ELM World LTD Privacy Policy

ELM World automated invoicing system.

1. Data Controller

ELM World Ltd is the data controller for personal data processed in connection with our services.

2. Data We Collect

We may collect:

  • account and contact details
  • billing and transaction data
  • service usage metadata
  • IP addresses and security logs
  • network and routing metadata for infrastructure services

We do not sell personal data.

3. Purpose of Processing

We process data to:

  • provide and manage services
  • process payments and invoices
  • provision hosting, communication, and network services
  • ensure security and prevent abuse
  • comply with legal obligations

4. Legal Basis

Processing is based on:

  • performance of a contract
  • legal obligations
  • legitimate interests (security, fraud prevention)
  • consent where required

5. Payment Data

Payment details are processed directly by Stripe and other payment providers.

We do not store full card numbers or sensitive payment credentials.

Stripe’s privacy policy applies to payment processing.

6. Network & Infrastructure Data

For hosting and Private WAN services, we may process:

  • IP addressing and routing information
  • connectivity and performance logs
  • security and abuse-related metadata

We do not inspect the content of communications except where required for security, abuse handling, or legal compliance.

7. Data Sharing

Data may be shared with:

  • payment processors (e.g. Stripe)
  • infrastructure and network providers
  • data centre operators
  • authorities where legally required

Data is shared only to the extent necessary for service delivery.

8. International Transfers

Where data is transferred outside the UK/EU, appropriate safeguards are applied in accordance with GDPR.

9. Data Retention

Data is retained only as long as necessary for:

  • service provision
  • accounting and legal compliance
  • dispute resolution

10. User Rights

You have the right to:

  • access your data
  • request correction or deletion
  • restrict or object to processing
  • data portability where applicable

Requests can be made via the customer portal or support channels.

11. Security

We apply technical and organisational measures to protect personal data against unauthorised access, loss, or misuse.

12. Cookies

Cookies are used only for:

  • session management
  • security
  • essential site functionality

We do not use behavioural advertising cookies.

13. Changes to Privacy Policy

This policy may be updated periodically. The latest version is always available via our websites.

14. Contact

For privacy or data protection matters, contact us via the support channels listed on our website.

Top