Privacy Policy

Company Name: ES&L Services Ltd
Registered Office: Unit 3, Eastway Business Park, London, W5 7TH
Company Number: 16397673
Contact Email: info@eslservices.co.uk

1. Introduction

ES&L Services Ltd ("we", "us", "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, share, and safeguard your personal information when you visit our website or engage with our services.

2. What Information We Collect

We may collect and process the following types of personal data:

  • Identity & Contact Data: Name, email address, phone number, company name.

  • Technical Data: IP address, browser type, time zone, location, operating system.

  • Usage Data: Information about how you use our website and services.

  • Supplier Data: Business credentials, certifications, onboarding details.

3. How We Use Your Information

We use your data for the following purposes:

  • To respond to your inquiries or provide support

  • To process supplier applications and conduct due diligence

  • To maintain compliance with retailer standards

  • For internal analytics and service improvement

  • To meet legal and regulatory obligations

4. Lawful Basis for Processing

We process your personal data under the following lawful bases:

  • Consent – where you provide it explicitly

  • Contract – to perform pre-contractual or contractual obligations

  • Legitimate Interests – such as ensuring quality onboarding or fraud prevention

  • Legal Obligation – compliance with financial, tax or regulatory duties

5. Sharing Your Information

We may share your data with:

  • IT and hosting service providers

  • Professional advisors (legal, accounting, compliance)

  • Partner retailers for whom we manage supplier relations

  • Government or regulatory bodies if legally required

6. International Transfers

We do not routinely transfer personal data outside the UK. If we do, we will ensure that such transfers comply with UK GDPR standards, such as using Standard Contractual Clauses.

7. Data Security

We implement strict security protocols to prevent unauthorised access or disclosure, including encryption, access controls, and staff training.

8. Data Retention

We retain data only as long as necessary to fulfil its purpose, including legal, accounting, or reporting requirements. Business contact data is retained for up to 7 years after the end of a business relationship unless otherwise required.

9. Your Rights

You have rights under UK GDPR, including:

  • Access to your personal data

  • Rectification of inaccurate data

  • Erasure ("Right to be Forgotten")

  • Restriction of processing

  • Data portability

  • Objection to processing

To exercise your rights, contact info@eslservices.co.uk.

If unsatisfied, you may contact the ICO at ico.org.uk.