Privacy Policy

Return to homepage

Amelio Tech Ltd, a company registered in England and Wales, with company number 15214053 (we, us or our), understands that protecting your personal data is important. This Privacy Policy sets out our commitment to protecting the privacy of personal data provided to us, or otherwise collected by us when providing our website and care management application (Services) or when otherwise interacting with you.

It is important that you read this Privacy Policy together with any other detailed privacy notices we may provide when we are collecting or processing personal data about you so that you understand our privacy practices in relation to your data.

The information we collect

Personal data is information that relates to an identified or identifiable individual.

We may collect, use, store and disclose different kinds of personal data about you, including:

Identity Data: such as first name, last name and date of birth.
Contact Data: such as billing address, email address and telephone numbers.
Financial Data: such as bank account and payment card details.
Transaction Data: including details about payments from you to us and other details of products and services you have purchased from us.
Technical and Usage Data: including internet protocol (IP) address, your login data, your browser session and geo-location data, device and network information, statistics on page views and sessions, acquisition sources, search queries and/or browsing behaviour, information about your access and use of our website, including through the use of Internet cookies, your communications with our website, the type of browser you are using, the type of operating system you are using and the domain name of your Internet service provider.
Profile Data: such as your username and password for our Services, support requests you have made, content you post, send, receive and share through our platform, feedback and survey responses.
Interaction Data: information you provide to us when you participate in any interactive features of our Services, including surveys, contests, promotions, activities or events.
Professional data: where you are a worker of ours or applying for a role with us, including your professional history such as previous positions and professional experience.

Special Categories of Personal Data: This includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data. We do not actively request special categories of data about you, nor do we collect any information about criminal convictions and offences. If at any time we need to collect special categories of data about you, we will only collect it and use it as required or authorised by law.

How we collect personal data

We collect personal data in several ways:

Directly: when you log into our application, use the ‘contact us’ form, request assistance via email or over the telephone.

Indirectly: when you use our website, interact with us by email or phone, or make online enquiries.

From third parties: for example, from your employer if they invite you to access our Services, or from analytics and cookie providers (see the “Cookies” section for more details).

End User Data

Where your personal data is input into our Services, or where our Services are made available to you through a third party (e.g. your employer or healthcare provider), that business is the controller of the personal data (End User Data), and we act as a processor on their behalf. The controller is responsible for complying with any laws requiring notice, disclosure, or your consent. This means End User Data is not covered by this Privacy Policy, and you should refer to the controller’s privacy policy for more information.

Purposes and legal bases for processing

We only process your personal data where we have a legal basis to do so. Below is a breakdown of the purposes and the associated data types and legal justifications:

To enable you to access and use our applications and provide our Services to you, we process your Identity Data, Contact Data, and Transaction Data. This processing is necessary for the performance of a contract with you.
To contact and communicate with you about our Services, including responding to your support requests or other enquiries, we process your Identity Data, Contact Data, and Profile Data. This is also based on performance of a contract with you.
To respond to enquiries made via our website, we process your Identity Data and Contact Data. We rely on our legitimate interests for this—to ensure we provide the best client experience we can.
For internal record keeping, administration, invoicing, and billing, we use your Identity Data, Contact Data, Financial Data, and Transaction Data. This is based on:
- Performance of a contract
- Compliance with legal obligations
- Legitimate interests, such as recovering debts and keeping you informed of administrative changes.
For analytics, market research and business development, including operating and improving our Services and platforms, we use Profile Data and Technical and Usage Data. This processing relies on our legitimate interests to grow our business and enhance our Services.
If you’ve applied for a job with us, we process your Identity Data, Contact Data, and Professional Data based on our legitimate interests in reviewing your application.
Where we are required by law to process your personal data, we will process all relevant personal data under our legal obligations.
Where we process data based on consent, you may withdraw your consent at any time. If we are relying on a legitimate interest and you object, it may affect our ability to provide Services.

Our disclosures of personal data to third parties

We may disclose personal data to:

Our employees, contractors and related entities
IT service providers, data storage, web-hosting and server providers (e.g. Oracle, Workday, Microsoft Azure)
Professional advisers, bankers, auditors, insurers and brokers
Business partners or agents (existing or prospective)
Third parties if our business or assets are sold or transferred
Courts or authorities in cases of unpaid debts
Courts, regulators or law enforcement if required by law
Other third parties as permitted or required by law (e.g. a summons)

Overseas transfers

Some third parties may store or access your data outside the UK. Where this happens, we use appropriate safeguards, including:

Only transferring data to countries recognised as having adequate protections
Using standard contractual clauses in our agreements

Data retention

We retain your data only as long as needed for the purposes for which it was collected, including legal, tax, accounting or reporting obligations. In some cases, we may retain it for longer if there is a complaint or a risk of litigation.

We determine the retention period based on:

Amount, nature and sensitivity of the data
Risk of harm from unauthorised use
Purpose of processing and whether it can be fulfilled in other ways
Applicable legal requirements

Your rights and controlling your personal data

Your choice: By using our Services, you consent to our collection and use of your data as set out in this Privacy Policy. You can choose not to provide personal data, but this may limit our ability to provide Services to you.

Third-party data: If you give us data about someone else, you must have their consent.

Access and control: You can request access to your data, request corrections or deletions, restrict processing, object to automated decisions, and request data portability.

Unsubscribe: To opt out of communications (including marketing), use the opt-out tools provided or contact us.

Withdraw consent: If you withdraw consent, we may not be able to offer certain products or services.

Complaints: Please contact us with complaints. You also have the right to raise concerns with the UK’s Information Commissioner’s Office (ICO), but we’d appreciate a chance to resolve any issue first.

Storage and security

We implement suitable technical and organisational measures to safeguard your data from misuse, interference, loss, unauthorised access or disclosure. However, data transmission over the internet is at your own risk—we cannot guarantee its security.

Cookies

We may use cookies to improve your experience. These store your preferences but do not identify you unless you submit personal data. Where legally required, we will obtain your consent before using non-essential cookies.

Links to other websites

We are not responsible for the privacy practices of websites linked from our site. They are not governed by this Privacy Policy.

Personal data from social network accounts

If you connect your account with a social network (e.g., Google), we collect personal data based on your social media privacy settings. This may include name, ID, username, handle, profile picture, gender, age, language, and your list of followers/friends.

We use this data to:

Create your profile in our application
Provide our Services
Give you updates on social platforms if you agree (we won’t post without permission)

Use of geo-localisation data

We may collect your location through our mobile app for the following purposes:

Service optimisation
Analytics and business intelligence
User support
Feature development
Security and safety
Fraud prevention and detection
As permitted by law

We collect this even if the app is running in the background. You can turn off location sharing in your settings, but doing so may affect your access to our Services.

Amendments

We may update this Privacy Policy from time to time. Significant changes will be communicated via your contact details and published on our website.

For any questions or notices, please contact our Data Protection Officer:

Amelio Tech Ltd
Company number: 15214053
Data Protection Officer or Data Privacy Manager: matt.deacon-smith@amelio.tech
Last updated: 8th November 2024