Alpha This is a new service – your feedback will help us to improve it.

Menu Search

Clear Score

The information on this page is from the privacy notice published by Clear Score.

You can use this page to learn about how this organisation uses personal data and find out how to make a request related to the data they hold about you.

Make a request

Organisation information

Description

Open banking service

Registration country

United Kingdom

Registration number

09221862

Data Protection Officer

Organisations that use special categories of data, are public bodies, or do large scale processing must appoint a Data Protection Officer.

Role

Data Protection Officer

Email address

privacy@clearscore.com

Data categories collected

Organisations must give details about what categories of data are stored and processed.

  • Bank account details

  • Date of birth

  • Device information

  • Email address

  • Employment

  • Income

  • Location

  • Names

  • Postal address

  • Telephone number

Unusual processing purposes

Organisations must provide information about what they do with data. This section highlights less common uses of data.

Observations

ClearScore indicate that they collect some additional information from users of their mobile app. They do not provide justification for why this information is necessary:

* "call log details – we will access your phone call history (this includes the phone numbers used for calls or SMS messages sent or received, duration of calls and the time of the communication)."
* "the amount of mobile and Wi-Fi data which other applications on your phone use (this is the upload and download usage per applications, total upload and download usage for the device and the time spent in the applications)"
* "battery charging behaviour - we receive notification of changes to your battery as they occur"

Third parties

Organisations must give details about other parties that personal data is shared with.

List of third parties

  • Amazon Web Services, Inc

  • Blenheim Chalcot IT Services India Private Limited

  • Blenheim Chalcot IT Services India Private Limited

  • Chattermill Analytics Limited

  • Domo, Inc.

  • Emailage Limited

  • Iovation, Inc.

  • Onfido Limited

  • Segment.io, Inc.

  • Truelayer Limited

  • Zendesk, Inc.

  • Other companies in ClearScore's group

  • Credit reference agencies

  • Fraud prevention agencies

  • Product providers (business partners who offer you credit cards, loans, car finance, mortgages and other related products)

  • Service providers used by ClearScore for analysis and profiling of credit information

  • Analytics and search engine providers

  • Companies involved in potential mergers and acquisitions

  • Any third parties to which disclosure would be legally required

How specific is this information?

Third parties are listed as groups

Observations

ClearScore offers a clear breakdown of companies who data may be shared with, listing a number of parties by name directly.

Retention rules

Organisations must give details about how long data is kept.

Summary

ClearScore commit to deleting personal data within 30 days if an account is terminated.

While accounts remain active, ClearScore indicate that they do not keep information longer than is necessary for the purpose of which they are using it.

How specific is this information?

  • Retention rules are given without mentioning specific categories of data

  • Specific times are given for how long data is kept

Lawful bases

Organisations must justify collection and use of data under six lawful bases and provide information about their decisions

  • Consent

    We will always seek your consent to process certain types of information where we are legally required to do so. You have the right to withdraw or decline your consent at any time.

  • Contract

    We need you to give us the information you provide, and to collect information about you from the Credit Reference Agencies or other third parties in order for us to provide you with our services as agreed in our contract with you. We cannot provide our services to you without collecting the information you give us because we need certain information from you to be able to seek your credit report and score and to show suitable financial offers to you.

    For other types of information (such as the information we collect based on your use of the website and information we receive from our sources about you), we process this information for the purposes of providing our services to you as agreed in our contract and for the purpose of to enable us to:

    * provide a secure website to our customers; and
    * analyse our users’ behaviour and preferences, and information collected from users' devices in order to have information required to be able to improve the services we provide to our customers and the user experience on our website.

  • Legitimate interests

    We may process your personal data for the purposes of our legitimate interests or for the legitimate interests of our product providers or other suppliers provided that such processing does not outweigh your rights and freedoms. As an example, we may process your personal data to:
    * display tailored product offers to you
    * comply with laws that apply to us
    * provide you with our service, including for the purpose of quality control and analysis
    * protect you and us from fraud or other threats
    * conduct analysis, segmentation and profiling of your data in order to provide you with direct marketing communications
    * improve our service and manage our customer relationships
    * Where we rely on legitimate interests, you have the right to object at any time.

Security standards

Organisations must ensure that data is stored and processed securely.

This privacy notice does not appear to have this information.

Data processing addendum

Some organisations offer a data processing addendum that gives data adequate protections when it leaves the EEA.

This privacy notice does not appear to have this information.

Automated decision making

Organisations must give details about how data is used to make decisions without human involvement.

Summary

This organisation uses automated decision making

Observations

ClearScore use automated decisionmaking for the purposes of:
* Identity verification
* Tailoring products and services
* Tailoring communications

How specific is this information?

The organisation mentions use of automated decision making for specific purposes

Complaint information

Organisations must give details about how to make a complaint with a data protection authority.

Summary

This privacy notice contains information about to make a complaint to a data protection regulator

Observations

ClearScore direct complaints about their processing of data to their Data Protection Officer's contact details in the first instance, and to the ICO where complains remain unresolved.

How specific is this information?

This privacy notice contains specific contact details for a data protection regulator

Design recommendations

Organisations are required to provide privacy information in a transparent way. The Article 29 Working Party has provided recommendations on how to do this.

Assessment

This privacy notice:

  • Has language that is easy to understand

  • Is designed in a way that makes it easy to find information

  • Can be easily found on the organisation's website

Last updated 2018-06-29 at 08:06:11 • Download as JSONAPI documentationView on GitHubView on OpenCorporates