Privacy Policy

1. Introduction

SupportedCX (“SupportedCX”, “we”, “us”, “our”) is committed to protecting your privacy and complying with applicable data protection laws, including the UK General Data Protection Regulation (“UK GDPR”), the Data Protection Act 2018 and the Privacy and Electronic Communications Regulations 2003 (PECR).

This Privacy Policy explains how we collect, use, disclose and protect personal information when you use our website, platform and related services (the “Services”).

This Policy applies to personal data where SupportedCX acts as a data controller. Where we process personal data solely on behalf of customers as a data processor, such processing is governed by our Data Processing Agreement.

2. Personal Data We Collect

Information You Provide

• Name, business email, postal address, phone number and job title
• Account credentials (username and password)
• Billing and payment information (processed via our payment provider)
• Communications with us
• Marketing preferences
• Job application information (where applicable)

Information Collected Automatically

• IP address and device information
• Browser type and operating system
• Usage data (pages visited, time spent, interactions)
• Cookie identifiers and similar technologies

3. Lawful Bases for Processing

We process personal data under the following lawful bases:

• Contractual necessity – to provide our Services.
• Legitimate interests – to operate, improve and secure our Services.
• Legal obligation – to comply with applicable laws.
• Consent – for marketing communications and certain cookies.

Where we rely on consent, you may withdraw it at any time.

4. How We Use Personal Data

• Provide, operate and maintain our Services
• Process payments and manage subscriptions
• Respond to enquiries and provide support
• Send service updates and security notifications
• Improve and personalise user experience
• Detect and prevent fraud or unlawful activity
• Send marketing communications (where permitted by law)

5. How We Share Personal Data

We may share personal data with:

• Service providers (hosting, analytics, payment processors)
• Professional advisers (legal, accounting, insurers)
• Regulators or law enforcement where legally required
• Business transferees in the event of a merger or acquisition

We do not sell personal data.

6. International Data Transfers

Where personal data is transferred outside the United Kingdom, we ensure appropriate safeguards are in place, such as:

• UK adequacy regulations
• International Data Transfer Agreements (IDTAs)
• Standard Contractual Clauses approved by the UK Government

7. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting and reporting obligations.

8. Your Data Protection Rights

Under UK GDPR, you have the right to:

• Access your personal data
• Request correction of inaccurate data
• Request erasure (“right to be forgotten”)
• Restrict or object to processing
• Data portability
• Withdraw consent at any time
• Lodge a complaint with the Information Commissioner’s Office (ICO)

You can contact the ICO at www.ico.org.uk if you believe your data protection rights have been breached.

9. Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, alteration or disclosure. However, no system can be guaranteed to be completely secure.

10. Children

Our Services are not intended for individuals under 16 years of age. We do not knowingly collect personal data from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Where changes are material, we will provide appropriate notice.

12. Contact Us

SupportedCX is the data controller for the purposes of UK data protection law.

If you have any questions or wish to exercise your rights, please contact:

Email: privacy@supportedcx.com