Chime

Legal

Privacy Policy

Last updated: 1 March 2026

1. Who we are

Chime Software Ltd ("Chime", "we", "us", "our") is the data controller responsible for your personal data. We are registered in England and Wales. Our registered address and company number are available on our website at chimesoftware.com.

If you have questions about this policy or our data practices, contact us at privacy@chimesoftware.com.

2. What data we collect

We may collect and process the following categories of personal data:

  • Identity data: name, job title, company name
  • Contact data: email address, phone number, postal address
  • Technical data: IP address, browser type, device information, usage data
  • Usage data: information about how you use our website and platform
  • Marketing data: your preferences for receiving communications from us

When you use the Chime platform as a workforce management tool, we also process data on behalf of your employer (as a data processor), which may include biometric data, GPS location data, and attendance records. This processing is governed by our data processing agreement with your employer.

3. How we collect your data

We collect data through:

  • Direct interactions (booking a demo, filling in forms, contacting us)
  • Automated technologies (cookies, analytics tools, server logs)
  • Third parties (our CRM system, marketing platforms, referral partners)

4. How we use your data

We use your personal data for the following purposes:

  • To provide and manage the Chime platform and services
  • To process and respond to your enquiries and demo requests
  • To send you marketing communications (where you have consented)
  • To improve our website, products, and services
  • To comply with legal obligations
  • To protect our legitimate business interests

5. Legal basis for processing

We process your personal data on the following legal bases under UK GDPR:

  • Consent: where you have given clear consent for us to process your data for a specific purpose
  • Contract: where processing is necessary for the performance of a contract with you
  • Legitimate interests: where processing is necessary for our legitimate interests, provided these are not overridden by your rights
  • Legal obligation: where we need to comply with a legal obligation

6. Data sharing

We may share your personal data with trusted third-party service providers who assist us in operating our business (hosting providers, CRM systems, analytics tools, payment processors). All third parties are required to respect the security of your data and treat it in accordance with the law.

We do not sell your personal data to third parties. We will never share your data for purposes unrelated to the services described in this policy.

7. Data retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including satisfying any legal, accounting, or reporting requirements. When your data is no longer needed, we will securely delete or anonymise it.

8. Your rights

Under UK data protection law, you have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request erasure of your data
  • Object to processing of your data
  • Request restriction of processing
  • Request data portability
  • Withdraw consent at any time

To exercise any of these rights, contact us at privacy@chimesoftware.com. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

9. Cookies

Our website uses cookies and similar technologies to improve your experience, analyse usage, and assist with marketing. You can manage your cookie preferences through the cookie banner displayed on your first visit or through your browser settings.

We use essential cookies (required for the website to function), analytics cookies (to understand how visitors use our site), and marketing cookies (to deliver relevant advertising). Only essential cookies are set without your consent.

10. Data security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. All data is encrypted in transit (TLS 1.3) and at rest. Our platform is hosted on UK-based servers.

11. International transfers

Your data is primarily stored and processed within the United Kingdom. Where we transfer data outside the UK, we ensure appropriate safeguards are in place in accordance with UK data protection law, including standard contractual clauses approved by the ICO.

12. Changes to this policy

We may update this privacy policy from time to time. Any changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically.