Privacy Policy
1. UK and EU GDPR
Who we are
We are Commify UK Limited (“Commify”, “us”, “we”, “our”) trading through our associated brands and companies in the Commify Group. We are a limited company registered in England and Wales under registration number 04217280 and we have our registered office at 20 Wollaton Street, Nottingham, NG1 5FW. We are registered with the UK supervisory authority, Information Commissioner’s Office (“ICO”), in relation to our processing of Personal Data under registration number Z5483210.
Where you interact with our brands, please see their own privacy policies for more information about how your personal data is processed when you engage with their services or otherwise interact with them.
What we do
We are in the business of providing business messaging services. We work with a large portfolio of companies helping them to transform their mobile communications with their customers and staff. We provide SMS, voice, web, IP/OTT, email and intelligent multichannel services both on self-serve basis and as tailored solutions to more complex needs through our portfolio of messaging brands. We are committed to protecting the privacy and security of the Personal Data we process about you.
Controller
Unless we notify you otherwise, we are the controller of the Personal Data we process about you. This means that we decide what Personal Data to collect and how to process it.
2. Purpose of this privacy Policy
The purpose of this privacy policy is to explain what Personal Data we collect about you and how we process it. This privacy policy also explains your rights, so please read it carefully. If you have any questions, you can contact us using the information provided below under the ‘How to contact us’ section.
3. Who this privacy Policy applies to
This privacy policy applies to you if:
- You visit our website
- You enquire about our products and/or services
If you visit our website, we will collect information about your engagement with us online via our cookies and similar technologies such as your IP address and geographical location. See our Cookie Policy for more information on our use of cookies and similar technologies.
We also may process your information when you apply for a role with us. See our Job Applicant Privacy Policy for more information on how we use your information during the recruitment process.
4. What Personal Data is
‘Personal Data’ means any information from which someone can be identified either directly or indirectly. For example, you can be identified by your name or an online identifier.
5. Personal Data we collect
The type of Personal Data we collect about you will depend on our relationship with you. For the type of Personal Data we collect see the table below in the section entitled ‘Purposes, lawful bases and retention periods’.
6. How we collect your Personal Data
We collect most of the Personal Data directly from you via our website and your interactions with it.
7. Purposes and lawful bases
We will only use your Personal Data when the law allows. Most commonly, we will use your Personal Data in the following circumstances:
| Categories of individuals | Categories of Personal Data | Purpose of Processing | Lawful Basis |
| Website visitors | IP address, browser type and version, time zone setting and location, and other technology on the devices you use to access this website. | To administer and protect our business and this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data). | Necessary for our legitimate interests (for running our business, provision of administration and IT services, network security, to prevent fraud and in the context of a business reorganisation or group restructuring exercise).Some of this information may also be processed to comply with a legal obligation. |
| Website visitors | IP address, browser type and version, time zone setting and location, and other technology on the devices you use to access this website. Additionally, this may include information regarding how you use our website. | To use data analytics to improve our website, products/services, marketing, customer relationships and experiences. | Necessary for our legitimate interests (to define types of customers for our products and services, to keep our website updated and relevant, to develop our business and inform our marketing strategy). |
8. Sharing your Personal Data
We may also disclose your information to third parties in connection with other purposes set out in this policy.
We will also share your Personal Data within the Commify Group.
9. How long we keep your Personal Data
Commify retains the Personal Data we collect only for as long as necessary to comply with essential services, such as complying legal obligations, resolving disputes, and enforcing our agreements.
10. International Transfers
Your Personal Data may be processed outside of the UK. This is because the organisations we use to provide our service to you are based outside the UK or they use organisations based outside of the UK to support them in providing their services to us.
We have taken appropriate steps to ensure that the Personal Data processed outside the UK has an essentially equivalent level of protection to that guaranteed in the UK. We do this by ensuring that:
- Your Personal Data is only processed in a country which the Secretary of State has confirmed has an adequate level of protection (an adequacy regulation), or
- We enter into an International Data Transfer Agreement (“IDTA”) or Standard Contractual Clauses (SCCs) (with the UK Addendum) with the receiving organisation and adopt supplementary measures, where necessary.
11. Your rights and how to complain
You have certain rights in relation to the processing of your Personal Data, including:
- Right to be informed. You have the right to know what personal data we collect about you, how we use it, for what purpose and in accordance with which lawful basis, who we share it with and how long we keep it. We use our privacy policy to explain this.
- Right of access (commonly known as a “Subject Access Request”). You have the right to receive a copy of the Personal Data we hold about you.
- Right to rectification. You have the right to have any incomplete or inaccurate information we hold about you corrected.
- Right to erasure (commonly known as the right to be forgotten). You have the right to ask us to delete your Personal Data.
- Right to object to processing. You have the right to object to us processing your Personal Data. If you object to us using your Personal Data for marketing purposes, we will stop sending you marketing material.
- Right to restrict processing. You have the right to restrict our use of your Personal Data.
- Right to portability. You have the right to ask us to transfer your Personal Data to another party.
- Automated decision-making. You have the right not to be subject to a decision based solely on automated processing which will significantly affect you. We do not use automated decision-making.
- Right to withdraw consent. If you have provided your consent for us to process your Personal Data for a specific purpose, you have the right to withdraw your consent at any time. If you do withdraw your consent, we will no longer process your information for the purpose(s) you originally agreed to, unless we are permitted by law to do so.
- Right to lodge a complaint. You have the right to lodge a complaint with the relevant supervisory authority, if you are concerned about the way in which we are handling your Personal Data. The supervisory authority in the UK is the Information Commissioner’s Office who can be contacted online at: Contact us | ICO. Or by telephone on 0303 123 1113
How to exercise your rights
If you wish to exercise your rights, you may contact us using the details set out below within the section titled ‘How to contact us’. We may need to request specific information from you to confirm your identity before we can process your request. Once in receipt of this, we will process your request without undue delay and within one month. In some cases, such as with complex requests, it may take us longer than this and, if so, we will keep you updated.
You will not usually need to pay a fee to exercise any of the above rights. However, we may charge a reasonable fee if your request is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.
12. How to contact us
If you wish to contact us in relation to this privacy policy or if you wish to exercise any of your rights outlined above, please contact us as follows:
20 Wollaton St, Nottingham, NG1 5FW
We have also appointed a Data Protection Officer (“DPO”). Our DPO is Evalian Limited and can be contacted as follows:
West Lodge, Leylands Farm, 1 Nobs Crook, Colden Common, Winchester
13. Changes to this privacy policy
We may update this policy (and any supplemental privacy policy), from time to time as shown below. We will notify of the changes where required by applicable law to do so.
Last modified May 2025
14. Privacy policy for Californian residents
Commify offers business communication services to business customers. This Privacy Policy describes Commify’s policies and procedures regarding the collection, use, and disclosure of information when you use our websites or when you register to use our services. By visiting this website, you agree to the collection and use of information in accordance with this Privacy Policy.
Information we collect We collect various types of information from individuals who visit this website
(“Website Visitors”) and individuals who register to use our services (“Customers”), including:
– Personal Information: When expressing an interest in obtaining additional information about Commify’s services or registering to use those services, we request personal contact information, such as your name, employer/organisation name, address, phone number, and email address.
– Billing-Related Information: When purchasing our services, Commify requires you to provide financial qualification and billing information, such as your name and billing address, credit card number, and the number of employees within your organisation that will be using the services. We may also ask you to provide other information, such as the annual revenue of your organisation, number of employees, and/or the industry in which your organisation operates.
– Usage-Related Data: information related to your use of this website as well as your internet browsing history and website-related preferences (such as your language preference).
– Cookies and Tracking Technologies: As you navigate our websites, we may also collect information using website technology software and tools, which is standard practice for most websites. For example, the software tracks the action you take on this website (such as the web pages you viewed and the links you clicked). Information might also be collected through cookies and other internet tracking technologies. For more information, please see our Cookie Policy.
How we use personal information and non-personal Information
We use personal and non-personal (non-identifiable) information to:
– operate this website, improve website content and provide our services. For example, if you fill out a “Contact Me” form on this website, we will use the information you provided to contact you about your interest in our services.
– communicate with you.
– process transactions (Commify uses credit card information solely to check the financial qualifications of prospective customers and to collect payment for the services).
– personalize your website experience.
– market our services to you or others. For example, we may use information you provide to contact you to further discuss your interest in our services or to send you information regarding Commify and/or its partners, such as information about promotions or events.
– protect this website and our computing systems from external cybersecurity threats.
Website navigational information
As explained above in the Information we collect section, Commify may also collect information using website technology software, which is standard practice for most websites. These tools, which include cookies, web beacons and pixels collect information as you navigate a website. For example, when you visit this website, our servers send a cookie to your computer. Cookies can make interactions with this website easier and more relevant to you. For more information, please see our Cookie Policy.
We also use website navigational information to operate and improve this website. We might use website navigational information alone, or in combination with personal information, to provide personalized information to customers and prospective customers.
Sharing and disclosure of information
Commify might share personal information about our customers – which might include personal information about employees or agents of our customers – with third parties such as service providers.
We share personal information with our service providers for these purposes:
a. so the service providers can assist us in operating our services.
b. so the service providers can contact our customers and website visitors who have provided their contact information.
Third Parties/Partners Commify does not share, sell, or rent any personal information with third parties for their own independent promotional purposes. But from time to time, Commify might partner with other companies to jointly offer products or services. If you purchase or specifically express interest in a jointly offered product or service, Commify might share your personal information (as described above) and other information about your purchase or expression of interest with our joint promotion partner(s).
Commify does not control our business partners’ use of the information we collect, and their use of the information will be in accordance with their own privacy policies. If you do not wish for your information to be shared in this manner, you may opt not to purchase or specifically express interest in a jointly offered product or service.
Commify uses a third-party service provider to manage credit card processing in a PCI DSS compliant manner. This service provider is not permitted to store, retain, or use billing information except for the sole purpose of credit card processing on our behalf.
Disclosure required by law or to protect the company
Commify reserves the right to use or disclose personal and other information, if required by law or if we reasonably believe disclosing such information is necessary to protect our legal rights, our property, our employees or our assets. We might also use and disclose information to comply with a judicial proceeding, court order, or other legal process.
Security
We use appropriate administrative, technical, and physical security measures to protect customer data.
Your privacy-related rights If you are a consumer who has provided your personal information via this website, you might have the following rights, depending on where you reside:
– Right to Know: You can request information about the personal information we have collected about you.
– Right to Correct or Update: You can make changes to the personal information that we have collected from you or about you.
– Right to Delete: You can request that we delete your personal information.
– Right to Opt-Out: You can opt-out of the sale of your personal information under applicable privacy law – however, please be aware that Commify does not sell any personal information that its website visitors might submit. You can also manage your receipt of marketing communications by clicking on the “unsubscribe” link located at the bottom of Commify marketing emails.
Please note that our customers cannot opt out of receiving transactional emails related to their account or the services they have purchased.
– Right to Non-Discrimination: You will not be discriminated against for exercising any of these rights.
How to exercise your privacy-related rights
To exercise your rights, please contact us at [email protected] or in writing to Commify Group, 20 Wollaton Street, Nottingham, UK, NG1 5FW. You will be required to verify your identity by providing proof of your identity. We will respond to your request within 30 days.
Changes to this privacy policy
We may update this Privacy Policy from time to time. We will notify you of any material changes to this Privacy Policy and provide the opportunity to opt-out of having our personal information used for new purposes.
15. Privacy policy for Australian residents
Commify is committed to providing quality services to you and this policy outlines our ongoing obligations to you in respect of how we manage your Personal Information.
We have adopted the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth) (the Privacy Act). The APPs govern the way in which we collect, use, disclose, store, secure and dispose of your Personal Information.
A copy of the Australian Privacy Principles may be obtained from the website of The Office of the Australian Information Commissioner at https://www.oaic.gov.au/.
What is Personal Information and why do we collect it?
Personal Information is information or an opinion that identifies an individual. Examples of Personal Information we collect includes names, addresses, email addresses, phone and facsimile numbers.
This Personal Information is obtained in many ways including correspondence, by telephone and facsimile, by email, from your website, from media and publications, from other publicly available sources, from cookies and from third parties. We don’t guarantee website links or policy of authorised third parties.
We collect your Personal Information for the primary purpose of providing our services to you, providing information to our clients and marketing. We may also use your Personal Information for secondary purposes closely related to the primary purpose, in circumstances where you would reasonably expect such use or disclosure. You may unsubscribe from our mailing/marketing lists at any time by contacting us in writing.
When we collect Personal Information we will, where appropriate and where possible, explain to you why we are collecting the information and how we plan to use it.
Sensitive Information
Sensitive information is defined in the Privacy Act to include information or opinion about such things as an individual’s racial or ethnic origin, political opinions, membership of a political association, religious or philosophical beliefs, membership of a trade union or other professional body, criminal record or health information.
Sensitive information will be used by us only:
• For the primary purpose for which it was obtained
• For a secondary purpose that is directly related to the primary purpose
• With your consent; or where required or authorised by law.
Third Parties
Where reasonable and practicable to do so, we will collect your Personal Information only from you. However, in some circumstances we may be provided with information by third parties. In such a case we will take reasonable steps to ensure that you are made aware of the information provided to us by the third party.
Disclosure of Personal Information
Your Personal Information may be disclosed in a number of circumstances including the following:
• Third parties where you consent to the use or disclosure; and
• Where required or authorised by law.
Security of Personal Information
Your Personal Information is stored in a manner that reasonably protects it from misuse and loss and from unauthorized access, modification or disclosure.
When your Personal Information is no longer needed for the purpose for which it was obtained, we will take reasonable steps to destroy or permanently de-identify your Personal Information. However, most of the Personal Information is or will be stored in client files which will be kept by us for a minimum of 7 years.
Access to your Personal Information
You may access the Personal Information we hold about you and to update and/or correct it, subject to certain exceptions. If you wish to access your Personal Information, please contact us in writing.
Commify will not charge any fee for your access request, but may charge an administrative fee for providing a copy of your Personal Information.
In order to protect your Personal Information we may require identification from you before releasing the requested information.
Maintaining the Quality of your Personal Information
It is important to us that your Personal Information is up to date. We will take reasonable steps to make sure that your Personal Information is accurate, complete and up-to-date. If you find that the information we have is not up to date or is inaccurate, please advise us as soon as practicable so we can update our records and ensure we can continue to provide quality services to you.
Policy Updates
This Policy may change from time to time and is available on our website.
Privacy Policy Complaints and Enquiries
If you have any queries or complaints about our Privacy Policy please contact us at:
or in writing to: Commify Group, 20 Wollaton Street, Nottingham, UK, NG1 5FW.
You will be required to verify your identity by providing proof of your identity. We will respond to your request within 30 days.