Privacy Policy

Last Modified: 25 May 2018

This Privacy Policy explains how Epsilon International UK Limited, trading as Epsilon Abacus (Epsilon), processes personal data on behalf of its “Abacus Alliance” members for consumer marketing purposes.

The Abacus Alliance is comprised of clients of Epsilon (Members) who provide their customers’ name and address details and purchasing histories (Customer Data) for processing by Epsilon in a co-operative environment. Our business is to help companies reach consumers who are interested in their products or services. One way we do so is by enabling our Members to share information with each other, so they can reach new consumers who may be interested in what they have to offer.

Epsilon believes you should understand how data about you is provided to the Abacus Alliance and used for marketing purposes. We believe that the more informed you are about the use of your data for marketing purposes, the more you can enjoy the many benefits afforded by the appropriate use of your information.

Epsilon’s role

For the purposes of UK and EU data protection law, Epsilon is processing your personal data as a “data processor,” on behalf of each Member which is a “data controller.” This means that it is the Members who decide what data they share with the Abacus Alliance, how it can be used, and determine the lawful basis for that sharing. Epsilon does not use Abacus Alliance data for its own purposes; nor does it source any contact details itself, these are all captured and provided by the Members.

What information do our members share?

Members, who are retailers operating in the clothing, collectables, food & wine, gardening, gadgets & entertainment, health & beauty, household goods, and home interiors categories, provide their customers’ name and address details and purchasing histories to the Abacus Alliance for processing in a co-operative environment. Only individuals who have not objected to sharing their contact details with third parties, such as Abacus Alliance Members, can be contacted by the retailers who are part of the co-operative.  Epsilon then helps the Members decide to whom they should send a mailing based on the information available within the data cooperative.

What do we do with personal data?

As instructed by a Member, Epsilon will process Customer Data, including that provided by other Members, to select consumers to receive relevant offers via postal mail.

Data disclosure

Abacus Alliance Members share Customer Data with other Members of the cooperative.

Epsilon shares Customer Data with its sub-processors (including our affiliates). We may also disclose Customer Data on the express instruction of a Member or, in exceptional circumstances, where necessary to respond to a subpoena, search warrant or other lawful request for information received by us.

International data transfers

In order to operate the Abacus Alliance and provide our services, Epsilon may transfer data to, and process data in, countries other than the country in which you are resident.  These countries may have data protection laws that are different to the laws of your country and, in some cases, may not be as protective.

Specifically, Abacus Alliance servers are located in the Republic of Ireland but Epsilon’s affiliates operate around the world.  This means that we process data in countries such as the United States of America and India.

However, we have taken appropriate safeguards to require that your Personal Data will remain protected in accordance with the commitments we make to our Members and in this Privacy Policy. These measures include implementing the European Commission’s Standard Contractual Clauses for transfers of personal information between our group companies, which require all group companies to protect Personal Data they process from the EEA in accordance with European Union data protection law.  

Our Standard Contractual Clauses can be provided on request.  We have implemented similar appropriate safeguards with our third party service providers and partners and further details can be provided upon request.

Retention

Customer Data is retained in the Abacus Alliance for a maximum of 2 years. The exception to this is requests to no longer receive marketing from Abacus Alliance Members, which we retain indefinitely.

Your choices

We hope that after reading through this Privacy Policy that you feel comfortable that Abacus Alliance Members are collecting and using data responsibly, and that the cumulative benefits of our work are valuable to you as well as to Members of the cooperative. If you would like to learn more about the benefits of sharing data with Members of the Abacus Alliance, view the video below.

You may request that your personal data no longer be processed for the purpose of future mailings from Abacus Alliance Members by filling out this form or emailing us.

Please note that you may still receive catalogues from Members for six months after the date in which your request was actioned. This is because companies prepare their mailings months in advance and decide on contact lists from the Abacus Alliance early on in the process. You should notice a gradual reduction of unsolicited mailings from Abacus Alliance members but please allow six months for the request to become fully effective.

If you wish to further limit the amount of unsolicited direct mail you receive, we recommend registering with the Mailing Preference Service (www.mpsonline.org.uk). This is a free service which will remove your name and address from lists used for postal marketing by the members of the Direct Marketing Association.

You may also reach out to the Member that has supplied your data to the Abacus Alliance for the rectification, erasure or restriction of your personal data, or to object to it being used or shared for marketing purposes.

Contact information

Do you have a question on something not addressed or have a complaint?

Our Data Protection Officer is our Chief Privacy Officer, and she is tasked with ensuring our data protection program is operating effectively and in accordance with law.  If you have need to contact our Data Protection Officer, you may email her at DPOfficer AT epsilon.com. However, we respectfully request that you only email our Data Protection Officer regarding urgent matters pertaining to our non-compliance with law.  Otherwise, for all other inquiries, please contact nomail AT epsilon.com.

As an EU resident, you have a right to report a concern to your country’s Data Protection Authority.  For example, UK residents can report a concern to the United Kingdom Information Commissioner’s Office at this website – https://ico.org.uk/concerns/.  However, we respectfully request that you reach out to nomail AT epsilon.com in the first instance, so that we can try to assist you.

Alternatively, our postal address is:

Consumer Services
Epsilon International UK Ltd
Teddington House
67 Broad Street, Teddington
Middlesex
TW11 8QZ

Modifications to this policy

We may occasionally make changes to this Privacy Policy. If we do, we will update the “Last Modified” date above. If we make a material change, such as the ways in which we use Personal Data, we will notify you via a prominent notice on our website and, if required by data protection law, seek your consent.