Privacy Policy

Overview

Alvius Ltd (“Alvius”, “we”, “our”, or “us”) is committed to protecting your personal data and complying with all applicable data protection laws, including the UK GDPR and the Data Protection Act 2018. This Privacy Policy describes how we collect, use, disclose, and protect personal data when you use our websites, platform services, or interact with us directly.

Who We Are

Alvius Ltd is a UK-based technology provider delivering cloud-based software platforms to recruitment agencies, MSPs, and organisations to manage temporary worker compliance, candidate vetting, talent pooling, shift booking, invoicing, and timesheet workflows.

Scope

This policy applies to the processing of personal data in connection with:

• Customers: when we provide services or products to you.
• Suppliers: for products and services provided to us.
• Website visitors: when you browse our website.

Data Roles and Responsibilities

• Controller: Alvius controls personal data we collect directly.
• Processor: Alvius processes data on behalf of clients using our services.

What Personal Data We Collect

As a Data Controller (Business Operations)

• Identity Data: name, username, title.
• Contact Data: address, email, phone.
• Financial Data: bank/payment details.
• Transaction Data: payment and transaction history.
• Technical Data: IP address, browser, device data.
• Profile Data: credentials, comments, preferences.
• Usage Data: site and service usage info.
• Marketing Data: communication and marketing preferences.

As a Data Processor (Platform Use)

• Identity and Contact Data: including date of birth.
• Work Data: CVs, work history, training.
• Checks Data: right to work, DBS, etc.
• Timesheet Data: shift and approval records.
• Diversity & Health Data: if voluntarily submitted.
• Technical Data: logs and access records.

How We Use Personal Data

We only use your personal data where permitted by law, based on:

• Performance of a contract
• Legal obligation
• Legitimate interests
• Consent (where required)
• Vital interests
• Public interest

Collection Sources

• Direct: via forms, communication, account use.
• Third-party: from partners or with your permission.

Processing Information

Customer Activities

• Providing services and platforms
• Managing accounts and logins
• Handling payments and collections
• Compliance and vetting
• Marketing (with consent)
• Webinars, demos, and testimonials (with consent)

Supplier Activities

• Receiving products/services
• Making payments
• Communicating and providing support

Website Visitor Activities

• Contact and enquiry handling
• Managing privacy and terms updates
• Security and site maintenance
• Marketing analytics and ads

Cookies and Analytics

We use cookies and similar technologies for analytics and performance. See our cookie notice for more.

Marketing Communications

You can unsubscribe from marketing at any time via provided links or by contacting us directly. Opting out does not affect service communications.

Sharing Your Personal Data

• Employees and contractors
• Group companies
• Suppliers and IT providers
• Professional advisers
• Payment intermediaries
• Regulators and law enforcement
• Advertising and analytics partners
• In business sale or restructuring

International Transfers

Transfers may occur to UK, EU, US, or the Philippines. We ensure protection via:

• Adequacy decisions
• Standard contractual clauses
• Other appropriate safeguards

Data Security

We implement strong safeguards including ISO 27001 certification, encryption, access controls, and incident response procedures. However, internet transmission is not entirely secure.

Data Retention

We retain personal data only as long as necessary. Examples:

• Login credentials: per client config
• Client data: per contract
• Business communications: up to 6 years
• Website logs: per cookie policy

Your Rights

• Access, correct, erase data
• Object or restrict processing
• Data portability
• Withdraw consent

Where We Act as Processor

If your data is held on behalf of a client (e.g., employer), please contact them directly for data requests.

Making Requests

Requests are generally free and processed within one month. We may ask for ID verification.

Complaints

Contact us first with concerns. You may also complain to the ICO or your local data protection authority.

Linked Websites

Third-party site links are not covered by this policy. Review their policies before submitting data.

Contact Us

Company: Alvius Ltd
Address: 2 Hinksey Court, Church Way, Oxford, OX2 9SX
Email: contact@alvius.com

Updates

This policy may be updated from time to time. We will notify you of material changes and obtain consent where required.

Version Date: June 2025