Privacy notice
1.1 This Privacy Notice sets out how Chaser Technologies Limited, registered in England with company number 08517987 (collectively referred to as "Chaser", "we", "us", "our") processes your Personal Data, how we use that information, how long we keep it for and other relevant information about your Personal Data and your rights. Our registered address is 124 City Road, London, England, EC1V 2NX. Chaser is registered with the Information Commissioner's Office, under registration reference ZA068741.
1.2 For most of the processing described in this Privacy Notice, Chaser is the data controller. If you have any questions related to this Privacy Notice or how Chaser process your Personal Data please contact us using the details below:
By email: privacy@chaser.io
By phone: +44 20 8157 2115
By Post: 124 City Road, London, England, EC1V 2NX
1.3 Please read this Privacy Notice as it explains important information on who we are and how and why we collect, store, use and share your Personal Data. It also explains the rights you have in relation to your Personal Data and how to contact us or a relevant regulator in the event you have a complaint.
1.4 Given the nature of our website, we do not expect to collect the Personal Data of anyone under 18 years old. If you are aware that any Personal Data of anyone under 18 years old has been shared with our website please let us know so that we can delete that data.
1.5 If you would like this Privacy Notice in another format (for example, audio, large print, braille), please contact us using the details provided in the "How to contact us" section below.
1.6 Our website may contain links to other third-party websites which are provided for your convenience, but which are outside our control and not covered by this Privacy Notice. If you access these other sites via the links provided, the operators of these sites may also gather information about you in accordance with their own separate privacy notices. We therefore recommend that you check the privacy notices and security policies and procedures of each and every other website that you visit.
1.7 This Privacy Notice covers our Personal Data processing to the extent we are a data controller. Please note that as a software as a service provider we may process Personal Data on behalf of our customers who are data controllers, which makes us a data processor. Where we process Personal Data on our customers' behalf and on their instructions in this way, this activity is not covered by this notice, and you should review the terms of our customers' relevant Privacy Notices for more information about how your Personal Data is processed by them.
1.8 If you sign up to our Accounts Receivables Support and Services, when you correspond with us we may process limited business contact information (name, business email address, job title and business telephone number and authorised login) which is subject to this Privacy Notice.
2. Key terms
To help you understand this Privacy Notice and how Personal Data is used, we have explained below some key terms that you may come across when reading this Privacy Notice or when dealing with Personal Data more generally:
| Term | Definition |
|---|---|
| Data controller | An entity which, alone or jointly with others, determines the purposes and means of the processing of Personal Data. |
| Data processor | An entity which processes Personal Data on behalf of the data controller. |
| Data Protection Laws | UK GDPR, EU GDPR, Data Protection Act 2018, Data (Use and Access) Act 2025, Privacy and Electronic Communication Regulations 2003, any successor or replacement legislation, and any other applicable data protection laws. |
| EU GDPR | EU's General Data Protection Regulation (Regulation (EU) 2016/679). |
| ICO | Information Commissioner's Office (the UK data protection regulator), or any successor, replacement, or equivalent supervisory authority from time to time. |
| Personal Data | Any information relating to an identified or identifiable individual (also known as a 'data subject'). |
| Processing, process, processes or processed | Any operation or set of operations which is performed on Personal Data or on sets of Personal Data. |
| Special Category Data | Personal Data that is provided with extra protection under Data Protection Laws, including data that reveals racial or ethnic origin, political opinions, religious beliefs, philosophical beliefs or trade union membership, genetic data, biometric data (where used for identification purposes), data concerning health, sex life, or sexual orientation, as updated from time-to-time by Data Protection Laws. |
| UK GDPR | General Data Protection Regulation, Regulation (EU) 2016/679, as it forms part of domestic law in the United Kingdom by virtue of section 3 of the European Union (Withdrawal) Act 2018. |
3. Data protection principles
We will comply with the following data protection principles when processing Personal Data. This means that we will: process it fairly, lawfully and in a transparent manner and be accountable for the way in which we use your data; collect it only for specified, explicit and legitimate purposes (and will not process it in a way that is incompatible with that purpose), and only process it if it is adequate, and necessary for the relevant purpose; process only what is necessary (in relation to the purposes for which the Personal Data is processed); keep it accurate and up to date, and take reasonable steps to ensure that inaccurate Personal Data is deleted or corrected without delay; retain it for no longer than is necessary for the purposes for which it was processed; and take appropriate technical and organisational measures to ensure that Personal Data is kept secure and protected against unauthorised or unlawful processing, and against accidental loss, destruction or damage.
4. What personal data do we collect?
The Personal Data we collect about you depends on the particular services you engage with. We may collect the following Personal Data about you: your name and contact information including your email address and telephone number; your job title; your billing information, transaction and payment card or other payment method; your activities on and use of our services; details of any information, feedback or other matters you give to us by phone, email, post or via social media; your contact history and service history; your professional online presence e.g. LinkedIn profile; information about the services we provide to you; your IP address, session counts, page views, device ID, browser and browser plug-ins; any other Personal Data you choose to share with the Chaser team and/or our chatbot; and your credit rating.
5. Why we process your personal data
Data Protection Legislation sets out specific lawful bases for processing personal data. Before we process any of your personal data, we will ensure that we have a lawful basis to do so. This includes one of the following: for the performance of a contract; to comply with a legal obligation; where we have your consent; to protect your vital interests; for tasks carried out in the public interest; and for our legitimate interests, provided these are not overridden by your individual rights and freedoms.
Processing may also be carried out under the "Recognised Legitimate Interests" lawful basis, as introduced by the Data (Use and Access) Act 2025. This includes processing for crime prevention, safeguarding, responding to emergencies and other defined purposes. Where we rely on this basis, we will document our justification and ensure appropriate safeguards are in place.
6. How your personal data is collected
We collect your Personal Data in the following ways: directly, when you enter or send us information, such as when you sign up to our services, send us feedback or liaise with the Chaser team; and indirectly, such as your browsing activity whilst using our services. We may also collect information from third parties such as our commercial partners and payment providers, or a third party with your consent e.g. your bank or building society.
7. If you fail to provide personal data
Where we need to collect Personal Data by law, or under the terms of a contract we have with you, and you fail to provide the data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example to provide you with our services). In this case, we may have to cancel our services you have with us but we will notify you if this is the case at the time.
8. Special category personal data
Where we process Special Category Personal Data, we will also ensure that we are permitted to do so under Data Protection Laws. This applies where it is necessary to do so for the purposes of: carrying out Chaser's obligations under employment law; preventive or occupational medicine; or the assessment of the working capacity of an employee. It also applies for your vital interests; where you have provided explicit consent; where it is necessary for reasons of substantial public interest; equality of opportunity or treatment; preventing or detecting unlawful acts; protecting the public; regulatory requirements; support for individuals with a particular disability or medical condition; safeguarding of children and individuals at risk; where it is necessary for the establishment, exercise or defence of a legal claim; or where it has been made manifestly public by the data subject.
Chaser will not carry out automated decision-making (including profiling) based on any individual's Special Category Data.
9. How will we use your information?
Under data protection law, we can only use your Personal Data if we have a proper reason, or "lawful basis" for processing such data, for example: where you have given your consent; to comply with our legal and regulatory obligations; for the performance of a contract with you or to take steps at your request before entering into a contract; or for our legitimate interests or those of a third party. A legitimate interest is when we have a business or commercial reason to use your Personal Data, so long as this is not overridden by your own rights and interests. We will carry out an assessment when relying on legitimate interests.
The table below explains what we use your Personal Data for and why in more detail.
| What we use your Personal Data for | Our reasons |
|---|---|
| Creating and managing your account with us | To perform our contract with you or to take steps at your request before entering into a contract. |
| Providing services to you | To perform our contract with you or to take steps at your request before entering into a contract. |
| Enforcing legal rights or defending or undertaking legal proceedings | Depending on the circumstances: to comply with our legal and regulatory obligations; or in other cases, for our legitimate interests, i.e. to protect our business, interests and rights. |
| Customising our website and its content to your particular preferences based on a record of your selected non-essential cookies preferences or on your use of our website. | This helps us to provide you with a good experience when you browse our website and use our service. For detailed information on the cookies we use and the purposes for which we use them see our Cookie Policy. We may use your Personal Data with your consent to: provide you with information, or services that you requested from us; allow you to participate in interactive features of our website, when you choose to do so; ensure that content from our website is presented in the most effective manner for you and for your device; and improve our website and services. We may use AI systems to facilitate this; for more information, please visit the 'Automated processing and use of AI' section below for more details. |
| Direct marketing our services to existing and former customers (by email) | Depending on the circumstances: where we are not required to obtain your consent and do not do so, for our legitimate interests (i.e. soft opt in), to provide you with information about our goods and services. Please see our 'Marketing' section below for more details. |
| Communications with you not related to marketing, including about changes to our terms or policies or changes to the products and services or other important notices | Depending on the circumstances: to comply with our legal and regulatory obligations; and in other cases, for our legitimate interests, i.e. to be as efficient as we can so we can deliver the best service to you at the best price. |
| Protecting the security of systems and data used to provide the services | To comply with our legal and regulatory obligations. We may also use your Personal Data to ensure the security of systems and data to a standard that goes beyond our legal obligations, and in those cases our reasons are for our legitimate interests, i.e. to protect systems and data and to prevent and detect criminal activity that could be damaging for you and/or us. |
| Statistical analysis to help us understand our customer base | For our legitimate interests, i.e. to be as efficient as we can so we can deliver the best service to you at the best price. |
| Updating and enhancing customer records | Depending on the circumstances: to perform our contract with you or to take steps at your request before entering into a contract; to comply with our legal and regulatory obligations; where neither of the above apply, for our legitimate interests, e.g. making sure that we can keep in touch with our customers about existing orders and new products. |
| Disclosures and other activities necessary to comply with legal and regulatory obligations that apply to our business, e.g. to record and demonstrate evidence of your consents where relevant | To comply with our legal and regulatory obligations. |
| To share your Personal Data with members of our group and third parties that will or may take control or ownership of some or all of our business (and professional advisors acting on our or their behalf) in connection with a significant corporate transaction or restructuring, including a merger, acquisition, asset sale, initial public offering or in the event of our insolvency. In such cases information will be anonymised where possible and only shared where necessary. | Depending on the circumstances: to comply with our legal and regulatory obligations; or in other cases, for our legitimate interests, i.e. to protect, realise or grow the value in our business and assets. |
| To collect and collate market research from your experiences | For our legitimate interests, to improve our products and services. |
10. How long will we keep your information?
We will not keep your Personal Data for longer than we need it for the purpose for which it was collected, including for the purposes of satisfying any legal, regulatory, tax, accounting, or reporting requirements. In most cases, this means that we will retain your Personal Data for up to 6-7 years after our relationship with you has ended. This reflects the applicable statutory limitation periods, during which legal claims may be brought.
Where we need to retain information for a longer period, for example to investigate or defend legal claims, to maintain appropriate accounting records, or to meet our obligations under applicable legal, regulatory, tax, accounting or other requirements, we will only do so where strictly necessary and in accordance with applicable data protection laws. Once the relevant retention period has expired, we will securely delete or anonymise your Personal Data.
For further information on our retention periods, please reach out to us via our contact details below (see "How to contact us").
11. Marketing
We may use your Personal Data for our legitimate interests in order to provide you with details about our goods, services, business updates and events which we think may be of interest.
You have the right to opt-out of receiving any marketing communications at any time. To opt-out of receiving such information you can: click the unsubscribe button contained in any such communication received; or email us at privacy@chaser.io providing us with your name and contact details.
We may ask you to confirm or update your marketing preferences if you ask us to provide further products or services in the future, or if there are changes in the law, regulation, or the structure of our business.
We will always treat your Personal Data with the utmost respect and never share it with third parties for marketing purposes.
12. Monitoring and recording
We may monitor and record communications with you (such as telephone communications and emails) for the purpose of quality assurance, training, fraud prevention and compliance as permitted under applicable law.
We may use Artificial Intelligence (AI) solutions to record calls with the primary purpose of improving our customer service interactions and for record-keeping purposes. The AI technology helps us analyse and enhance the quality of our communications, ensuring that we provide the best possible service to our customers.
13. Automated processing and use of AI
We use AI to assist with customer service and provide information to you. When you interact with our chatbot, or contact us by email or by web forms, we may collect and process Personal Data such as your name, contact details, order details, and any other information you provide during the conversation and use AI to make the customer service process more efficient. The purpose of this processing is to enhance your experience and provide you with accurate and timely responses to frequently asked questions and to automate certain responses. This may constitute automated decision-making without a significant legal effect on you. The legal basis for this processing is our legitimate interest in improving our services and ensuring effective communication with our customers. We use artificial intelligence to generate responses from our defined knowledge bank. You can ask to speak to a human at any point if you are using live chat, our chatbot or web forms.
We are committed to protecting your Personal Data. The information collected through AI call recording and our chatbot is stored securely and access is limited to authorised personnel only. We have implemented appropriate physical, technical, and organisational measures to safeguard your data against accidental loss, unauthorised access, use, alteration, or disclosure.
If further to undertaking a credit check you receive a low credit score, we reserve the right not to supply you with goods or services on credit and/or require upfront payment for the goods or services you wish to purchase. We will make sure there is a human in the loop before finalising such a decision.
If you have any questions or concerns about how we use AI solutions, or if you wish to exercise any of your rights, please contact our Data Protection Lead at privacy@chaser.io.
14. Who we share your personal data with
We routinely share Personal Data with: third parties we use to help deliver our products and services to you, e.g. our debt collection service provider; our call recording service provider; payment service providers; IT services providers; other third parties we use to help us run our business, e.g. marketing agencies or website hosts; third parties approved by you, e.g. third party payment providers; our insurers and brokers; and our banks.
We only allow those organisations to handle your Personal Data if we are satisfied they take appropriate measures to protect your Personal Data. We also impose contractual obligations on them to ensure they can only use your Personal Data to provide services to us and to you.
We or the third parties mentioned above occasionally also share Personal Data with: our and their external auditors, e.g. in relation to the audit of our or their accounts, in which case the recipient of the information will be bound by confidentiality obligations; our and their professional advisors (such as lawyers and other advisors), in which case the recipient of the information will be bound by confidentiality obligations; law enforcement agencies, courts, tribunals and regulatory bodies to comply with our legal and regulatory obligations; other parties that have or may acquire control or ownership of our business (and our or their professional advisers) in connection with a significant corporate transaction or restructuring, including a merger, acquisition, asset sale, initial public offering or in the event of our insolvency. Usually, information will be anonymised but this may not always be possible. The recipient of any of your Personal Data will be bound by confidentiality obligations.
15. Transfers of personal data
We may transfer your Personal Data to service providers that carry out certain functions on our behalf (for example, if a product is being shipped overseas). Some of the organisations to which we may transfer your Personal Data are situated outside of the United Kingdom (and, where applicable, the European Economic Area ("EEA")).
Whenever we transfer Personal Data internationally, we comply with the UK (and, where relevant, EEA) Data Protection Laws and ensure appropriate safeguards and data security measures are in place. We will only transfer your Personal Data where: the destination (to which we transfer your Personal Data) is subject to an "adequacy regulation" or "adequacy decision" that ensures an adequate level of protection for Personal Data; appropriate safeguards are in place, together with enforceable rights and effective legal remedies; or a specific exception applies under relevant Data Protection Laws.
Where an "adequacy regulation" or "adequacy decision" does not apply, we rely on legally-approved standard data protection clauses recognised or issued under the UK GDPR and/or EU GDPR. In the event we cannot or choose not to continue to rely on either of these mechanisms at any time, we will not transfer your Personal Data outside the UK/EEA, unless we can do so on the basis of an alternative mechanism or exception provided by UK Data Protection Laws and reflected in an update to this Privacy Notice.
16. Your rights
You have the following rights in relation to your Personal Data which you can exercise free of charge:
| Your right | What this means for you |
|---|---|
| The right to access your personal information | The right to be provided with a copy of your Personal Data, subject to our reasonable and proportionate search and you clarifying the scope of your request. |
| The right to have your information corrected ("right to rectification") | The right to require us to correct any mistakes in your Personal Data. |
| The right to have your information deleted ("right to erasure" or the "right to be forgotten") | The right to require us to delete your Personal Data, in certain circumstances. |
| The right to object | The right to object: at any time to your Personal Data being processed for direct marketing (including profiling); in certain other situations to our continued processing of your Personal Data (e.g., processing carried out for the purpose of our legitimate interests unless there are compelling legitimate grounds for the processing to continue or the processing is required for the establishment, exercise or defence of legal claims). |
| The right to restrict processing | The right to require us to restrict processing of your Personal Data in certain circumstances (e.g., if you contest the accuracy of the data). |
| The right to data portability | The right to receive the Personal Data you provided to us, in a structured, commonly used and machine-readable format and/or transmit that data to a third party, in certain circumstances. |
| The right to withdraw your consent at any time | If you have provided us with consent to use your Personal Data, you have a right to withdraw that consent easily at any time. Please note that withdrawing consent will not affect the lawfulness of our use of your Personal Data in reliance on that consent before it was withdrawn. |
| The right to contest any ADM made about you | If an automated decision has been made about you, you have the opportunity to make representations, request meaningful intervention and contest the automated decision. |
17. Updating your information
We take reasonable steps to ensure your Personal Data remains accurate and up to date. To help us with this, please let us know if any of the Personal Data you have provided to us has changed, using the contact details set out below.
18. How to complain
Please contact us if you have any queries or concerns about our use of your Personal Data (please see our contact details below). We hope that we will be able to resolve any issues you may have and will take steps to acknowledge and respond within 30 days.
If you have a complaint, you can find our complaints form here and complaints policy here.
You may also have the right to lodge a complaint with the ICO. You can contact them at https://ico.org.uk/make-a-complaint/ or telephone: 0303 123 1113 for further information about your rights and how to make a formal complaint.
19. How to contact us
If you would like any further information or have any comments, questions or complaints with respect to our Privacy Notice, please reach out to us by any of the methods shown below:
Telephone: +44 20 8157 2115
Email: privacy@chaser.io
Post: F.A.O Data Protection Lead, Chaser, 124 City Road, London, England, EC1V 2NX
20. Changes to this privacy notice
We aim to meet high standards, and our policies and procedures are reviewed periodically to ensure that they remain appropriate and up to date. From time to time, we may change our security and privacy policies. If and when we have made significant changes to this notice, we will notify you by appropriate means and make the latest version available to you on our website.
This Privacy Notice was last updated May 2026.