Privacy policy

Kore Labs Limited (“Kore, “our”, “us,” or “we”) is a company registered in England and Wales with the registration number 10969092, and registered office at The Old Police Station, Whitburn Street, Bridgnorth, England, WV16 4QP

Protecting data, privacy, and personal information is essential to us. This notice sets out the basis on which we process personal data (also referred to as “personal information” or “information“) and in connection with our Services.

This notice is addressed to our Clients’, Suppliers’ and prospective Clients’ and Suppliers’ employees, contractors, agents, and any other authorized representatives (“you” or “your“). Please ensure you read this privacy notice carefully to understand the types of information we collect, how we use it, the circumstances under which we will share it with third parties, and your rights to personal data about you.

We have appointed a data protection officer (DPO) who is responsible for monitoring and providing guidance with our GDPR status. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact us using the contact information in ‘Contact’ section of this privacy notice.

Information we collect

You will be asked to provide us with some contact information to reach out to you if necessary about our Services. We will use this information to respond to any queries you may have to our Services. This information typically includes your name, corporate email address, and phone number. We need this information to provide our Services to the organization you represent (i.e., our Clients).

We may approach you offline or online (for example, on social media) and inquire whether the organization you represent is interested in our Services. We may use whatever information you have decided to publish on your public profiles to do that. We may also use whatever information you have decided to share with us offline.

We may also approach you via other online channels, such as email, if we believe our Services or any promotional materials about our Services may be of interest to the organisation you represent (i.e., our Clients). We will use your name and email address to do that.

We may contact you if you fill in any of the web forms on our website. When we do that, we will use the contact details you have decided to provide in the relevant form.

We may send you our e-newsletter if you subscribe to it. We will use your name and email address to do that.

The information generated when you browse our website – justified based on your consent.
When you visit our website, certain technical information about the device you use to access our website that may identify you will be generated by cookies, web beacons, and other similar tracking technologies.

Please see our Cookies Policy for the technical details about this type of data processing.

Please use the cookies banner on our website to exercise your choice regarding accepting or rejecting cookies.

Lawful basis of processing information

We only collect and use information about you when the law allows us to. Most commonly, we use it where:

  • The data subject (you) has given consent to the processing activity taking place
  • If the processing is necessary for the performance of a contract
  • If the processing is necessary for compliance with a legal obligation to which the controller is subject
  • If the processing is necessary for the purpose of the legitimate interest pursued by us or our partners

Where legitimate interest is identified as a lawful basis, we will undertake a legitimate interest assessment which is a three-part test covering:

The purpose test – to identify the legitimate interest

Necessity test – to consider if the processing is necessary for the purpose identified

Balancing test – considering the individual’s interests, rights or freedoms and whether these override the legitimate interests identified

Disclosure of your information

Regardless of location, we will treat your information as confidential information.

We reserve the right to use or disclose your Personal Information if required by law or if we reasonably believe that use or disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or comply with a law, court order, or legal process.

We will hold the above information for as long as is necessary to conduct the processing detailed above, deal with any specific issues that may arise, or otherwise as is required by law or any relevant regulatory body.

We restrict access to your personal information to those who need to use it for the relevant purpose(s). Our retention periods are based on business needs, and your information that is no longer needed is either irreversibly anonymised (and the anonymised information may be retained) or securely destroyed. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the personal risk of harm from unauthorised use or disclosure, the purpose for which we process your personal data, and whether we can achieve those purposes through other means, and the applicable legal requirements.

Your rights

Under the General Data Protection Regulation (EU) 2016/679 (and under the UK GDPR), you have various rights about your personal data. All of these rights can be exercised by contacting us at the email address specified below.

You have the right to:

  • Be informed (of the processing);
  • Access (such information);
  • Rectification (of inaccurate information);
  • Erasure (of such information);
  • Restrict processing (in certain cases);
  • Object to profiling;
  • Data portability (in certain cases);
  • Complain to the Information Commissioner’s Office;
  • Withdraw consent (if we have collected your personal information on this basis).

Detailed information on the full content of your rights (and any conditions that may apply) is provided by the United Kingdom’s Information Commissioner’s Office and is available on their website.

Asking us to stop processing your personal data or deleting your personal data will likely mean that the organisation you represent will no longer get information from Kore.

While we will not sell your personal data (or any other data you provide us with) to third parties, we reserve the right to share any data which has been anonymised. You acknowledge and accept that we own all rights, title, and interest in any derived data or aggregated and/or anonymised data collected or created by us.

Transfers outside of the EEA

In this section, we provide information about the circumstances in which your personal data may be transferred and stored in countries outside the European Economic Area (EEA).

We may share personal information to third parties outside of the EEA. Any personal information transferred will only be processed on our instruction and we ensure that information security at the highest standard would be used to protect any personal information as required by the GDPR.

Where personal data is transferred outside of the EEA to a country without an adequacy decision, we will ensure appropriate safeguards are in place prior to the transfer. These could include:

  • Standard Contractual Clauses
  • Binding Corporate Rules
  • An exception as defined in Article 49 of the GDPR

For more information about transfers and safeguarding measures, please contact us using the information provided at the end of this notice.

Changes to this policy

Any changes we make to our privacy policy in the future will be posted on this page, and where appropriate, notified to you by email. We, therefore, encourage you to review it from time to time to stay informed of how we are processing your information.

Contact

Questions, comments, and requests regarding this privacy policy are welcome and should be addressed to dpo@korelabs.co

Date of last amendment
May 2026

Right to Complaint

We take any complaints about our collection and use of personal information very seriously.

If you think that our collection or use of personal information is unfair, misleading, or inappropriate, or have any other concern about our data processing, please raise this with us in the first instance.

To make a complaint, please contact us via email on dpo@korelabs.co

Alternatively, you can contact us:

By post: The Old Police Station, Whitburn Street, Bridgnorth, England, WV16 4QP

Alternatively, you can make a complaint to the Information Commissioner’s Office:

By post: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

By website: Click Here

By email: Click Here

By phone: 0303 123 1113 (Local rate) or 01625 545 745 (National rate)

Kore is a cloud-based platform that brings intelligence, governance and control to products, services and processes across regulated industries. Our technology enables organisations to manage complexity, reduce risk and deliver better outcomes for customers and businesses alike.

All rights reserved © Kore Labs Limited

Registered in England
Company number: 10969092
VAT number: GB325019040

Solutions

Use cases

Risk & compliance
AI enablement & data
Operational excellence
Revenue acceleration

Resources

Company