Skip to content
O2 Business
Contact us

Privacy policy

Introduction

This Privacy Notice explains how we use personal data. Please read this carefully.

“We” are O2 Business, previously known as the O2 Daisy group, which includes the legal entities Virgin Media Business Limited, Daisy Communications Limited, Spiritel Mobile Ltd, Voice Mobile Ltd, XLN Pay Ltd, XLN Energy Ltd, 4Com Group Limited, Pioneer Business Systems Ltd, HiHi Ltd, Campfire Equipment Rentals Ltd, 4Com Network Services Ltd, 4Com Technologies Limited and 4Com Capital Limited. We are part of the Virgin Media O2 Group.

If you have any related questions, suggestions or concerns, or if you wish to raise a data subject request, please contact us by speaking to our customer support team or sending a message via the website contact forms.

For matters that are specific to data protection, you can also contact our Data Protection Office directly at:

  • Email: [email protected]
  • Post: Lindred House, 20 Lindred Road, Nelson, Brierfield, BB9 5SR
  • Phone: 0800 040 8888

If needed, we can provide this Privacy Notice in large print, coloured paper, in Braille or audio. Please contact us to request these versions.

Our Use Of Personal Data

General Engagement

If you ask us a question, we’ll do our best to provide a reasonable answer, using personal information that’s relevant, such as your contact details, as our fair legitimate interest.

If you subscribe for information, such as our newsletters, business clubs or social media pages, we’ll do our best to provide interesting and relevant content, using personal information that’s relevant, such as your contact details and preferences, as our fair legitimate interest. You can opt out at any time by contacting us.

If you respond to our surveys or feedback forms, we’ll use that data to help improve our services, as our fair legitimate interest. Thank you for helping.

Phone calls are recorded for quality assurance and training purposes, as our fair legitimate interest.

Website Visitors

If you visit our website, online portals, apps or emails, we will use information provided by your computer or device, such as your IP address and browser type, and your use of our systems, to help maintain system operational security and performance, and to help highlight products and services that we believe you might be interested in, as our fair legitimate interest. Where relevant and feasible, the data will be anonymised or pseudonymised before processing.

Direct Marketing

If we are given your phone number and we believe our products and services are relevant to your company, we will contact you about our products and services unless you have opted out with us or you are registered on the Telephone Preference Service (TPS), as a legitimate interest for unsolicited direct marketing phone calls.

If we are given your company address and we believe our products and services are relevant to your company, we will contact you about our products and services unless you have opted out with us, as a legitimate interest for unsolicited direct marketing post.

If we are given your limited company email address, and we believe our products and services are relevant to your company and your role, we will contact you about our products and services unless you have opted out with us, as a legitimate interest for unsolicited direct marketing corporate subscriber emails.

Beyond the purposes listed above, if you enter contractual negotiations or a contract with us, we will use your contact details to contact you (email, SMS, WhatsApp and other relevant online messages) about our similar products and services that are available from our group company, unless you opt out, as a soft-opt-in legitimate interest for marketing. This applies at the group company level.

If you originally provided your consent for marketing, that lawful basis has fairly and transparently transitioned to the lawful bases defined above, maintaining the consistency of your existing preferences, such that the processing is expected.

If you use social media platforms, we will share hashed (one-way encrypted) personal identifiers with those social media platforms, to help create look-a-like, targeting or suppression lists for indirect marketing purposes as a common legitimate interest for indirect marketing.

If you want to opt in or opt out of any marketing, just let us know.

Buying Or Using Our Products And Services

We will process data that is necessary to enter into a contract and to provide our services to your business. If the contract is agreed directly with you, as an individual, our processing will be on the basis of being necessary for that contract. If the contract is agreed with your business, our processing of your personal data will be on the basis of our fair legitimate interest, so that we can provide the services to your business.

We will process and share your personal data with suppliers involved in the management of your products and services, under contractual agreement or where necessary under law, including law enforcement and tax authorities.

If you do not provide personal data that is necessary for our contracts or for legal purposes, we will not agree a contract.

If you buy products and services through our business partners, who sell on our behalf, they are operating as independent data controllers. Their processing is entirely separate from own processing. Please read their privacy notice.

Background Checks

If your company signs up for certain products, we will carry out background checks and credit checks using data available on Companies House, Credit Reference Agencies, and public sources as our legitimate business interest to mitigate any risk.

We may also carry out further credit checks on ‘high usage’ and ‘high risk’ customers during the course of the contract using a Credit Reference Agency, as our legitimate interest to mitigate on-going risk, to assess credit worthiness and for fraud prevention.

This means that your credit records will be searched, along with those of anyone who is financially associated with you such as your spouse or partner. The Credit Reference Agency will keep a record of this search and place a “footprint” on your credit file and collect and maintain information about consumers’ and businesses’ credit behaviour. This includes data sourced from the Electoral Register, fraud prevention, and credit information – including details of previous applications and the conduct of your accounts – and public information such as County Court Judgements, decrees, and bankruptcies.

The Credit Reference Agencies, which operates as independent data controllers and whose own privacy notices apply, that we use are CreditSafe and Experian.

Compliance with legal and regulatory requirements

We will process data where we are under a legal or regulatory requirement to do so, including sharing of data with third parties. This can include regulators (Ofcom, Information Commissioner Officer, and Financial Conduct Authority), courts, tax authorities or law enforcement agencies.

If you ask a regulator, authority or legal representative to contact us, we will share relevant data to help resolve any matters raised.

Recruitment, Employment and Professional Engagement

If you apply to work for us, we will use your contact details and professional details to assess your application to consider entering into a contractual agreement with you, and to conduct necessary legal and regulatory checks, including right-to-work and security provisions. This does not guarantee that an employment contract will be agreed. Once employed, our internal privacy notice will apply to our use of your personal data.

As part of doing business, we engage a wide range of professionals, such as those working as contractors, suppliers, auditors, government authorities and industry peers. We use professionals’ contact details and other professional details as our fair legitimate interest to work with these colleagues.

Data Subject Rights

The data protection legislation provides you with rights in relation to your personal data that we are processing. These include:

  • The right to be informed – The right to be informed how your data is being processed, which is explained in this Privacy Notice.
  • The right to access – The right to request that we provide you with a copy of specific personal data that we are processing.
  • The right to rectification – The right to request that we update your personal data if it is inaccurate or incomplete.
  • The right to erasure – The right to request that we delete your personal data which we are processing.
  • The right to restrict processing – The right to request that we restrict the way we process your personal data.
  • The right to data portability – The right to request that we share your personal data with a nominated third party.
  • The right to object to processing – The right to request to object to our processing of your personal data.
  • To make a complaint – The right to contact us to make a complaint, which we will process in accordance with our complaints management process.

The extent of these rights is limited by law. We will notify you if those limitations are applicable to a specific request.

These rights only extend to a data subject’s personal data. That is, structured personal data that is about the data subject, where the data subject is identifiable and where the personal data is discoverable in a reasonable and proportionate search. These rights do not extend to details about other people, your company or employer, our companies or our services.

If you are seeking information to resolve an operational issue, we can provide data to help clarify facts and to help resolve issues, but that would not be considered under a data subject request for personal data.

To submit a request, please contact us using the details provided on this website.

If you are dissatisfied with our processing of your data, you have the right to raise a complaint with our business Customer Service team, our Data Protection Office, or the Information Commissioner’s Office (www.ico.org.uk). If you do have a complaint or concern, we ask that you contact our Customer Service team or Data Protection Office in the first instance using the details provided above, so that we can resolve the matter directly.

Processing Notes

We ask that you do not provide us with any personal data that is deemed a special category of data under GDPR (such as health data, race/ethnic origin, and political/religious/philosophical views). However, please do notify us of any reasonable adjustments that you require for mental health or physical health reasons. Such data will be processed as a legal obligation under The Equality Act and to support you with equality of opportunity.

Any supplementary personal data that we receive, that you have shared in passing, will be processed as our fair legitimate interest for helping to maintain our relationship with you.

We share information between our legal entities for security and operational purposes, and to offer individuals a wider choice of products and services.

We primarily process data in the UK. If processing needs to occur outside the UK due to specific system requirements, it will be subject to contractual agreement and legal safeguards such as International Data Transfer Agreements.

We only retain personal data for as long we deem as necessary. Retention periods vary, depending on the purpose of processing, the products and services, the type of personal data, your relationship with us and any legal or regulatory requirement we may have.

In the event of corporate transaction, such as a merger or acquisitions, data will be shared with other parties under formal agreements as relevant to continue the provision our services and processes.

Our services are not intended for children. We do not knowingly collect data relating to children.

If you follow link from our website to other websites, their processes and privacy notices will apply. We are not responsible nor liability for their use of personal data.

Other Privacy Notice Matters

This Privacy Notice was designed to be concise, transparent, intelligible, easily accessible and easy to read. If you have any questions, please contact us.

This privacy notice is not a contractual agreement and does not form part of any contractual agreements.

We regularly review our Privacy Notices and will make changes where needed. Relevant data subjects will be notified of significant changes where feasible and reasonable.