PRIVACY POLICY

Privacy Policy

Overview

veSpace International Limited (“we”, “us”) is strongly committed to protecting personal data. This Privacy Policy explains why and how we collect and use personal data and informs individuals of their rights.

This Policy applies only to personal data provided via our website, email, phone, or text in connection with our services.

We may use personal data for any purpose described here or as otherwise stated at the point of collection.

Compliance

We comply fully with UK Data Protection Legislation, including the UK GDPR and Data Protection Act 2018 (DPA), acting as a Data Controller for the personal data covered by this Policy.

When providing services to customers who instruct us to process data on their behalf, we act as Data Processor. Our customers are the Data Controllers with their own privacy policies covering their data use.

We have appointed a Data Protection Officer (DPO) who approves any changes to this policy.

What Data Do We Collect?

Personal data relates to identified or identifiable individuals. We collect data to improve our services and fulfil commercial agreements, minimising collection and storage where possible.

We collect the following personal (and non-personal) data:

Contact name
Company name
Landline phone number
Mobile phone number
Email address
Address

Children’s Data

We recognise the importance of protecting the personal data of children. Where our services involve children under the age of 18, we apply additional safeguards to ensure their privacy and safety.

Parental/Guardian Consent

We require verifiable consent from a parent or legal guardian before collecting, processing, or storing any child’s personal data.
Parents/guardians may withdraw consent at any time, and we will promptly delete the child’s data unless retention is required by law.

Data We Collect About Children

Depending on the nature of the service, we may collect:

Child’s name and age
Parent/guardian contact details
Information necessary for participation in activities or services (e.g., dietary needs, medical notes relevant to safety)

We minimise collection to only what is strictly necessary and avoid gathering sensitive data unless essential for safeguarding or service delivery.

Use of Children’s Data

Children’s personal data is used only to:

Deliver contracted services safely and appropriately
Communicate with parents/guardians
Comply with safeguarding and legal obligations

We do not use children’s data for marketing, profiling, or unrelated commercial purposes.

Sharing of Children’s Data

We will not share children’s personal data with third parties except:

With parental/guardian consent
Where required by law or safeguarding authorities
With vetted service providers under strict contractual obligations to protect children’s data

Children’s Rights

Children, through their parents/guardians, have the same rights under UK GDPR as adults, including:

Right of access
Right to rectification
Right to erasure
Right to restrict processing
Right to data portability
Right to object

Requests must be made by the parent/guardian, and we will respond in accordance with statutory timelines.

Data Retention for Children

Children’s personal data is retained only for as long as necessary to provide services or meet legal obligations. Once no longer required, data will be securely deleted.

How Do We Use Your Data?

We use personal data as necessary to:

Personalise content, business information, or user experience
Contact you regarding the services we provide
Create and manage customer accounts
Comply with legal and regulatory obligations

Personal data is shared only when legally permitted. Contractual and security measures protect your data when shared, ensuring compliance with our standards.

Third Parties

With your prior written consent, we may share your data with third-party service providers to fulfil our contract with you.

These parties are contractually obliged to protect your data, maintain confidentiality, and use it solely for agreed purposes.

We may also disclose personal data to authorized third parties such as police or regulatory bodies when required by law or to investigate unlawful activity, without further notice to you.

Data Deletion

We retain personal data only as long as necessary to meet contractual or legal obligations.

You have the right to request deletion of your data as described in the Right to Erasure section.

Personal data held by us is reviewed at least every six months. Data will be deleted when no longer required for contractual purposes or, where acting as a Data Processor, six months after processing completion.

Data Security

We keep your personal data secure in our systems throughout our relationship.

This includes data collected via applications, emails, phone calls, website usage, and other interactions.

We only process or share your personal data as necessary to fulfil contractual obligations.

Cookies

By using our website, you consent to our use of cookies. For details, see our Cookie Policy.

Your Rights

You have several rights under data protection regulations:

Right to Be Informed

You have the right to be informed about the collection and use of your data, detailed in our UK GDPR Policy.

Right of Access

You may request confirmation and access to your personal data and supplementary information.

Initial requests are free; repeated or excessive requests may incur a fee.
Requests will be fulfilled within one month (extendable by two months for complex cases).
Identity verification will be required before processing.

Right to Rectification

You can request correction of inaccurate or incomplete data. We will verify accuracy and either rectify or explain why no change is needed. Fees may apply for manifestly unfounded or excessive requests.

Right to Erasure (“Right to Be Forgotten”)

You may request deletion of personal data if: