• Call 0800 777 445 or complete this form. For customer support queries click here
  • This field is for validation purposes and should be left unchanged.

Fair Processing Notice (Privacy Policy)

  1. The following fair processing notice (“Notice”) is a broad description of the way this organisation/data controller processes personal data.
  2. The “Data Control Centre” means: www.yell.com/contactus
  3. Consent
    1. You consent to the processing of your personal data in accordance with this Notice, as updated from time to time.
    2. You consent to receive direct marketing from us and third parties identified in this Notice, by email, telephone, SMS, and by any other method of electronic mail as defined by and for the purposes of the Privacy and Electronic Communications (EC Directive) Regulations 2003 (UK).
    3. You consent to your personal data being disclosed to third parties, including by sale or trade, in accordance with this Notice, as updated from time to time.
    4. You may withdraw consent at any time at the Data Control Centre.
  4. Data Protection and Privacy Policy

Processing is conducted in accordance with the Data Protection and Privacy Policy located at Data Control Centre.

  1. Data controller

Data controller (“we” “our” “us”) means:

Name: Yell Limited
Registered in: England
Registration number: 4205228
Registered address: 3 Forbury Place, Forbury Road, Reading RG1 3YL
Data protection contact email: dpo@yell.com
  1. Data processors

We use the following data processors:

Serial Data processor Contact details State/jurisdiction Legal basis for external transfer Processing activity
1 Tata Consultancy Services Limited http://www.tcs.com India, Philippines Model Clauses Offshore operations including customer service, data operations, product support and account management
2 NSC Programming Limited http://www.nscgroup.co.uk United Kingdom N/A Supporting legacy data systems
3 Experian Limited http://www.experian.co.uk United Kingdom N/A Data matching
4 Wipro Limited http://www.wipro.com India, Philippines   Helpdesk support services
5 Agility Works Limited http://www.agilityworks.co.uk United Kingdom N/A Data cleaning and support
6 SAP (UK) Limited https://go.sap.com/uk United Kingdom N/A Data hosting
7 Rackspace International GmbH http://www.rackspace.com United Kingdom N/A Data hosting
  1. Purposes of data processing
    1. We, our data processors, and the recipients of the personal data identified in this Notice, process personal information to enable us to:
      1. Promote goods and services, including by direct marketing;
      2. Sell, hire or exchange datasets and marketing lists;
      3. Undertake research, modelling and analysis;
      4. Maintain our accounts and records;
      5. Support and manage our employees;
      6. Enhancing existing datasets with new information;
      7. Creating and processing credit risk assessments;
      8. Display of business identity and locations on third party platforms;
      9. Using business identity data within underwriting risk analysis reports for commercial lenders and commercial insurers; and/or
      10. Selling, hiring or exchanging such data with other organisations for similar purposes.
    2. Other purposes from time to time, which may be updated to this Notice.
    3. Processing for the above purposes is conducted on the following conditions for legitimate processing:
      1. Consent of the data subject;
      2. Contractual necessity; and/or
      3. Legitimate interests of the data controller or third party.
  1. Data subjects
    1. We process personal data about:
      1. Our advertisers, customers and clients;
      2. Employees;
      3. Professional advisers and consultants;
      4. Suppliers and service providers;
      5. Complainants and enquirers;
      6. Users of the website at http://www.yell.com; and/or
      7. Persons involved in businesses throughout the United Kingdom.
  1. Categories of personal data
    1. We process personal data including:
      1. Personal details;
      2. Contact details;
      3. Education and employment details;
      4. Financial details;
      5. Goods or services provided; and/or
      6. Internet browsing habits and interests.
    2. We do not process sensitive classes of information.
  2. Recipients of personal data
    1. We may share personal data we hold with any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in Section 1159 of the Companies Act 2006 (UK).
    2. We do or may share information, including personal data, with the following third party recipients (in addition to the data processors identified above):
Serial Recipient Contact details State/jurisdiction
1 hibu Incorporated https://hibu.com United States
2 118118 http://www.118118.com United Kingdom
3 Bing https://www.bing.com United Kingdom
4 Blue Group http://bluegroupinc.com United Kingdom
5 Cardwell Marketing https://cardwellmarketing.com United Kingdom
6 Central Index https://centralindex.com United Kingdom
7 Corpdata http://www.corpdata.co.uk United Kingdom
8 creditsafe http://www2.creditsafeuk.com United Kingdom
9 Data HQ https://datahq.co.uk United Kingdom
10 Data8 https://www.data-8.co.uk United Kingdom
11 DueDil https://www.duedil.com United Kingdom
12 Dunn & Bradstreet https://www.dnb.co.uk United Kingdom
13 Equifax https://www.equifax.co.uk United Kingdom
14 Experian http://experian.co.uk United Kingdom
15 Factual https://www.factual.com United Kingdom
16 GBG https://www.gbgplc.com/uk/ United Kingdom
17 IDG http://www.idg.co.uk United Kingdom
18 Red Flag Alert https://www.redflagalert.com United Kingdom
19 Scoot http://www.scoot.co.uk United Kingdom
20 Segment One https://segment.one United Kingdom
21 Verisk http://www.verisk.com United Kingdom
22 Yahoo https://uk.yahoo.com United Kingdom
    1. Where necessary or required we share information, including personal data, with the following categories of third party recipients:
      1. Family, associates and representatives of the person whose personal data we are processing;
      2. Suppliers and service providers;
      3. Traders in personal data;
      4. Marketing list users;
      5. Advertisers who will use the data for direct marketing;
      6. Survey and research organisations;
      7. Employment and recruitment agencies;
      8. Business associates;
      9. Other companies in the same group;
      10. Credit reference agencies;
      11. Debt collection and tracing agencies; and/or
      12. Crime and taxation authorities when requested pursuant to section 29 of the Data Protection Act 1998 (UK).
    2. We may also disclose personal data to third parties:
      1. In the event that we sell or buy any business or assets, in which case we may disclose personal data we hold to the prospective seller or buyer of such business or assets;
      2. If we or substantially all of our assets are acquired by a third party, in which case personal data we hold will be one of the transferred assets;
      3. In order to comply with any legal obligation, or in order to enforce or apply any contract with the data subject; or to protect our rights, property, or safety of our employees, customers, or others; and/or
      4. For the purposes of fraud protection and credit risk reduction.
    3. We may also disclose personal data to other third parties from time to time, which may be updated to this Notice.
  1. Transferring information outside the EEA
    1. We regularly transfer personal information overseas. Where this is necessary this may be to countries or territories around the world. We are required to ensure that when we need to do this we comply with the Data Protection Act 1998(UK).
    2. We currently transfer personal data to the following jurisdictions:


    Assessment of local data protection adequacy

    Legal basis for external transfer



    Limited protection for externally collected data

    Model clauses, consent of the data subject



    Limited protection for externally collected data

    Model clauses, consent of the data subject


    United States

    No coherent data protection legislation

    Model clauses, consent of the data subject

    1. We may transfer personal data to other jurisdictions external to the European Economic Area from time to time, which may be updated to this Notice.
  1. Provision of personal data
    1. Provision of personal data is voluntary.
    2. If you choose not to provide your personal data and consent to this Notice, we may be unable to publish your business record on the directory of businesses hosted at http://ww.yell.com and within datasets shared with third parties.
  2. Data subject rights
    1. As the data subject, you have the right to access a copy of the information comprising your personal data, such access requests can be lodged via the Data Control Centre.
    2. As the data subject you have rights to:
      1. Object to processing that is likely to cause or is causing damage or distress, such request can be made here;
      2. Prevent processing for direct marketing;
      3. Object to decisions being taken by automated means; and
      4. Have inaccurate personal data rectified, blocked, erased or destroyed.Such rights may be exercised via the Data Control Centre.
    3. You have the right to lodge a complaint concerning our compliance with the data protection principles with the Information Commissioner here: https://ico.org.uk/concerns/
    1. Data retention period

We retain personal data indefinitely, until it is identified as no longer correct, or until it is no longer required.

    1. Data protection compliance measures

We complete a data protection impact assessment prior to any significant change to our processing activities or data recipients.  We complete periodic data protection audits, at least once per year to ensure ongoing compliance with the data protection legislation.

    1. This Notice does not form part of any employee's contract of employment, any supplier terms of contract, any user or consumer terms of contract, unless expressly stated to the contrary and we may amend it at any time.