Privacy Policy

v6.4, last updated 11 January 2024

The LoopUp Group (“LoopUp”, “us”, “we” or “our”) is strongly committed to protecting your personal data / personally identifiable information (“personal data”) and upholding your right to privacy. This privacy policy describes the collection and processing of personal data by us as well as an overview of the rights which you have in relation to your personal data. It applies to information which you may provide directly to us or via third parties.

Our policy is to be as transparent as possible about how and why we process your personal data. However, should you have any questions please contact us at either privacy@loopup.com or by writing to us at LoopUp, Legal and Compliance, 52 Tabernacle Street, London EC2A 4NJ, UK

This privacy policy is set out in the following sections:

PART 1 – WHO WE ARE
PART 2 – INFORMATION WE MAY COLLECT AND HOW WE USE IT
PART 3 – HOW WE KEEP YOUR PERSONAL DATA SECURE
PART 4 – DELETING YOUR PERSONAL DATA
PART 5 – YOUR RIGHTS
PART 6 – UPDATING THIS POLICY

Part 1 – Who we are

1. The LoopUp Group

1.1. The LoopUp Group consists of different legal entities operating globally. This privacy policy is issued on behalf of the LoopUp Group. LoopUp Limited is responsible for this website, however, the following entities are the operating companies within the LoopUp Group. For customers and employees / prospective employees, please check your contract to identify the relevant LoopUp Group entity who is the principal data controller for your personal data:

  • EMEA
    • LoopUp Limited, a company incorporated and registered in England and Wales with company number 04677393 at LoopUp, 52 Tabernacle Street, London EC2A 4NJ, UK;
    • LoopUp Spain, S.L.U., a company incorporated and registered in Spain with company number B88333489 at Paseo de la Castellana, n.º 77, 28046 Madrid, Spain;
    • MeetingZone Limited, a company incorporated and registered in England and Wales with company number 04300344 at LoopUp, 52 Tabernacle Street, London EC2A 4NJ, UK;
    • MeetingZone GmbH, a company incorporated and registered in Germany with company number HRB 107928 B at Hardenbergstr 32, 10623, Berlin, Germany;
    • Confy MeetingZone AB, a company incorporated and registered in Sweden with company number 556602-5440 at Södra Förstadsgatan 40A, 21143 Malmö, Sweden;
  • Americas
    • LoopUp LLC, a company incorporated and registered in Nevada, USA with company number LLC11486-2003 at 575 Market St, Fl 5, Suite 505, San Francisco , CA 94105, USA;
    • LoopUp (Barbados) Limited, a company incorporated and registered in Barbados with company number 35849 at Level 1, One Welches, Welches, St Thomas, Barbados;
    • MeetingZone Inc, a company incorporated and registered in Delaware, USA with company number 4532155 at 575 Market St, Fl 5, Suite 505, San Francisco , CA 94105, USA;
    • MeetingZone Canada Limited, a company incorporated and registered in Ontario, Canada with company number 2169424 at 1155 North Service Road West, Unit 11, Oakville, Ontario L6M3E3, Canada;
  • Asia
    • LoopUp (HK) Limited, a company incorporated and registered in Hong Kong with company number 1611980 at 20/F, Tower 535, 535 Jaffe Road, Causeway Bay, Hong Kong; and
    • LoopUp Australia Pty Limited, a company incorporated and registered in New South Wales, Australia with company number 621 214 051 at Level 10, 580 George Street, Sydney, NSW 2000, Australia.

2. Contact us

2.1 Please feel free to contact the relevant group entity that you have been dealing with, however, in order to process any requests as swiftly as possible we encourage you to contact us at either privacy@loopup.com or by writing to us at LoopUp, Legal and Compliance, 52 Tabernacle Street, London EC2A 4NJ, UK.

Part 2 – Information we may collect and how we use it

3. Collecting your personal data

3.1 We use different methods for collecting your personal data including:

  • Direct interactions. By signing up to our services, corresponding directly with us, investing in our company or applying for jobs with us.
  • Automated technologies. As you interact with our website, we may automatically collect technical data about your equipment, browsing actions and patterns. We collect this personal data by using cookies. Such activity is carried out in accordance with our Cookies Policy.
  • Third party or publicly available sources. We may receive personal data about you from various third parties and public sources (such as LinkedIn).

4. How we use your personal data

4.1 Personal data, or personally identifiable information, means any information where an individual can be identified (or is identifiable). We shall only use your personal data when the law allows us to do so.

4.2 Most commonly we shall use your personal data for either: (i) the performance of a contract we are about to enter or have entered into with you; (ii) for our legitimate interests (or those of a third party) provided always that your interests and fundamental interest do not override those interests (please notify us if you believe we have not assessed this correctly in relation to your own personal data); (iii) where we need to comply with a legal or regulatory obligation; or (iv) where you have consented to our collection and use.

4.3 Set out below are the principal categories of individuals where we may collect and process personal data (other than from our employees which is governed by a separate policy). Please note that these categories are for ease of reference and you may fall into one or more such categories. Similarly we may be relying upon more than one lawful basis for processing. 

Customers

Purpose for which we collect personal data Type of personal data collectedLawful basis for processing
To register you as a new customer• Contact details (name, title/position, corporate email address, corporate phone number and corporate postal address for customer administrator)
    
• Financial data (corporate billing information – to the extent it relates to a personal account (such as for sole traders), credit card (to the extent personal credit cards are used))		Performance of a contract
To provision new users• Contact details (name, location and email address of each provisioned user)Performance of a contract
General account management, including:
• provision of the services to you;

• managing payments, fees and charges;

• collection and recovery of money owed to us;

• notifying you of changes to our services, terms or other important announcements; and;

• service updates		• Call detail records (name of users (if provided), time, date and duration of call, project name (if any))

• Call recordings (if so requested)

• Contact details (name, title/position, corporate email address, corporate phone number and corporate address for customer administrator)

• Contact details (name, location and email address of each provisioned user)

• User profiles		Performance of contract

Regulatory or legal compliance Legitimate interests ((i) to recover debts due to us, and (ii) to keep our records updated and to analyse how customers use our services)
Troubleshooting / customer support• Contact details (name, title/position, corporate email address, corporate phone number and corporate address for customer administrator)

• Contact details (name, location and email address of each provisioned user)

• In limited instances we may be required to ‘ping’ an account to monitor and act against fraudulent use

• Technical data such as IP address, browser type and version, time zone setting, browser plug-in types and versions, operating systems and platform and other technology on the devises which you use to access our services		Performance of contract

Legitimate interests ((i) to protect against fraudulent use that may be damaging to our services or your account, and (ii) for running our business, provision of IT services and network security)

Users of LoopUp remote meetings and voice services

Purpose for which we collect personal dataType of personal data collectedLawful basis for processing
To grant access to LoopUp software• Contact details (to the extent provided – name and phone number)

• Call recordings (if so approved)

• Video / images (if so requested)

• To the extent required, SIP address, location of user and caller ID		Consent (requirement to manually include caller ID details and prior notification of call recordings before use; video function only at the option of the user)

Legitimate interests (for running our business, provision of IT services and network security)
To provide call summaries (participants, duration and recordings (where applicable)) to our customers• Contact details (to the extent provided – name and phone number)

• Call recordings (if so approved)

• Video / images (if so requested)

• Duration and time of call		Consent (requirement to manually include caller ID details and prior notification of call recordings before use; video function only at the option of the user)

Legitimate interests (for running our business, provision of IT services and network security)
Provision of operator assisted services (‘Event’ calls)• Contact details (to the extent provided – name and phone number)

• Call recordings (if so approved)

• Duration and time of call		Consent (notification at the option of the user)

Legitimate interests (for running our business, provision of IT services and network security)
Collation of feedback• Contact details (to the extent provided)Consent (requirement to manually include feedback of call recordings before use)

Legitimate interests (for running our business, provision of IT services and network security)

Prospective customers and website users

Purpose for which we collect personal dataType of personal data collectedLawful basis for processing
‘Tell a Friend’ (or similar)• Contact details (name, title/position, corporate email address, corporate phone number and corporate address)Consent (on behalf of third party)
‘Request a Trial’ (or similar)• Contact details (name, title/position, corporate email address, corporate phone number and corporate address)Consent
Providing access to our website• Cookies (as per our Cookies Policy)Performance of a contract

Legitimate interests (for analytical review)
Prospecting and marketing (providing information about our services)• Contact details (name, title/position, corporate email address, corporate phone number and corporate address)Legitimate interests (for prospecting new business opportunities)      
Consent (where sought and provided)
Operation of prizes or competition• As set out in the specific terms and condition, however, will require contact details (name, title/position, corporate email address, corporate phone number and corporate address)Consent

Job applicants

Purpose for which we collect personal dataType of personal data collectedLawful basis for processing
Considering your job application• Contact details (name, email address, phone number and address)

• Employment history, experience and interests

• Passport and visa / right to work (or such other evidence of status or qualifications)		Performance of a contract    

Regulatory or legal compliance

Legitimate interests (to identify right to work and conduct necessary background checks)

Visitors to our offices or to our stands at trade fairs

Purpose for which we collect personal dataType of personal data collectedLawful basis for processing
Monitoring attendance at our offices• Contact details (name, email address and person visiting)

• CCTV (where applicable)		Regulatory or legal compliance

Legitimate interests (for operation of and maintaining security at our premises)
Monitoring attendance at trade fairs• Contact details (name, title/position, corporate email address, corporate phone number and corporate address)Performance of contract (in relation to pre-contract negotiations)

Legitimate interests (for prospecting new business opportunities)

Consent (where sought and provided)

Investors

Purpose for which we collect personal dataType of personal data collectedLawful basis for processing
Maintenance of share register• Contact details (name, email address, phone number and address)

• Number of shareholding		Performance of contract

Regulatory or legal compliance
Provision of investor information • Contact details (name, email address, phone number and address)

• Number of shareholding		Performance of contract

Regulatory or legal compliance

Suppliers

Purpose for which we collect personal dataType of personal data collectedLawful basis for processing
Receipt of services• Contact details (name, title/position, corporate email address, corporate phone number and corporate postal address for customer administrator)

• Financial data (corporate billing information – to the extent it relates to a personal account (such as for sole traders))		 Performance of contract

Others who get in touch with us

Purpose for which we collect personal dataType of personal data collectedLawful basis for processing
Responding to communication• Contact details (to the extent provided – such as name, email address, phone number and address)

• Such other information you wish to provide
Performance of contract

Regulatory or legal compliance

4.4 Please note that in instances where we refer to ‘performance of a contract’ this may include performance of a contract which has been entered into with your employer. In such circumstances we are either relying upon our legitimate interests or expect your employer has suitable authority for us to carry out such activity.

5. Unsubscribing

5.1 Where we are processing your personal data based on consent or pursuant to our legitimate interests (and feel your interests should override ours), you have the right to withdraw such consent or object to our use of legitimate interests as a ground for processing your personal data at any time or notify us. To do so, simply: (i) opt out or unsubscribe (using our preference centre or the unsubscribe link to emails); (ii) notify your LoopUp point of contact; or (iii) contact us at privacy@loopup.com. Please allow us a short time to process such requests.

5.2 In some instances, where we collect personal data by law or pursuant to the terms of a contract we have with you if you fail to provide such data when requested we may not be able to fully perform our contract with you. In such an instance we shall endeavor to let you know the consequence.

6. Sensitive personal data

6.1 Please note that we will not actively collect any ‘sensitive personal data’ or special categories of personal data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data).

6.2 This website and our services are not intended for children and we do not knowingly collect data relating to children.

6.3 As a user of our services, you may choose to transmit sensitive personal data or data relating to children over our service. If you do so, you: (i) must have appropriate authority to do so; (ii) acknowledge that we do not monitor or review consent transmitted over our services; and (iii) acknowledge that such personal data shall be treated in accordance with this privacy policy.

7. Keeping your personal data up to date

7.1 It is important that the personal data that we hold on you is kept accurate and up to date. Therefore, please keep us informed if your personal data changes during your relationship with us.

8. Sharing your personal data

8.1 We will only share personal data with others when we are legally permitted to do so. When we share personal data with others, we put contractual arrangements and security mechanisms in place to protect the personal data and to comply with our data protection, confidentiality and security standards.

8.2 We are part of a global network of firms and we use third parties located in other countries to help us run our business. As a result, personal data may be transferred outside the countries where we and our clients are located. This includes to countries outside the European Economic Union (“EEA”) and to countries that do not have laws that provide specific protection for personal data. We have taken steps to ensure all personal data is provided with adequate protection and that all transfers of personal data outside the EEA are done lawfully. Where we transfer personal data outside of the EEA to a country not determined by the European Commission as providing an adequate level of protection for personal data, the transfers will be under an agreement which covers the requirements for the transfer of personal data outside the EEA, such as the European Commission approved Standard Contractual Clauses.

8.3 Specifically, personal data held by us may be transferred to:

  • Other members within the LoopUp Group. We may share personal data with other LoopUp entities where necessary for administrative purposes and to provide our services (and customer support) to our customers. This transfer may include transfers to our international data centres for disaster recovery and business continuity purposes. Furthermore, job applicant personal data may be transferred within the group.
  • Third party organisations that provide applications/functionality, data processing or IT services to us. We use third parties to support us in providing our services and to help provide, run and manage our internal IT systems. For example, providers of information technology, cloud based software as a service providers, website hosting and management, data analysis, data back-up, security and storage services. The servers powering and facilitating that cloud infrastructure are located in secure data centres around the world, and personal data may be stored in any one of them.
  • Third party organisations that otherwise assist us in providing goods, services or information. For example credit agencies, our share registrars, recruiters or such other ancillary service provider or service providers to which we may resell certain services (such as operator assisted event calls).
  • Auditors and other professional advisers. Such as our accountants, lawyer, brokers and such other professional service providers.
  • Law enforcement or other government and regulatory agencies. Occasionally, we may receive requests from third parties with authority to obtain disclosure of personal data, such as to check that we are complying with applicable law and regulation, to investigate an alleged crime, to establish, exercise or defend legal rights. We will only fulfil requests for personal data where we are permitted to do so in accordance with applicable law or regulation.
  • Investors. Should we enter into negotiations with third parties for the sale or purchaser of all or part of our business, in limited circumstances such personal data may be accessible by such third party.

8.4 Please note (including for the purpose of additional disclosures pursuant to the California Consumer Privacy Act of 2018 (“CCPA”), if applicable) that we do not sell, rent or trade any personal data to third parties.

9.1 This website may contain links to third party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third party websites and are not responsible for their privacy statements.

Part 3 – How we keep your personal data secure

10. Data security

10.1 We take the security of all the personal data we hold very seriously. We adhere to internationally recognised security standards and we have a framework of policies, procedures and training in place covering data protection, confidentiality and security and regularly review the appropriateness of the measures we have in place to keep the personal data we hold secure.

10.2 In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know.

10.3 We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

Part 4 – Deleting your personal data

11. Data Retention

11.1 We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means and the applicable legal requirements.

11.2 Our default retention periods for customer records are: (i) call detail records shall be retained for approximately 12 months from the date of the call; (ii) call recordings shall be available for 60 days then deleted around 90 days thereafter (subject to purge rules and timings); and (iii) basic information about our customers for six years after ceasing being customers (for tax and regulatory reasons).

12. Deletion

12.1 All personal data shall be deleted or erased in a secure and confidential manner.

Part 5 – Know your rights

13. Your rights

13.1 Individuals have certain rights over their personal data and data controllers are responsible for fulfilling these rights. Where we decide how and why personal data is processed, we are a data controller and include further information about the rights that individuals have and how to exercise them below.

14. Access to personal data

14.1 You have a right to access your personal data as well as to understand exactly what personal data is being collected, how it is being processed or how it is being shared (“data subject access request”).  This enables you to receive a copy of the personal data we hold about you and to check that we are lawfully processing it.

14.2 To make a request, you need to put the request in writing addressing it to our Legal department at the address provided above. If you agree, we will try to deal with your request informally, for example by providing you with the specific information you need over the telephone.

14.3 If we do hold information about you, you can ask us to correct any mistakes by, once again, contacting the Legal department.

15. Amendment of personal data

15.1 To update personal data submitted to us, you may email us at privacy@loopup.com or, where appropriate, contact us via the relevant website registration page or by amending the personal details held on relevant applications with which you registered.

15.2 When practically possible, once we are informed that any personal data processed by us is no longer accurate, we will make corrections (where appropriate) based on your updated information.

16.1 Where we process personal data based on consent, individuals have a right to withdraw consent at any time. We do not generally process personal data based on consent (as we can usually rely on another legal basis). To withdraw consent to our processing of your personal data please email us at privacy@loopup.com or, to stop receiving an email from our marketing list, please click on the unsubscribe link in the relevant email received from us.

17. Object to processing

17.1 You may object to our processing of your personal data where we are relying upon a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground as you feel it impacts on your fundamental rights and freedoms. In some case, we may demonstrate that we have compelling legitimate grounds to process your information which override your rights and freedoms.

18. Transfer requests

18.1 You may request the transfer of your personal data to you or a third party. We will provide you, or a third party you have chosen, your personal data in a structured, commonly used, machine-readable format. Please note that this right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you.

19. Request erasure

19.1 You may request the erasure of your personal data. This enables you to ask us to delete or remove personal data where there is no good reason for us to continuing to process it.

20. Request restriction on processing

20.1 You may request the restriction of processing of your personal data by us. This enables you to ask us to suspend the processing of your personal data in the following scenarios: (i) if you want us to establish the personal data’s accuracy; (ii) where our use of the personal data is unlawful but you do not want us to erase it; (iii) where you need us to hold the personal data even if we no longer require it as you need it to establish, exercise or defend legal claims; or (iv) you have objected to our use of your personal data but we need to verify whether we have overriding legitimate interest grounds to use it.

21. Restriction on discrimination

21.1 To the extent it is applicable to you, you also have the right not to be discriminated against if you exercise any rights conferred on you by the CCPA.

22. Complaints

22.1 We hope that you won’t ever need to, but if you do want to complain about our use of personal data, please send an email with the details of your complaint to privacy@loopup.com. We will look into and respond to any complaints we receive. California residents may also call +1 (866) 927-0088.

22.2 You also have the right to lodge a complaint with the local data protection regulator. We would, however, appreciate the chance to deal with your concerns before you approach the appropriate regulator. In the UK that is the Information Commissioner’s Office. For further information on your rights and how to complain to your local data protection regulator, please contact us or refer to the local data protection regulator’s website.

22.3 This privacy policy was drafted with clarity in mind. It does not provide exhaustive detail of all aspects of our collection and use of personal information. However, we are happy to provide any additional information or explanation needed. Any requests for this should be sent to the address above.

Part 6 – Updating this policy

23. Status

23.1 We recognise that transparency is an ongoing responsibility so we will keep this privacy policy under regular review. By visiting our website and using our services your personal data shall be processed in accordance with the then-current version of this policy.

23.2 This privacy policy was last updated on 11 January 2024.