Privacy Policy for Yell Pension Scheme Members, Former Members and Other Beneficiaries
- Important notice
- About us
- What personal data we process and why
- How we use your personal data and legal grounds for processing
- How we use your sensitive personal data
- Who we share your personal data with
- Transferring your personal data overseas
- How long we keep your personal data for
- Your rights
- How to contact us
- Changes to this Privacy Policy
1.
Important notice
Yell is committed to the privacy and security of your personal data. This Privacy Policy describes how we obtain and use personal data about you in connection with your membership of the Yell Pension Plan (the “Plan”) in accordance with the UK General Data Protection Regulation (UK GDPR). It applies to current and former members of the Plan, as well as other beneficiaries whose personal data we process in connection with the Plan, including any individual connected to you, both during and after the time when you are a member or beneficiary of the Plan.
Please review it carefully, together with any other Privacy Policy we may provide on specific occasions when we are collecting or processing personal data about you, so that you are aware of how and why we are using such information.
You have the right to object to us processing your personal data for our legitimate business interests. For more information about your rights and how you can exercise them, please see the section
Your rights.
2.
About us
We are Yell Limited, a private limited company incorporated in (and subject to the laws of) England and Wales with registration number 4205228. Our registered address is at Davidson House, The Forbury, Reading, Berkshire, RG1 3EU.
Yell Limited’s duties incorporate those of the following employing entities in the UK: Yell Sales Limited, Yell Mediaworks Limited and Yell Studio Limited (all referred to collectively in this policy as “Yell”).
Yell is a “data controller”. This means that we are responsible for deciding how we hold and use personal information about you. We are required under data protection legislation to notify you of the information contained in this Privacy Policy.
Following transfer of responsibility in respect of the Plan to Yell Limited, Yell will act as data controller in respect of certain personal data relating to current and former members and beneficiaries for the purposes described in this Privacy Policy.
3. What personal data we process and why
Personal data is any information that identifies you personally whether directly (for example, your name) or indirectly (for example, in combination with reference to an identifier including identification number or online identifier). It does not include data where an individual can no longer be identified (anonymous data).
There are “special categories” of more sensitive personal data that require a higher level of protection.
We may collect, store, and use the following categories of personal data relating to members, former members and beneficiaries:
- personal details such as your name, gender, age, date of birth, email address, postal address and residency information, telephone or mobile number, and identifiers such as National Insurance number and your employee number;
- family circumstances such as details about current relationship status and marital/relationship history, details of family and dependents;
- employment details such as pensionable pay, length of service, employment and career history, recruitment and termination details and job title; and
- financial details such as income, salary, assets and investments, bank account details to process pension payments, tax code, benefits and insurance details.
We may also collect, store and use “special categories” of more sensitive personal data about you – for example, information relating to your physical or mental health or such information that you may provide on your Expression of Wishes form (e.g. details of your political or religious beliefs, sexual orientation or trade union membership).
It is important that the personal information we hold about you is accurate and current. Please inform us if your personal information changes.
4. How we use your personal data and legal grounds for processing
We may use personal data relating to members, former members and beneficiaries for the following purpose:
- To manage and resolve complaints, claims or disputes arising in connection with the Plan.
We rely on the following legal ground to use your personal data in the ways described above:
- Establishment, exercise or defence of legal claims, including in connection with potential or actual disputes arising following the wind-up of the Plan.
We will use your personal data only for the purposes for which it was collected, unless we reasonably consider that we need to use it for another purpose which we consider to be compatible with the original purpose and permitted by law. If we need to use your personal data for an unrelated purpose, we will notify you and we will explain the legal basis that allows us to do so, unless we are legally permitted to do otherwise.
Please note that we may process your personal data without notifying you in advance, where this is required or permitted by law.
5. How we use your sensitive personal data
“Special categories” of personal data require higher levels of protection. We need to have further justification for collecting, storing, and using this type of personal information. We have in place safeguards that we are required by law to maintain when processing such data. We may process special categories of personal data in the following circumstances:
- where the processing is necessary for the establishment, exercise or defence of legal claims.
7. Transferring your personal data overseas
In limited circumstances, we (or the third parties acting on our behalf) may transfer your personal data outside the UK. Where this occurs, appropriate safeguards are in place in accordance with data protection law, including using the UK International Data Transfer Agreement, the UK addendum to the EU Standard Contractual Clauses or other recognised transfer mechanisms. Please ask us if you would like more information about the safeguards that are used to protect your personal data when it is processed outside the UK (see
How you can contact us).
8. How long we keep your personal data for
We retain your personal data for no longer than is necessary for the purposes(s) for which it was provided. What this means in practice will vary between different types of data. When determining the relevant retention periods, we take into account factors including:
- legal obligation(s) under applicable law to retain data for a certain period of time;
- statute of limitations under applicable law;
- potential or actual disputes; and
- guidelines issued by relevant data protection authorities.
Otherwise, we securely erase your personal data from our systems when it is no longer needed
9. Your rights
Under certain circumstances you have the following rights regarding your personal data:
| Rights | What does this mean? |
|---|---|
| 1. Right to be informed | You have the right to be provided with clear, transparent, and easily understandable information about how we use your personal data and your rights. This is why we are providing you with the information in this Privacy Policy. |
| 2. Right of access | You have the right to request access to your personal data we hold about you (commonly known as a “data subject access request”). This is so you can check that we are using your personal data in accordance with data protection law. |
| 3. Right to rectification | You are entitled to have your personal data we hold about you corrected if it is inaccurate or incomplete. |
| 4. Right to erasure | This is also known as ‘the right to be forgotten’ and, in simple terms, enables you to request the deletion or removal of your personal data where there is no good reason for us to keep using it. This is not a general right to erasure; there are exceptions. |
| 5. Right to restrict processing | You have the right to ask us to suspend the processing of your personal data in certain circumstances, for example if you want us to establish the accuracy or the reason for processing it. We can still store your personal data but may not use it further. |
| 6. Right to data portability | You have the right to obtain and reuse your personal data in a structured, commonly used, and machine-readable format in certain circumstances. In addition, where certain conditions apply, you have the right to have such information transferred directly to a third party. |
| 7. Right to object to processing | You have the right to object to us processing your personal data for our legitimate business interests (or those of a third party). If we agree that your objection is justified we will stop using your information for those purposes. Alternatively, we will explain why we still need to use your information. |
| 8. Right to make a complaint to the data protection authorities | You have the right to make a complaint to the Information Commissioner’s Office (ICO) if you are unhappy with how we have handled your personal data or believe our processing of your personal data does not comply with data protection law. |
Your exercise of certain rights may be limited given your personal data is processed by us for the establishment, exercise or defence of legal claims. This includes requests for erasure, data portability or objections to processing, which may be restricted in certain circumstances.
For more information about your rights or if you would like to exercise any of your rights, you are welcome to contact us at the contact details set out below under How you can contact us.
We may need to request specific information from you to help us confirm your identity and ensure your right to access the information (or to exercise any of your other rights). This is another appropriate security measure to ensure that personal data is not disclosed to any person who has no right to receive it.
10. How you can contact us
If you would like to exercise your data protection rights or if you are unhappy with how we have handled your personal data, you may contact us by:
- emailing: dpo@yell.com;
- writing to: Yell Limited, Davidson House, The Forbury, Reading, Berkshire, RG1 3EU; or
- calling: 0800 777 445.
If you would like to contact our Data Protection Officer, you may do so by emailing dpo@yell.com.
If you’re not satisfied with our response to any enquiry or complaint or believe our processing of your personal data does not comply with data protection law, you can make a complaint to the Information Commissioner’s Office (ICO) by:
- writing to: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF;
- calling: 0303 123 1113; or
- submitting a message through the ICO’s website at:
www.ico.org.uk.
11. Changes to this Privacy Policy
This Privacy Policy was last updated on 19 February 2026 and may be updated from time to time. We will not alert you to minor changes, but if there are any major changes to this Privacy Policy, we will take appropriate steps to inform you, in accordance with applicable data protection law.
