PAYMENTS
Merchant Terminals© Copyright 2026, All Rights Reserved
This Consumer Privacy Policy covers the processing of personal data by ProminentContact LTD, trading as Komparly, a private limited company under the laws of England and Wales with company number 12150394, whose registered office is at Lily Hill House, Lily Hill Road, Bracknell, England, RG12 2SJ and ICO Registration Number ZA599278 (“Komparly”, “we”, “us”, or “our” in this policy).
This policy applies specifically to personal data collected from consumers, individuals acting in a personal or household capacity, in connection with our consumer lead generation and energy comparison activities. It is a separate and standalone policy from Komparly’s platform privacy policy, which covers our data platform and database services.
If you have any questions about this policy or how we handle your personal data, please contact us at:
We are committed to protecting your privacy and processing your data lawfully, fairly, and transparently in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018 (DPA 2018), the Privacy and Electronic Communications Regulations 2003 (PECR), and all relevant ICO guidance.
This policy explains:
When you submit an enquiry through one of our consumer-facing campaign pages or comparison websites, we collect the following categories of personal data:
Information you provide directly:
Information collected automatically at point of submission:
The automatically collected information is retained as auditable evidence of your consent and is not used for any other purpose.
We collect all consumer data directly from you via our website forms and do not obtain consumer personal data from third-party sources for these services.
You are responsible for ensuring that the information you provide is accurate and up to date.
We process your personal data on the following lawful bases under UK GDPR:
Consent is our primary lawful basis for processing and sharing your personal data with marketing partners for the purpose of contacting you about home energy deals and related consumer products. We obtain your consent through an active, affirmative submission on our consumer campaign pages. No boxes are pre-ticked. You may withdraw your consent at any time -see Section 8 for how to do this.
We may process your data where we are required to do so by law, for example in response to a lawful request from the Information Commissioner’s Office (ICO) or another regulatory authority.
We may process limited data under legitimate interests for fraud prevention, system security, and the maintenance of our suppression and opt-out records. We only rely on this basis where our interests are not overridden by your rights and freedoms.
All electronic marketing communications are carried out in compliance with the Privacy and Electronic Communications Regulations (PECR).
In summary, we rely on the following lawful bases for specific processing activities:
ProminentContact LTD (t/a Komparly) is the data controller responsible for collecting and sharing your personal data as described below.
By clicking “Get Quote”, you confirm that you have read the Privacy Policy and consent to be contacted for marketing purposes by the following organisations in relation to your enquiry:
You can choose how you would like to be contacted:
You may withdraw your consent at any time.
Organisations you consent to may contact you more than once in relation to your enquiry.
Your consent satisfies all requirements under UK GDPR and ICO guidance, in that it is:
We carry out Data Protection Impact Assessments (DPIAs) where our processing activities are likely to result in a high risk to individuals’ rights and freedoms, including consumer data collection and sharing for marketing purposes. These assessments ensure that appropriate safeguards are implemented.
We use the personal data you provide for the following purposes:
We do not use your consumer data to build sales intelligence databases, conduct commercial profiling for third parties, or for any purpose unrelated to the consumer energy services described in this policy.
We do not carry out automated decision-making or profiling that produces legal or similarly significant effects on individuals.
We do not sell your personal data to third parties.
Your personal data is shared with ResQ LTD (1st Floor 1 Paragon Square, Hull, East Yorkshire, England, HU1 3JZ), who act as an independent data controller and may contact you directly by telephone, email, SMS, or post regarding home energy switching deals and related products offered by their partner energy suppliers, based on your consent.
We enter into formal data sharing agreements with all partners who receive consumer data. These agreements define the roles and responsibilities of each party, ensure compliance with UK GDPR and PECR, and require appropriate technical and organisational safeguards.
We conduct due diligence on all partners before sharing data, including assessing their data protection practices, regulatory standing, and complaint history.
Once your data is shared, each organisation acts as an independent data controller and is responsible for its own processing of your personal data.
ResQ’s energy supplier clients who may include the following energy suppliers relevant to your enquiry:
The table below lists the key third parties who may receive your personal data in connection with your consumer enquiry:
Only the organisations listed in Section 4 will receive your personal data based on your consent.
| Organisation / Partner | Role | Privacy Policy |
|---|---|---|
| ResQ LTD | Contact centre partner for home energy campaigns | View Policy |
| British Gas / Centrica | Energy supplier client (via ResQ) | View Policy |
| EDF Energy | Energy supplier client (via ResQ) | View Policy |
| Scottish Power | Energy supplier client (via ResQ) | View Policy |
| E.ON / E.ON Next | Energy supplier client (via ResQ) | View Policy |
| Octopus Energy | Energy supplier client (via ResQ) | View Policy |
| OVO Energy | Energy supplier client (via ResQ) | View Policy |
Each third party listed above operates under its own privacy policy and acts as an independent data controller in respect of your data once received. We strongly recommend that you review their respective privacy policies using the links provided.
Prior to passing your data to telephony partners, we carry out appropriate screening to protect consumer rights. The type of screening applied depends on how and when your data was collected:
These validation checks may be carried out using trusted third-party providers under strict contractual controls and data protection obligations.
These checks are carried out under our legitimate interests in ensuring data accuracy and reducing invalid contact attempts. They do not involve profiling or automated decision-making and have no legal or significant effect on individuals.
In all cases, we only pass data to telephony partners where we have a valid consent record and have taken appropriate steps to verify the data quality.
We use trusted technology partners for data storage, hosting, and platform infrastructure. All such providers are bound by data processing agreements and are only permitted to process your data in accordance with our documented instructions and applicable data protection law. Your data is stored within the UK and EEA.
We may disclose your personal data to government bodies, law enforcement agencies, or the ICO where required by law or in connection with legal proceedings.
In the event of a merger, acquisition, or sale of assets, you will be informed of any change in ownership and provided with any choices available to you in respect of your personal data.
We retain your personal data for as long as is necessary for the purposes for which it was collected, in line with the following periods:
To determine the appropriate retention period in each case, we consider the sensitivity of the data, the purposes for which it is processed, and applicable legal requirements.
You have the following rights in relation to the personal data we hold about you. We will respond to all valid requests within one calendar month, free of charge.
We aim to acknowledge and respond to complaints within 5 business days.
To protect your personal data and prevent unauthorised disclosures, we may require reasonable proof of identity before responding to a rights request.
You can stop receiving marketing communications or request deletion of your data at any time using any of the following methods:
Where you request deletion, we will remove your data from active systems. We may retain minimal information (such as your email address or telephone number) on a suppression list to ensure you are not contacted again.
All opt-out and data deletion requests will be processed within 48 hours. Once processed, your details will be added to our internal suppression list and will not be passed to any further marketing partner. We will confirm your suppression in writing upon request.
This suppression record will only contain the minimum data necessary (such as your email address and/or telephone number) to ensure you are not contacted again.
You may also register with the Telephone Preference Service (TPS) at www.tpsonline.org.uk to opt out of all unsolicited telephone marketing. Please note that TPS registration applies to list-based and historic data. If you have provided specific consent to be contacted, that consent takes precedence in respect of that contact only.
We are committed to ensuring the security of your personal data. We implement appropriate technical and organisational measures to guard against unauthorised access, alteration, disclosure, or destruction of your information. Our security measures include:
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the ICO and, where required, you as the data subject, without undue delay and in accordance with UK GDPR Article 33. We operate in line with internationally recognised security standards, including ISO 27001-aligned controls and SOC 2 security principles.
Our consumer services are available to individuals aged 18 and over only. We do not knowingly collect or process personal data from individuals under the age of 18.
Our consumer enquiry forms include a self-declaration checkbox requiring users to confirm that they are aged 18 or over at the point of submission.
We do not carry out technical age verification; however, if we become aware that personal data has been submitted by an individual under the age of 18, we will delete such data from our systems without undue delay and in any event within 72 hours.
If you believe a person under 18 has submitted data through our services, please contact us immediately at compliance@prominentcontact.com.
Our consumer-facing websites use cookies and similar tracking technologies to record form submissions, measure campaign performance, and improve user experience. We use cookies and similar technologies in accordance with PECR. Where required, we obtain your consent through a cookie banner before placing non-essential cookies on your device. You can manage your preferences at any time.
We use Google Analytics to collect pseudonymised usage data. You can opt out of Google Analytics tracking at https://tools.google.com/dlpage/gaoptout.
This may involve data being processed on servers located outside the UK or EEA, subject to appropriate safeguards.
Your personal data is stored and processed within the United Kingdom and the European Economic Area (EEA).
Where limited processing by trusted service providers involves access from outside the UK or EEA, we ensure that appropriate safeguards are in place in accordance with UK GDPR. These safeguards include the use of the UK International Data Transfer Agreement (IDTA) or the UK Addendum to the EU Standard Contractual Clauses.
We ensure that any such transfers are subject to appropriate risk assessments and contractual protections to safeguard your personal data.
If you would like further information about any international data transfers, please contact us at compliance@prominentcontact.com.
We review and update this Consumer Privacy Policy regularly to ensure it remains accurate and compliant with applicable law. Any material changes that affect how we use your personal data will be communicated to you by email or by a prominent notice on our website. The current version of this policy is always available at https://www.komparly.com/privacy-policy
Version: 1.1
Last Updated: March 2026
Next Review: Annually or upon regulatory change
For any questions, data rights requests, or complaints about this policy or the way we handle your personal data, please contact us:
If you are not satisfied with our response, you have the right to complain to the Information Commissioner’s Office:
We cooperate fully with regulatory authorities and comply with all applicable data protection laws and guidance.