Effective Date: March 18, 2026
AMEX Outsourcing (“we,” “our,” or “us”) is committed to protecting your privacy. This
Privacy Policy explains how we collect, use, disclose, and safeguard your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data
Protection Act 2018.
By using our website (https://amexoutsourcing.com/) or engaging with our services, you agree to the practices described in this policy.
1. Information We Collect
We may collect both Personal Information and Non-Personal Information.
a. Personal Information
This includes:
• Name
• Email address
• Phone number
• Company name
• Job title
• Any information you provide via forms, email, or communication
b. Non-Personal Information
This includes:
• IP address
• Browser type
• Pages visited
• Time spent on site
• Referring website
• Cookies and tracking data
2. How We Use Your Information
We use your data to:
• Respond to enquiries and requests
• Provide services and manage client relationships
• Improve website functionality and user experience
• Send updates or marketing communications (with opt-out option)
• Conduct analytics and internal research
• Ensure security, prevent fraud, and comply with legal obligations
3. Credit Reference and Affordability ChecksTo help us assess applications, prevent fraud, and meet our legal and regulatory obligations, we may obtain information about you from credit reference agencies (CRAs).
We obtain this information via Creditsafe, which uses its data partner TransUnion to supply consumer credit and identity data.
Creditsafe Business Solutions Limited is authorised and regulated by the Financial Conduct Authority
FCA Firm Reference Number: 742313
TransUnion International UK Limited is authorised and regulated by the Financial Conduct Authority
FCA Firm Reference Number: 805757
The information we receive may include data relating to your identity, credit commitments, payment history, and public record information. This data is used solely for legitimate business purposes, including creditworthiness assessment, identity verification, and fraud prevention, in accordance with applicable data protection laws.
Further information can be found at:
Creditsafe Transparency Notice:
https://www.creditsafe.com/gb/en/legal/privacy-policy.html
TransUnion CRAIN:
https://www.transunion.co.uk/legal/privacy-centre/pc-credit-reference
TransUnion Bureau Privacy Notice:
https://www.transunion.co.uk/legal/privacy-centre/pc-bureau
4. Legal Basis for Processing Personal Data
We process personal data under the following lawful bases:
• Performance of a contract – to provide services and meet contractual obligations
• Legal obligation – to comply with regulatory and legal requirements
• Legitimate interests – for business operations, fraud prevention, compliance, and security
• Consent – where required, with the ability to withdraw at any time
Where we rely on legitimate interests, we ensure appropriate safeguards are in place.
5. Legitimate Interests
Our legitimate interests include:
• Operating and improving our business
• Preventing fraud and ensuring security
• Compliance, audit, and regulatory obligations
• Protecting third-party data (including TransUnion data)These are balanced against your rights and freedoms.
6. Source of Personal Data
We may collect personal data from:
• You directly
• Employers or clients
• Referees (where applicable)
• Public sources (e.g. LinkedIn, websites, public records)
• Credit reference agencies
• Third-party service providers supporting our operations
7. How We Share Your Information
We do not sell your data. We may share it with:
• Service providers (hosting, analytics, CRM, compliance tools)
• Credit reference agencies (as described above)
• Legal authorities where required
• Business transfers (e.g. mergers or acquisitions)
8. International Data Transfers
We may transfer personal data outside the UK or EEA.
Where this occurs, we ensure safeguards such as:
• Standard Contractual Clauses (SCCs)
• International Data Transfer Agreements (IDTAs)
• Transfers to countries with adequacy decisions
9. Data Retention
We retain personal data only as long as necessary.
• Data is kept to fulfil business and legal obligations
• Credit-related data is retained only as required and then securely deleted
10. Cookies and Tracking Technologies
We use cookies to:
• Improve user experience
• Analyse website usage
You can disable cookies via browser settings, though some features may not function properly.
11. Your Rights
You have the right to:
• Access your personal data
• Rectify inaccurate data
• Erase your data where applicable
• Restrict processing
• Data portability
• Object to processing (including marketing)
To exercise your rights, contact: hello@amexoutsourcing.com
12. Complaints
You have the right to lodge a complaint with the UK Information Commissioner’s Office
(ICO):
13. Provision of Personal Data
Providing personal data is:
• Contractual – required to deliver services
• Sometimes legal – required for compliance
If you do not provide required data:
• We may be unable to provide services
• Contracts may not be fulfilled
• Verification and compliance checks may fail
Optional data (e.g. marketing) is not mandatory.
14. Automated Decision Making and Profiling
In some circumstances, we may conduct automated decision making or profiling using personal data. This involves the use of automated systems to evaluate certain information about an individual, such as risk factors, affordability indicators, or fraud signals, based on predefined rules or algorithms.
Where automated decision making is used, it may result in decisions such as the approval, restriction, or rejection of an application or service.
Individuals have the right to request human intervention, to express their point of view, and to challenge decisions made solely by automated means. Further information aboutautomated decision making and how to exercise these rights can be obtained by contacting us using the details provided in this Privacy Policy.
15. Data Security
We implement appropriate technical and organisational measures to protect your data. However, no system is completely secure.
16. Third-Party Links
We are not responsible for third-party websites linked from our site. Please review their privacy policies separately.
17. Contact Details
AMEX Outsourcing
Email: hello@amexoutsourcing.com
Phone: 01952 973737
Address: Pemberton House, Stafford Park 1, TF3 3BD
18. Data Protection Officer (DPO)
Lili
Email: lili@amexoutsourcing.com
19. Changes to This Policy
We may update this policy periodically. Updates will be posted with a revised effective date.
By using our services, you confirm that you have read and understood this Privacy Policy.