Privacy Notice

We are Accesspoint Legal Services Limited registered at 9 Perseverance Works, Kingsland Road, London, United […]

We are Accesspoint Legal Services Limited registered at 9 Perseverance Works, Kingsland Road, London, United Kingdom, E2 8DD. 

Your privacy is protected by law, and it is also protected by our data security and protection policies. This page gives you an idea of how we use your data and the safeguards we put in place to protect it. 

You can contact our voluntarily appointed Data Protection Officer at simon.ghent@theaccesspoint.ltd if you have any concerns or wish to exercise your rights. 

Our Promises: 

To help you on your journey with us we need data about you.  We make the following promises about how we will treat this data:  

  • We will only collect data about you that is relevant and necessary; 
  • Your data will only be held on systems that meet compliance standards;  
  • Your data will only be accessed by those who need it, and we will minimise the amount of data that is processed, wherever possible; 
  • We will only share data with third parties that meet our own privacy standards unless either you have agreed to share data, we are required to share it by law, or we need to fulfil our service commitments to you through a fulfilment partner; 
  • We will always remember that it is your personal data, not ours. As such we will ensure complete transparency and openness with you wherever possible.   
  • We respect your rights as outlined in the next section and will respond to all requests promptly 

Your Rights: 

You have the following rights over any data we hold about you: 

  • Your right of access – You have the right to ask us for copies of your personal information.  
  • Your right to rectification – You have the right to ask us to rectify personal information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.  
  • Your right to erasure – You have the right to ask us to erase your personal information in certain circumstances.  
  • Your right to restriction of processing – You have the right to ask us to restrict the processing of your personal information in certain circumstances.  
  • Your right to object to processing – You have the right to object to the processing of your personal information in certain circumstances. 
  • Your right to data portability – You have the right to ask that we transfer the personal information you gave us to another organisation, or to you, in certain circumstances. 

You can read more about your rights here

If you would like to uphold your rights, then please contact our Data Protection Officer at simon.ghent@theaccesspoint.ltd  

If you are in dissatisfied with our response you also have the right to lodge a complaint with the Data Protection Authority. This can be done at https://ico.org.uk/concerns/

Collecting Data: 

We try and minimise the data held and the exact data elements we hold will be dependent on your journey with us. Typically, data elements we collect are restricted to: 

  • Your personal contact details – email address, IP Address, phone numbers, business related social media page such as LinkedIn and source of your data;  
  • Your company details – as above but also address, website and other public held information including credit rating and invoicing details if relevant; 
  • Transmitted information – such as emails, texts, messaging, phone call information and recordings, voice mails, email, meeting notes and CVs.  
  • Passively processed data – data that we process as part of our contract with clients where they use our systems for data storage. This will typically include employee and client data that we do not control.  

Calls may also be recorded for information holding, quality and training purposes.  

If you want to know what data about you, we have and how we obtained your data then please contact us.  

Our website and other materials sent to you may contain links to other third-party websites. We may also offer buttons to social media that link to third party services. We’re not responsible for the content or the data privacy these sites provide through their tools or sites. 

Why we process your Data 

The primary legal basis that we process your data is for the fulfilment of Contract. Normally this means a services contract with your employer. 

The information that we collect is essential for us to be able to carry out the services that you require from us effectively.  

Data gained from marketing our services or other business activities are processed for our Legitimate Interests.  

How we use your personal data 

We process information about you to provide you with the services for which you or your employee engages us. 

In general terms our marketing activity is exclusively “Business to Business.”  

If we believe you will benefit from our services, we may use your data to market to you if you have consented us to or if we believe we have a legitimate interest in doing so, fulfil contractual arrangements or for other agreed purposes.  Every email sent from us allows you to opt out of receiving marketing emails from us, except for the purposes of fulfilling any contractual arrangements.  

Calls may be recorded for information holding, quality and training purposes. Our email, document management and website analytics are used for information purposes.  

All our processes are mapped and are subject to various internal policies, procedures and governance, ensuring your data privacy and security remains central to all we do. 

How we Process your data 

Data is processed/stored locally and on encrypted third party hosted cloud services such as Microsoft 365, our CRM system ActionStep, Campaign Monitor for marketing activities and our inhouse system, Mozaique for support services. In addition, we may use Large Language Models (LLM) to help us fulfil some of our services. A full list of our systems can be provided on request. 

Data will be processed in either the UK, EEA/EU data centres or on US based servers that have demonstrated strong data security safeguards. We may also process your data in countries outside the UK or European Union from time to time in other aspects of our business.  

Further to Section 119A of the Data Protection Act 2018 and noting Case C-311/18 in the European Court of Justice, if your data is transferred or processed outside of the UK or EEA, we ensure the safeguards of International Data Transfer Agreements (IDTAs) or Addendums are enforced. Where this is not possible, we ensure that European Standard Contractual Clauses are entered. For data transfer between the USA, we may rely on the Data Privacy Framework or the UK Extension Data Bridge. 

We regularly review suppliers for data security compliance to ensure your data is safe and track where your data is held. 

All our processes are subject to various internal policies to ensure that your data privacy and security is upheld. 

Sharing your Data 

We will not sell your data, nor will we share your information with third party organisations except as part of providing a product or service to you and/or when legally obliged to. It is our policy to use only third-party providers that are bound to maintain appropriate levels of security and confidentiality, to process your personal information only as instructed by us, and to flow those same obligations down to their sub-processors.  

We may also disclose your personal information to law enforcement, regulatory and other government agencies and to professional bodies and other third parties, as required by and/or in accordance with applicable law or regulation including but not limited to prevent fraud or minimise credit risk. 

Our website and other materials sent to you may contain links to other third-party websites. We’re not responsible for the content or your data privacy on these sites. 

Retaining your Data 

Dependant on the data you provide us and for what purpose it is provided we may need to retain your data for up to 7 years following the end of engagement with you or your employee unless obligations to our regulators require otherwise or we are required to remove such data from our records. 

  • We will remove your personal information, if you or your organisation have never purchased from Accesspoint, and are no longer subscribed or engaged with our marketing, after 1 year. 
  • We retain contact details to enable us to send you marketing information for as long as our legitimate interests allow unless you object. 

 If you wish to find out more about your specific data retention, please contact us.  

Legal Compliance 

We seek to uphold our legal obligations as covered by the Data Protection Act 2018, Data Use and Access Act 2025 and the General Data Protection Regulation 2016. Our Data Protection Authority is designated as the Information Commission (IC) formally the Information Commissioners Office (ICO).  This Privacy Policy is reviewed on a regular basis and was last reviewed in August 2025. 

We retain the right to update this notice at any time. We will always document any changes and will publish the latest version on the company’s intranet. 

020 8129 3800