secure areas of the Website. Without these cookies certain services cannot be provided.
Category 2: Performance cookies – These cookies collect anonymous information on the pages visited.
These cookies collect information about how visitors use the Website, for instance which pages visitors go to most often, and if they get error messages from web pages. These cookies don’t collect information that identifies a visitor. All information these cookies collect is aggregated and anonymous. It is only used to improve how the Website works.
An example of a performance cookie we use is:
Category 3: Functionality cookies – These cookies remember choices you make to improve your experience.
These cookies allow the Website to remember choices you make (such as your user name or the region you are in) and provide enhanced, more personal features. These cookies can also be used to remember changes you have made to text size, fonts and other parts of web pages that you can customise. They may also be used to provide services you have asked for such as watching a video. The information these cookies collect is anonymised and cannot track your browsing activity on other websites. An example of a functional cookie we use is:
Category 4: Targeting cookies or advertising cookies – These cookies collect information about your browsing habits in order to make advertising relevant to you and your interests.
These are usually third party cookies (see further details below) used to deliver adverts more relevant to you and your interests. They are also used to limit the number of times you see an advertisement as well as help measure the effectiveness of the advertising campaign. They are usually placed by advertising networks with the website operator’s permission. They remember that you have visited the website and this information is shared with other organisations such as advertisers. Quite often targeting or advertising cookies will be linked to site functionality provided by the other organisation.
How to manage cookies
Category 1, 2 and 3 cookies will be set automatically when you visit the Website. Category 4 cookies will be deployed only following your acceptance via the cookies banner.
Whether the cookies are deployed automatically or following your consent, you do not have to accept cookies and you can choose to reject or block the use of cookies at any time, and delete all cookies currently stored on your device.
You can find out how to do this for your particular browser by clicking ‘help’ on your browser’s menu, or by visiting: www.allaboutcookies.org . For example, in Microsoft Internet Explorer 7.0 you can delete cookies by selecting ‘Tools/Internet Options’, clicking on ‘Delete’ in the Browsing History section and then selecting ‘delete cookies’. Options to accept, block or require notification for the use of cookies are found under: ‘Tools/Internet Options/Privacy/Advanced’. Please be aware however that if you chose to block cookies you may not be able to access certain features of the website.
Third Party Cookies
We may allow third party organisations to set cookies using the Website in order to deliver services. Any use of your browser information by these third parties, will be in accordance with their own fair notice documents. Therefore, if you would like more information about the cookies used by these third parties and the processing of your browser data by them, please see their individual privacy policies listed below:
Please be aware that if you use different devices to view and access the Website (e.g. your computer and smartphone), you will need to ensure that each browser on each device is adjusted to suit your cookie preferences. Links to Third Party Websites: The Website may provide links to other websites that might be of interest to you. Datasurance is not responsible for the security or privacy practices of other websites that you use through these links. You should exercise caution when using such websites, and you should read their privacy policies in order to better understand what information they collect about you and how they use it.
Data protection law provides you with a number of rights in relation to your personal data (which are summarized below). You can exercise these rights by contacting – please see the section ‘HOW CAN YOU CONTACT US’ above.
Subject to the requirements of applicable laws and certain limitations or exemption, you have the right to:
Credit report corrections
We want to make sure that your personal information is accurate and up to date. However, please be aware that much of the information held about you by our partnered Credit Referencing Agency, is received from lenders and banks. They are not able to automatically amend this information upon request. They must instead follow a set process of informing the relevant lender and seeking their clarity as to the validity of the data. While this process is undertaken, a note will be placed on your file that a rectification request has been made. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO), which is the UK data protection regulator. More information can be found on the ICO website at https://ico.org.uk/
Datasurance may change this online privacy policy in the future. If we make changes to this online privacy policy, it will post the revised privacy policy and its effective date on this Website.