Privacy Policy

---

We are SportPromote Ltd (Company number 10035117) having our registered office at The Old Workshop, 1 Ecclesall Road South, Sheffield, S11 9PA

(“we”, “our”, “us”).  

We try to meet the highest standards when processing your personal data. We therefore conduct our business in compliance with applicable laws on data privacy protection and data security.  

This privacy statement describes who we are, how we collect, share and use your personal data, how we are committed to protecting the security and privacy of all personal data collected from you and how you can exercise your privacy rights. 

We collect, use and are responsible for certain personal data about you. When we do so we are subject to the UK General Data Protection Regulation (“UK GDPR”). We are also subject to the EU General Data Protection Regulation (“EU GDPR”) in relation to goods and/or services we offer to individuals in the European Economic Area (“EEA”). 

Key Terms 

These are a list of the key terms we use in this privacy policy: 

“Customer” means the entity or organisation that is registered to use the SportPromote Services.  This will usually be a clinician. 

“Visitor” means, depending on the context, any person who visits our Site or who otherwise engages with us whether by telephone, email, forms on the Site, through our social media platforms, at events, through our social media platforms or even face to face. This will usually be someone who contacts us through our Site to enquire about our company or Services or subscribes to our marketing lists, but can also be a supplier or business contact. 

“you” or “your” means, depending on the context, a Customer, a Contact, a Player or a Visitor. 

How your personal data is collected 

We collect personal data from you: 

· directly, when you enter or send us information, such as when you register with us, contact us (including via email), send us feedback, post material on the Site, Platform or through the Services; and 

· indirectly, such as your browsing activity on the Site, your use of the Platform and through the use of tracking technologies explained in the section ‘Cookies and other tracking technologies’ below. 

What personal data do we collect 

The personal data we collect from you may vary depending on whether you are a Customer or a Visitor: 

(A) Customers 

Personal data we collect from Customers will vary depending on your interactions with us, and Services you use, your location and applicable laws.  We may collect the following personal information from Customers: 

· contact and billing details, including email addresses and phone numbers for key contacts within your organisation and your organisation’s postal address; 

· profile details from documents you or your key contacts fill in on the Site Platform; 

· information from your personnel in response to surveys about our services.

(B) Visitors 

We collect the following personal data about Visitors: 

· identity information such as your name and contact details including your work postal/e-mail address and work phone number and job title (in the case of a supplier); 

· details of products or services acquired by us and provided by you and advice received; 

· financial and transactional details in relation to the provision of any services by you to us; 

· data we collect in connection with queries we receive from you and which may include contact or authentication information, the contents of any correspondence via the Site between you and us 

· information received from Visitor responses to surveys and feedback forms relating to the Platform and/or Services; 

· information received from a Visitor in connection with job roles we make available via the Site; and 

· information derived from Visitor browsing activity on the Site, including traffic data, location data, web logs and other communication data relating to actions taken on the Site. 

How and why we use your personal data 

Under data protection law, we can only use your personal data if we have a proper reason, including: 

· where you have given consent; 

· to comply with our legal and regulatory obligations; 

· for the performance of a contract with you or to take steps at your request before entering into a contract; or 

· for our legitimate interests or those of a third party. 

A legitimate interest is when we have a business or commercial reason to use your personal data, so long as this is not overridden by your own rights and interests. We will carry out an assessment when relying on legitimate interests, to balance our interests against your own. You can obtain details of this assessment by contacting us (see ‘How to contact us’ below). 

How and why we use your personal data – sharing 

Marketing 

We may use personal data provided by Customers and Visitors to send Customers and Visitors updates (by email, text, telephone or post) about our products and services, including exclusive offers, promotions and new products or services. 

We have a legitimate interest in using your personal data for marketing purposes (see above ‘How and why we use your personal data’). This means we do not need your consent to send you marketing information. If we change our marketing approach in the future so that consent is needed, we will ask for this separately and clearly. 

You have the right to opt out of receiving marketing communications at any time by: 

· in the case of Visitors and Customers contacting us at contactus@sportpromote.co.uk 

· in the case of Visitors and Customers, using the ‘unsubscribe’ link in emails; 

· in the case of Customers, updating your marketing preferences on your Customer account or contacting us at contactus@sportpromote.co.uk

Who we share personal data with 

We may share personal data with: 

· service providers who provide us with IT and administration services such as our IT Support and back up provider and webhosting company; 

· third party providers of the services we use in connection with the Platform and/or Services such as contractors taking payments on our behalf but only to the extent necessary for the provision of the Services; 

· regulatory authorities who require reporting of our activities by law such as the tax authorities; 

· professional advisers such as our lawyers, accountants, bankers and insurers; 

· debt collection agencies for the purposes of credit control or recovery of any sums due by you to us;  

· third parties to whom we sell, transfer or merge our business or any part of it; and 

· any other person only with your consent. 

All third parties with whom we share personal data are required to protect your personal data, treat it confidentially and process it in accordance with the law.  Where we use third parties who will be involved in processing personal data we take all reasonable steps to ensure that they are compliant with data protection laws and in particular assess that they have adequate technical and organisational measures in place to protect the security of your personal data. 

How long will we hold your personal data 

We will only retain your personal data for as long as is necessary in line with the purposes for which it was originally requested or collected or where we are required to retain personal data for legal or reporting purposes. 

Different retention periods may apply for different types of personal data, for example in respect of Customers we are required by law to keep accounting records for six years after end of the year in which the last transaction with you occurred. This means that we will be required to keep some basic client details for that purpose even although our relationship with you may be at an end. However, it should be noted that the requirement is basic customer details and therefore it is not legitimate to also keep information such as your preferences for that period of time. Where we have no ongoing legitimate business need to process your Personal Data we will either delete it or anonymise it (for example because your personal data has been stored in backup archives) then we will securely store your personal data and isolate it from any further processing until deletion is possible. 

If you have any questions relating to either retention periods or require more detail on the purposes of processing or the specific reason or legal grounds, we are relying on for that processing then please contact us using the details at ‘How to contact us’ below. 

Cookies and other tracking technologies 

A cookie is a small text file which is placed onto your device (e.g. computer, smartphone or other electronic device) when you use our Site or Platform. We use cookies and other tracking technologies such as: 

· log files, which track actions taken through the Site or Platform (as applicable) and collect data including your IP address, browser type, internet service provider, referring or exit pages, and date and time stamps; and 

· web beacons, tags and pixels which are electronic files on the Site used to record information about how you use the Site. 

For further information on what cookies we use, when we request your consent before placing them and how to disable them, please see our Cookies Policy.

Security of personal data 

We take information security very seriously. Your information and records will be stored securely to ensure privacy of your personal data. We take all reasonable steps to ensure that there are technical and organisational measures of security in place to protect your personal data from unauthorised access to or disclosure of it, and against loss or accidental damage or unauthorised alteration of it. Staff handling your personal data are also adequately trained in relation to the legal requirements for handling personal data. These include robust procedures for dealing with breaches including incident reporting and notifying the national supervisory or data protection authorities, and where appropriate you, of any breaches, the consequences of the same and the remedial action taken. 

Transferring your data outside of the UK and EEA 

Where possible the information you provide us with will be held within the European Economic Area (“EEA”) or within the UK. 

The EEA, UK and other countries outside the EEA and the UK have differing data protection laws, some of which may provide lower levels of protection of privacy. 

It is sometimes necessary for us to transfer your personal data to countries outside the UK and EEA. In those cases we will comply with applicable UK and EEA laws designed to ensure the privacy of your personal data. 

Some types of processing may use cloud solutions which can mean information may sometimes be held on servers which are located outside of the EEA or may use processors who are based overseas. 

Where we use cloud-based services or third-party providers of such services and in either or both circumstances the data is processed outside of the EEA (if you are an EU based individual) that will be regarded as an overseas transfer. Before instigating an overseas transfer, we will ensure that the recipient country and/or processor has security standards at least equivalent to EU standards and in particular one of the following permitted safeguards applies: 

· the country in question is deemed to have adequate safeguards in place as determined by the European Commission; or 

· there is a contract or code of conduct in place which gives your personal data the same protection it would have had if it was retained within the EEA; or 

· if the overseas transfer is to the United States, then the transferee is a signatory to the EU-US Privacy Shield as all Privacy Shield signatories are obliged to give your personal data the same degree of protection it would have had if it was retained within the EEA; or 

· if none of these safeguards exist, then we may seek your explicit consent for an overseas transfer. If you consent to the transfer of your personal data overseas you are free to withdraw this consent at any time.  Please see ‘Your rights’ below. 

Your rights 

In certain instances, you have rights as an individual which you can exercise in relation to the information we hold about you. These rights are: 

· the right to restrict processing of your personal data; 

· the right to rectification or correction of your personal data; 

· the right to object to processing of your personal data; 

· the right of erasure of personal data (also referred to the right to be forgotten); 

· the right not to be subject to a decision based solely on automated processing or profiling; 

· the right to transfer your personal data (also referred to as the right of portability); 

· the right to withdraw your consent to processing your personal data where this is relied upon as our lawful basis for processing that personal data; and 

· the right of access to your personal data. 

Additional information about these rights can be found on the Information Commissioner’s website at https://ico.org.uk/for-organisations/law-enforcement/guide-to-le-processing/individual-rights/ 

If you would like to exercise any of those rights, please contact us using the details below (please see ‘How to contact us’ below).  When contacting us please: 

· provide enough information to identify yourself (e.g. your name, address, associated business and Customer reference details or account details); and 

· let us know which right(s) you want to exercise and the information to which your request relates. 

As described in Section 1B above, for much of the personal data we collect and process about Contacts through the Platform and/or Services, we act as a processor on behalf of our Customers. In such cases, if you are a Contact and want to exercise any data protection rights that may be available to you under applicable law or have questions or concerns about how your personal data is handled by us as a processor on behalf of our individual Customers, you should contact the relevant Customer that is using the Platform and Services, and refer to their separate privacy policies.  If a Contact submits a request to exercise these rights in relation to personal data for which we are acting as the processor on behalf of a Customer, such requests shall be referred to the relevant Customer. 

Complaints 

We would prefer to resolve any issues or concerns you may have direct with you. If you feel you are unable to resolve matters by contacting us direct or are you are unhappy or dissatisfied with how we collect or process your personal data you have the right to complain about it to your national data protection authority. For example, you have the right to lodge a complaint with: 

· the Information Commissioner in the UK; or 

· a relevant data protection supervisory authority in the EEA state of your habitual residence, place of work or of an alleged infringement of data protection laws in the EEA. 

The UK Information Commissioner may be contacted using the details at https://ico.org.uk/make-a-complaint or by telephone: 0303 123 1113. 

For a list of EEA data protection supervisory authorities and their contact details see here. 

How to contact us 

If you have any questions, comments or requests relating to this Privacy Policy, please contact us at contactus@sportpromote.co.uk 

Changes to this privacy policy 

We keep our privacy policy under regular review.  This privacy policy was last updated on 12/02/2025