WANT-ID

PRIVACY NOTICE

This version is effective from: 20/05/2026

1. Introduction

This privacy notice (the “Privacy Notice”) explains how WANT-iD processes your personal data  in connection with your use of www.want-id.co.uk (the “Site”) and the provision of our services to you (the “Services”).

This Privacy Notice also explains how we process your personal data if you are another individual that interacts with our business, including if you work for businesses that provide goods or services to us, apply to work for us, and attend events that we host.

Please take a moment to read this Privacy Notice as it provides you with important information about your personal data, including the rights you have in relation to it. Your access to and use of our Site is also subject to our Terms of Use, and your purchase of any Services from us will be subject to our Sprint T&C.

This Privacy Notice is intended to meet the requirements of privacy laws of the United Kingdom (“UK”) and the European Union (“EU”), in particular the EU’s General Data Protection Regulation, the UK GDPR, and other similar European privacy laws (for ease of reference, collectively, the “GDPR”).

Any changes we make to this Privacy Notice will be posted on our Site, including to reflect any changes to our use of personal data or to comply with applicable law or regulatory requirements. Where possible we may notify you of these changes by email, but we encourage you to check this page regularly to keep up to date.

2. About us

The Site and our Services are made available by WANT-iD Limited (“WANT-ID”, “we”, “us”, “our”). WANT-iD is a company registered in England and Wales (No: 16681432) with its registered office at 3.49 Dunn & Co Canterbury Court, 1-3 Brixton Road, London, United Kingdom, SW9 6DE.

WANT-iD is registered as a controller with the Information Commissioner’s Office (Registration No:ZC153617) for the activities described in this Privacy Notice. 

Please contact us using our contact details in the How to contact us section.

3. How to contact us

If you want more information or have any questions about our processing of your personal data or this Privacy Notice you can contact us using the following methods:

Email: isobel@want-id.co.uk

Post: 3.49 Dunn & Co Canterbury Court, 1-3 Brixton Road, London, United Kingdom, SW9 6DE

4. How we collect and receive personal data

We collect and receive personal data through the following methods:

• Personal data you provide to us. You may give us your personal data directly, for example, when you use or purchase our Services, contact us with enquiries, complete forms on our Site, subscribe to receive our marketing communications or provide feedback to us.
• Personal data we collect automatically, including through cookies and other similar technologies. When you access and use our Site, we may collect Technical Data (as defined below) and Usage Data automatically, including through our use of cookies and other similar technologies. For more information about this data, please see our Processing Activities Schedule. For more information about our use of cookies and other similar technologies, please see the Cookies section.
• Personal data we receive from third parties. We may receive personal data from third parties. Such third parties may include event suppliers and other organisations we work with, analytics providers, data suppliers, and third-party directories.
• Personal data that is publicly available. We may collect personal data that is available from public sources (including media publications) or that you or a third party may otherwise publish (for example on websites, posts on social media platforms, or speeches at events).

5. Personal data we control 

We may process or otherwise be a controller of the following personal data:

• Identity Data. Name (first, middle, and last); and title.
• Contact Data. Email address; telephone number; and postal address.
• Professional Data. Your sport; career details; and career history.
• Social Media Data. Social media handle; activity including your comments, posts, views, clicks, follows or unfollows; and any other types of interaction with pages or content.
• Audience and Engagement Data. Analytics information about your social media profile including audience demographics, geography, engagement metrics, follower counts, reach, impressions, post performance data, and content interaction data.
• Content. Anything you film, record, write, or create as part of the Services including raw video footage, edited assets, scripts, captions and photos or images.
• Call Recordings and Transcripts. Audio, visual or written record of a telephone, video, or online conversation.
• Profile Data. Date of birth; gender; personal pronouns; country of residence; nationality; information about your interests, affiliations and preferences; and other information that you supply in connection with your use of our Site or Services or otherwise in your interactions with us (including in relation to our promotions or competitions,][your provision of feedback or responses to our surveys, or your attendance at an event).
• Transaction Data. Details of Services purchased from us or products and services that we may purchase from you or the supplier that you work for, including payment information (such as payment card details, bank account details and billing address).
• Technical Data. IP address; details of part of the Site that you are viewing, such as full web page URL; browser type, device type and operating system and any other information available to us about the device you are using; location data, including the geographic location (which may be approximate, like the city or region you are in, or more precise) of a device derived from IP address, GPS signals or information about a device’s connection with local Wi-Fi equipment; diagnostic data (including crash logs, launch time, hang rate and energy use, and any other data collected for technical diagnostics purposes), and any relevant unique identifiers assigned to a device or browser (including cookie identifiers).
• Communications Data. Marketing preferences; and service communication preferences.
• Usage Data. Data observed or collected in relation to browsing activity on our Site interaction with our emails, or attendance at our events. This may include information about pageviews and events on our Site; information about the webpage or other source that users were previously on before reaching our Site; information about when a browsing session started and ended; and information about sessions attended and networking interactions at our events..
• Incident Data. Information about any injury that you suffer or incident you may be involved in (including witness)at an event hosted by us, including any personal data you or others provide (including any factual description and opinions); details of any injury suffered; actions taken by us or others in response to the incident or injury, including details of any medical assistance or treatment that has been provided or advised (e.g. first aid applied, onsite paramedic or paramedic technician attended, advised to visit hospital, hospitalised); and any other personal data collected during the process of completing our incident report.
• Recruitment Data. Profile Data (to the extent that it is relevant to our recruitment activities or you volunteer it during our recruitment process), together with other information including details of your eligibility to work (including documents and information that we may collect to verify this); your work preferences (including areas and dates where you are available for work); skills, qualifications, training and work history; any personal data which appears in your curriculum vitae or application; and any other personal data that you volunteer during our recruitment process.

6. Our processing activities

We process your personal data for the following purposes:

• to provide you with our Site;
• to provide you with our Services;
• to deal with customer services and enquiries, carry out surveys and obtain feedback, and to manage public relations;
• to carry out insight and analytics;
• to carry out marketing activities;
• for recruitment purposes; and
• for business administration and legal compliance purposes, including to exercise or defend legal claims.

For more information about our processing activities, including the personal data that is processed in connection with those activities, please see our Processing Activities Schedule.

7. Cookies

Our Site uses only essential cookies that are strictly necessary for the operation of our Site. These cookies enable basic functions such as page navigation and do not require your consent. We do not use any non-essential cookies. If we introduce non-essential cookies in the future, we will update this Privacy Notice accordingly. You can manage cookies through your browser settings, but blocking essential cookies may affect the functionality of our Site.

For more general information about Cookies and managing Cookies, including blocking or deleting cookies for a wide variety of browsers, visit All About Cookies.

8. Sharing personal data 

We only share personal data with third parties when we are legally permitted to do so. When we share personal data with others, we put contractual arrangements and security mechanisms in place to protect the personal data and to maintain the confidentiality and security of it.

The circumstances where we may typically share personal data are set out below, though there may be other circumstances where we need to share personal data that are not set out below.

• Brand partners and prospective brand partners. We share personal data with brands and potential brand partners in order to develop, propose and support brand partnership opportunities for you when you participate in one of our programmes. This may include sharing aggregated or individual-level data to demonstrate the value and relevance of a potential collaboration. Where we share personal data for these purposes, we ensure appropriate safeguards are in place, and data is only disclosed to the extent necessary to evaluate and facilitate the partnership.
• Third-party suppliers who provide applications/ functionality, data processing or IT services. We share personal data with third parties who support us in providing our Site and help provide, run and manage our internal IT systems. Such third parties may include providers of information technology services, physical and cloud-based storage providers, cloud-based software-as-a-service providers, identity management, website design, hosting and management, data analysis and insight, data back-up, and security services. These service providers may process personal data in countries around the world – see the International Transfers of Personal Data section for more information.
• Payment providers and banks. We share personal data with third parties who assist us with the processing of payments.
• Third-party marketing and customer relationship management specialists. We share personal data with specialist suppliers who assist us in managing our marketing database and activities, and sending out our marketing communications.
• Event partners and suppliers. When we run events, we will share personal data with third-party service providers that are assisting us with the operation and administration of that event. If we are running an event in partnership with other organisations, we will share personal data with such organisations for use in relation to the event.
• Auditors, lawyers, accountants and other professional advisers. We share personal data with professional services firms who advise and assist us in relation to the lawful and effective management of our organisation and in relation to any disputes we may become involved in.
• Law enforcement or other government and regulatory agencies and bodies. We share personal data with law enforcement or other government and regulatory agencies or other third parties as required by, and in accordance with, applicable law or regulation.
• Business partners. We may also disclose personal data to third parties:

• if we sell or buy any business or assets, in which case we may disclose personal data to the prospective seller or buyer of such business or assets; or
• if we or substantially all our assets are acquired by a third party, in which case personal data held by us will be one of the transferred assets.

• Other third parties. Occasionally, we may receive requests from third parties with authority to obtain disclosure of personal data, such as to check that we are complying with applicable law and regulation, to investigate an alleged crime, or to establish, exercise or defend legal rights. We will only fulfil requests for personal data where we are permitted to do so in accordance with applicable law or regulation.

9. Your rights

You have the following rights in relation to your personal data:

• Your right of access. If you ask us, we will confirm whether we are processing your personal data and, if so, provide you with a copy of that personal data (along with certain other details). If you require additional copies, we may charge a reasonable fee for producing those additional copies.
• Your right to rectification. If the personal data we hold about you is inaccurate or incomplete, you are entitled to have it rectified. If we have shared your personal data with others, we’ll let them know about the rectification where possible. If you ask us, where possible and lawful to do so, we will also tell you who we’ve shared your personal data with so that you can contact them.
• Your right to erasure. You can ask us to delete or remove your personal data in some circumstances, such as where we no longer need it or where you withdraw your consent (where applicable). If we have shared your personal data with others, we will let them know about the erasure where possible. If you ask us, where it is possible and lawful for us to do so, we will also tell you who we have shared your personal data with so that you can contact them directly.
• Your right to restrict processing. You can ask us to “block” or suppress the processing of your personal data in certain circumstances such as where you contest the accuracy of that personal data or you object to us processing it for a particular purpose. This may not mean that we will stop storing your personal data but, where we do keep it, we will tell you if we remove any restriction that we have placed on your personal data to stop us processing it further. If we’ve shared your personal data with others, we’ll let them know about the restriction where it is possible for us to do so. If you ask us, where it is possible and lawful for us to do so, we’ll also tell you who we’ve shared your personal data with so that you can contact them directly.
• Your right to data portability. You have the right, in certain circumstances, to obtain personal data you have provided to us (in a structured, commonly used and machine-readable format) and to reuse it elsewhere or to ask us to transfer it to your chosen third party.
• Your right to object. You can ask us to stop processing your personal data, and we will do so, if we are: (i) relying on our own or someone else’s legitimate interest to process your personal data, except if we can demonstrate compelling legal grounds for the processing; or (ii) processing your personal data for direct marketing purposes.
• Your rights in relation to automated decision-making and profiling. To the extent we make a decision about you based solely on automated processing, including profiling, that has a legal or other similarly significant effect on you, we will provide you with meaningful information about how any such decision is reached and what it means for you. We will only make such decisions where we are permitted by law to do so. Where we do, you will have the right to obtain meaningful human involvement, to express your point of view, and to contest the decision.
• Your right to withdraw consent. If we rely on your consent (or explicit consent) as our legal basis for processing your personal data, you have the right to withdraw that consent at any time. You can exercise your right of withdrawal by contacting us using our contact details in the How to contact us section or by using any other opt-out mechanism we may provide, such as an unsubscribe link in an email.
• Your right to complain to us. If you believe that our processing of your personal data does not comply with applicable privacy laws or you otherwise have a concern about the way we have handled your personal data, you have the right to complain to us. If you wish to submit a complaint, please contact us using the contact details provided in the How to contact us section. Once we receive your complaint, we will acknowledge receipt within 30 days. We will then take appropriate steps to investigate the matters you have raised and will keep you informed of our progress. We will notify you of the outcome of your complaint without undue delay.  
• Your right to complain to a supervisory authority. In addition to your right to complain to us, you have the right to complain to a supervisory authority if you believe our processing of your data does not comply with applicable data protection law. As we are incorporated in the United Kingdom, our main supervisory authority is the Information Commissioner’s Office (“ICO”). You can complain to the ICO by visiting https://ico.org.uk/make-a-complaint/. If you are located, or believe our infringement took place, in the European Economic Area, you can also complain to a national supervisory authority of the Member State in which you either reside or where the infringement took place. You can find a list of contact details for EEA supervisory authorities at http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm.

10. Information security

We are committed to keeping personal data secure and we have implemented information security policies, rules and technical and organisational measures to protect personal data under our control from unauthorised access, improper use or disclosure, unauthorised modification and unlawful destruction or accidental loss. In addition, our personnel and data processors (third parties that process personal data on our behalf) are obliged to respect the confidentiality of the personal data relating to personal data under our control.

11. How long we keep your personal data

We will only keep your personal data for as long as necessary for the purposes set out in this Privacy Notice. We will retain and use your personal data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

If any personal data is only useful for a short period (e.g. for a specific activity, promotion or marketing campaign), we will not retain it for longer than the period for which it is used by us.

If you have opted out of receiving marketing communications from us, we will need to retain certain personal data on a suppression list indefinitely so that we know not to send you further marketing communications in the future. However, we will not use this personal data to send you further marketing unless you subsequently opt back in to receive such marketing.

12. Third-party links and services

This Privacy Notice only applies to personal data processed by us. Our Site may contain links to third-party websites, apps or services. We have no control over these third-party websites, apps or services and this Privacy Notice does not apply to your interaction with the relevant third parties.

13. Personal data of minors

Our Site and Services are not intended for use by, or targeted at, minors (individuals under the age of 18). However, this does not prevent minors from providing personal data to us. Where we do process personal data of minors, we will comply with all applicable laws and regulations relating to that processing.

14. If you fail to provide your personal data

Where we are required by law to collect personal data, or we need to collect personal data under the terms of a contract we have with you, and you fail to provide that personal data, we may not be able to fulfil any obligations that we owe to you, and we may not be able to enter into or perform a contract with you. This may apply where you do not provide personal data that we need to provide our Services or to. In these circumstances, we may have to cancel the provision of the relevant Services to you, in which case we will notify you.

15. International transfers of personal data

We may transfer personal data to third parties (as described in the Sharing personal data section) that are located in countries that do not have data protection laws that protect personal data to the same standard as the GDPR. These third countries may not give you the same rights as under the GDPR in relation to your personal data and may not have a data protection supervisory authority to help you if you have any concerns.

When transferring personal data to third countries, we usually rely on one of the following:

1. Adequacy decisions: We may transfer your personal data to countries or organisations that have been deemed to provide an adequate level of protection for personal data by the European Commission, the UK Government, or any other relevant government body. This may include transfers to organisations that participate in the Data Privacy Framework listed here.
2. Contractual safeguards: We may use specific contracts approved by the European Commission, the UK Government, or any other relevant governmental body to safeguard personal data. The contracts that we usually rely on are referred to as “Standard Contractual Clauses” or “SCCs”, although we may from time to time use other approved mechanisms. To find out more about the SCCs we use, please see here (EU) and here (UK). You can also contact us using the contact details set out in the How to contact us section.

Processing Activities Schedule

This Schedule sets out detailed information about the purposes for which we process the personal data described in the Personal data we control section and the lawful bases we rely on to do so.

This Schedule is split into the following sections – please click on the link below to be taken to the relevant section:

1. Providing our Site and carrying out other online activities
2. Provision of Services
3. Customer Services, Feedback and Relationship Management 
4. Insight and Analysis, Data Improvement and Personalisation  
5. Advertising and Marketing Activities
6. Recruitment
7. Business Administration, Compliance and Legal Affairs

1. Providing our Site and carrying out other online activities

2. Provision of Services

3. Customer Services, Feedback and Relationship Management

4. Insight and Analysis, Data Improvement and Personalisation

5. Advertising and Marketing Activities

6. Recruitment

7. Business Administration, Compliance and Legal Affairs