Privacy Policy

PayPoint Collect+ Privacy Statement

When is information collected?

The website is operated by PayPoint Network Limited, under company number 02973115 with our registered office at 1 The Boulevard, Shire Park, Welwyn Garden City, Hertfordshire AL7 1EL.

This Privacy Statement tells you what to expect when the PayPoint Group (“PayPoint”) collects personal information about users of the Collect+ website, and applies to the information we collect from that website.

It is intended to give you a better understanding of the data we use and what we do with your data.


For the purpose of this Privacy Notice;
Client means an organisation using a PayPoint service to facilitate the send and receipt of parcels on behalf of their customer (including but is not limited to, the Client courier).
Customer means a consumer or business that is a customer of a client.
PayPoint means a member of the PayPoint Group.
Member of the Public means individual members of the public that may or may not receive or use Collect+ services.

On what lawful basis will we use your information?

We will only use your information where we have your consent or we have another lawful reason for using it. These reasons include where we:

  • need to pursue our legitimate interests;
  • need to process the information to carry out an agreement we have with you;
  • need to process the information to provide a service on behalf of the Client courier;
  • need to process the information to comply with a legal obligation;
  • believe the use of your information as described is in the public interest, e.g. for the purpose of preventing or detecting crime;
  • need to establish, exercise or defend our legal rights; or
  • need to use your information for insurance purposes.

Disclosure of personal information

We may from time to time disclose information as follows;

  • Your personal data to appropriate investigatory and regulatory authorities.
  • Your information to a supplier if required to use a PayPoint service or obtain support for PayPoint services.
  • If you are a customer of a client we may provide your information to your service provider (including, but not limited to, the Client courier) and the appropriate authorities.


PayPoint electronic communication systems are monitored without user consent to: investigate or detect unauthorised use; prevent or detect crime; establish the existence of facts relevant to PayPoint; or ascertain compliance with regulatory practices relevant to the business of PayPoint.

Calls to PayPoint are recorded for operational and training purposes. Calls are not processed against the individual data subject.

Website Users

Customer Information

When you use our website, we may collect:

  • information that you provide by filling in forms on the website, for example your contact details or parcel tracking number;
  • details of your visits to the website, the resources you access (please see Cookies Policy for more information);

Where you provide us with personal data we are the data controller of any such data. This means we are responsible for, and control the processing of, your personal information.

Parcel Tracking

Where information is provided by you in order to undertake parcel tracking services, such as a unique tracking number, we may provide you with a link to our Client courier's website for you to continue to track your parcel directly. In such instance, any personal data you have provided will be transferred to that page.

Collect+ Send Service

We may share any personal data which we may receive from you in relation to the Collect+ Send service with the relevant Client who provides the service, in order to ensure you are provided with the relevant service.

Data held by Clients

If you are a Customer of a Client and have any questions in relation to any personal data you have provided to a Client directly, such as the privacy policy applicable to such data, please contact the Client directly. PayPoint is unable to disclose any such personal data unless instructed to do so by the Client as we cannot verify the data subject.

Members of the Public

If you are a Member of the Public, we may collect certain personal data, such as name and email address, from you for the following activities:

  • marketing and promotion of Collect+ services provided by PayPoint;
  • marketing and promotion of third party services, including the Collect+ Send service;
  • Provision of Collect+ and third party services. We may need to disclose your information to the relevant third party in order to enable them to offer their services to you. If you decide to participate you will contract on the third party’s own terms.

Data export or transfer

In order to provide services or support to Clients, Customers and Members of the Public, PayPoint may use service providers implementing “cloud” based and other technology. These services may include operational, technical and administrative support that is based outside the UK and/or EEA. Any transfer of personal data that is outside the UK and/or EEA will be in accordance with the recommended data transfer models applicable at the time.

Complaints or queries

PayPoint applies transparency when collecting and using personal information. If you have concerns over the use of your personal data please contact us.

This Privacy Statement are not an exhaustive list of all aspects of PayPoint’s collection and use of personal information. If you wish to have any additional information or explanation please contact us via the contact details set out below.

If you want to request information about our privacy policies or a complaint you can e-mail us at or write to us at:

Data Protection Officer
PayPoint Group
1 The Boulevard
Shire Park
Welwyn Garden City

If you have a complaint in relation to the use of your personal data you may contact us in the first instance. If you are still not happy we have resolved the matter you may also contact the Information Commissioner’s Office. Contact details are available on the Information Commissioner’s website.

Data Subject Access Requests

Individuals can find out if we hold any personal information by making a “subject access request” under the Data Protection Act 2018. If we do hold information about you we will:

  • give you a description of it;
  • tell you why we are holding it;
  • tell you who it could be disclosed to; and
  • let you have a copy of the information in an intelligible form.

To make a request to PayPoint for any personal information we may hold, you need to put the request in writing addressing it to our Data Protection Officer at the address provided below. We cannot disclose information in relation to other data subjects, client information or client customer information under such a request. We will remove information relating to other data subject or other organisation from the information we send you.

If you agree, we will try to deal with your request informally, for example by providing you with the specific information you need over the telephone. If you have e-mailed us we will respond by e-mail. Please note e-mail communications are no guaranteed to be secure due to the nature of the communication method.

The Information Commissioner has provided a guide on its website to data subject access requests. This provides indications of the circumstances when an access request can be limited or declined. For example, a data subject access request does not entitle the data subject to information relating to or confidential to a third party. Data subject access requests are available to individuals but not businesses.

Other use of your rights.

Under the Data Protection Act 2018, you have rights as an individual which you can exercise in relation to the information we hold about you. You can read more about these rights here –


People who e-mail us

Any e-mail sent to us, including any attachments, may be monitored and used by us for reasons of security and for monitoring compliance with PayPoint policies. E-mail monitoring or blocking software may also be used. Please be aware that you have a responsibility to ensure that any e-mail you send to us is within the bounds of the law.

Visitors to our other websites

When you visit our website, or any other PayPoint website, please see the specific website privacy notice for details of cookies and other information specific to that website.

Links to other websites

This Privacy Notice does not cover the links within any PayPoint website or documentation linking to other websites. We encourage you to read the privacy statements on any other websites you visit.

Keeping your information secure

PayPoint takes its obligations to keep data secure seriously. It is ISO 27001 accredited and a PCI compliant organisation for the purpose of processing card payment data.

Governing Law

This Privacy Notice shall be governed by and construed in accordance with English law and the parties hereby submit to the exclusive jurisdiction of the English courts in respect of all matters arising in connection herewith.


Information we hold in relation to payments is retained for statutory and regulatory purposes (including tax records). Payment information may be retained for periods of 3 or 5 years or such other period as required by law. Information relating to tax records may be held for 7 years or such other period are required by law. Where we hold information on behalf of a Client, the retention period is as specified by the Client. We can provide more information on retention periods for specific types of information if you email Our retention policy is updated from time to time to reflect changes in our obligations and legal duties.

How to contact us

If you want to request information about our privacy policies or a complaint you can e-mail us at or write to us at:

Data Protection Officer
PayPoint Group
1 The Boulevard
Shire Park
Welwyn Garden City

If you are not happy with our response to any query or wish to complain you may also contact the Information Commissioner’s Office via or by using the contact details at

Changes and Updates

We may update this Privacy Statement from time to time and in particular as the legal environment in relation to your information changes.

This Privacy Statement was last updated on 3 September 2021