Navy Qualis logo with icon

Privacy Policy

Qualis Group Ltd take data privacy very seriously and this privacy notice contains information about who we are and how and why we collect, store, use and share your personal data. It also explains your rights in relation to your personal data and how to contact us or supervisory authorities in the event you have a complaint. 

We are the Data Controller who collect, use and are responsible for certain personal data retained by us about you. When we do so we are subject to The Data Protection Act 2018.

 We are registered as a data controller for the purposes of the Data Protection Act 2018. Our registration number on the register of data controllers maintained by the Information Commissioner is ZA769919.

Key terms


It would be helpful to start by explaining some key terms used in this notice: 


We, us, our 

Qualis Group Ltd (Registered No 12250938) which consists of:


Qualis Commercial Registered No: 12551397

Qualis Property Solutions Registered No: 14556543

Qualis Community Registered No: 13281212

Qualis Homes Registered No: 11114084


whose registered address is at 323 High Street, Epping, England, CM16 4BZ

Our Data Protection Officer 

Our Group Level Data Protection Officer who oversees company compliance

Personal data 

Any information relating to a living identified or identifiable individual 

Special category personal data 

Personal data revealing racial or ethnic origin, political opinions, religious beliefs, philosophical beliefs or trade union membership

Payments, banking and financial data

ID data

Genetic data 

Biometric data (where used for identification purposes) 

Data concerning health, sex life or sexual orientation 

Data subject 

The individual who the personal data relates to 



Personal data we collect about you

The personal data we collect about you depends on the services we provide to you and will include the following personal data about you: 

  • your name and contact information, including email address and telephone number and company details 
  • information to check and verify your identity as required by group companies
  • Bank details, credit card and finance/payment details
  • your contact history, purchase history and saved items 
  • Information about how you use our website, IT, communication and other systems 

Updating your personal data

We take reasonable steps to ensure your personal data remains accurate and up to date. To help us with this, please let us know if any of the personal data you have provided to us has changed, e.g. your surname or address.

Please do this by notifying the Data Protection Officer on the details above.

How your personal data is collected

We collect most of this personal data directly from you—in person, by telephone, text or email and/or via our website. However, we may also collect information:  

  • from publicly accessible sources, e.g. Companies House or HM Land Registry
  • directly from a third party, e.g:
    • Solicitors and conveyancing companies
    • credit reference agencies
    • Local Authorities
    • Solicitors and legal conveyancing companies
    • Estate agent or other property professionals
    • Independent Financial Advisors
    • Other 3rd parties who support Qualis Groups Ltd
  • from a third party with your consent, eg your bank or building society 
  • from cookies on our website—for more information on our use of cookies, please see our cookie policy
  • via our IT systems, e.g.
    • through automated monitoring of our websites and other technical systems, such as our computer networks and connections, communications systems, email and instant messaging systems; 

How and why we use your personal data

Under data protection law, we can only use your personal data if we have a proper reason.  At Qualis Group Ltd the legal reasons we apply to our data processing activities are:

  • where you have given consent to receive ongoing marketing communication
  • to comply with our legal and/or regulatory obligations 
  • to meet the contractual terms we have agreed or pre contract preparation
  • for our legitimate interests or those of a third party

A legitimate interest is when we have a business or commercial reason to use your personal data, so long as this is not overridden by your own rights and interests. We carry out the required assessment when relying on legitimate interests, to balance our interests against your own. 

The table below explains what we use your personal data for and why.



What we use your personal data for 

Our reasons 

Providing services to you 

To deliver the agreed contracted services

Pre contract preparation  

Preventing and detecting fraud against you or us 

For our legitimate interest, i.e. to minimise fraud that could be damaging for you and/or us 

Conducting checks to verify customer identity 

Screening for financial and other sanctions or embargoes 

Other activities necessary to comply with professional, legal and regulatory obligations that apply to our business. 

Depending on the circumstances: 

  • to comply with our legal and regulatory obligations 
  • for our legitimate interests 

To enforce legal rights or defend or undertake legal proceedings 

Depending on the circumstances: 

  • to comply with our legal and regulatory obligations
  • in other cases, for our legitimate interests, i.e. to protect our business, interests and rights

Ensuring business policies are adhered to, e.g. policies covering security and internet use 

For our legitimate interests, i.e. to make sure we are following our own internal procedures  

Operational reasons, such as improving efficiency, training and quality control 

For our legitimate interests, i.e. to be as efficient as we can so we can deliver the best service to you at the best price 

Ensuring the confidentiality of commercially sensitive information 

Depending on the circumstances: 

  • for our legitimate interests, i.e. to protect trade secrets and other commercially valuable information
  • to comply with our legal and regulatory obligations 

Statistical analysis to help us manage our business (e.g. financial performance, customer base, service range or other efficiency measures) 

For our legitimate interests, i.e. to be as efficient as we can so we can deliver the best service to you

Preventing unauthorised access and modifications to systems 

Depending on the circumstances: 

  • for our legitimate interests, i.e. to prevent and detect criminal activity that could be damaging for you and/or us; 
  • to comply with our legal and regulatory obligations 

Protecting the security of systems and data used to provide the services 

To comply with our legal and regulatory obligations and to protect our business assets

Updating and enhancing customer records 

Depending on the circumstances: 

  • to perform our contract with you or to take steps at your request before entering into a contract
  • to comply with our legal and regulatory obligations; 
  • for our legitimate interests, eg to stay connected with our customers about existing purchases and new opportunities 

Statutory returns 

To comply with our legal and regulatory obligations 

Ensuring safe working practices, staff administration and assessments 

Depending on the circumstances: 

  • to comply with our legal and regulatory obligations
  • for our legitimate interests, e.g. to make sure we are following our own internal procedures and working efficiently so we can deliver the best service to you 

Marketing our services and those of selected third parties 

For our legitimate interests, i.e. to promote our business to current/previous customers and third parties

To share your personal data with members of our group and third parties that will or may take control or ownership of some or all our business (and professional advisors acting on our or their behalf)

Depending on the circumstances: 

  • to comply with our legal and regulatory obligations 
  • in other cases, for our legitimate interests, i.e. to protect, realise or grow the value in our business and assets 


Sharing your personal data

We do not sell, rent or trade your personal data and limit the access to personal data based on strict management processes and security procedures. 

We do however share with a range of partners and contacts outlined below: 

  • Other group companies where there are follow on services
  • Carefully selected third parties we use to help deliver our services to you, e.g. our recommended partners and associates
  • other third parties we use to help us run our business, e.g. marketing agencies, technical support or website hosts 
  • third parties approved by you, e.g. banks, building societies, mortgage providers and conveyancing services 
  • our solicitors, insurers and brokers
  • local authorities and utility companies
  • our banks
  • We or the third parties mentioned above occasionally also share personal data with: 
  • our external auditors, e.g. in relation to the audit of our accounts, in which case the recipient of the information will be bound by confidentiality obligations
  • our and their professional advisors (such as lawyers and other advisors), in which case the recipient of the information will be bound by confidentiality obligations
  • law enforcement agencies, courts, tribunals and regulatory bodies to comply with our legal and regulatory obligations
  • other parties that have or may acquire control or ownership of our business (and our or their professional advisers) in connection with a significant corporate transaction or restructuring, including a merger, acquisition, asset sale, initial public offering or in the event of our insolvency—usually, information will be anonymised but this may not always be possible. The recipient of any of your personal data will be bound by confidentiality obligations.

Transferring your personal data out of the UK and EEA

Where possible we aim to process data within the UK or EEA. However, the use of proprietary software packages often results in data being transferred to countries outside the UK or EEA. 

Where data is transferred outside the UK or EEA we make every effort to ensure that the software we use adheres to international best practice for data security and appropriate data transfer mechanisms are adhered to. 

Data retention

Data protection legislation requires us to retain personal data for the minimum period required to undertake the processing activity. We therefore only retain data according to contractual or legal obligations.

Personal data related to financial transactions must legally be retained for 7 years. 

Some contracts may have longer data retention periods. Where your data has been processed in relation to a specific contract that retention period will apply. 

You may unsubscribe from marketing communications at any point by clicking on the link in the email or by contacting the Data Protection Officer named above.

Your rights

All individuals have a set of rights relating to the control of personal data as detailed below:


To be informed

To be clearly told why, how, when and by who your personal data is being collected. Additionally, you have the right to know who has access to your data, how long it will be retained and how it will be deleted.


The right to be provided with a copy of your personal data 


The right to require us to correct any mistakes in your personal data 

Erasure (also known as the right to be forgotten) 

The right to require us to delete your personal data— in certain situations 

Restriction of processing 

The right to require us to restrict processing of your personal data in certain circumstances, eg if you contest the accuracy of the data 

Data portability 

The right to receive the personal data you provided to us, in a structured, commonly used and machine-readable format and/or transmit that data to a third party—in certain situations 

To object 

The right to object: 

  • at any time to your personal data being processed for direct marketing (including profiling)
  • in certain other situations to our continued processing of your personal data, e.g. processing carried out for the purpose of our legitimate interests unless there are compelling legitimate grounds for the processing to continue or the processing is required for the establishment, exercise or defence of legal claims 

Not to be subject to automated individual decision making 

The right not to be subject to a decision based solely on automated processing (including profiling) that produces legal effects concerning you or similarly significantly affects you 

The right to withdraw consent 

If you have provided us with a consent to use your personal data you have a right to withdraw that consent easily at any time 

You may withdraw consent by contacting our Data Protection Officer on the details above.

Withdrawing consent will not affect the lawfulness of our use of your personal data in reliance on that consent before it was withdrawn 


If you would like to exercise any of those rights, please contact our Data Protection Officer on the contact information above.

Keeping your personal data secure

We take every reasonable precaution to protect against the loss, misuse or alteration of your personal data and to ensure that it will be processed in accordance with this Notice.  

Unfortunately, the transmission of data via the internet is not completely secure and therefore we cannot guarantee the security of data sent to us electronically.  You acknowledge and accept that, despite our efforts to protect your personal data, there is a risk that others may try to intercept the information you provide to us. Transmission of your personal data is entirely at your own risk.  

Once we have received your personal data, we use strict procedures and security features to prevent unauthorised access. Where we have given you (or where you have chosen) a password so that you can access certain parts of our site, you are responsible for keeping this password confidential. 

How to complain

If you wish to complain about this privacy notice or any aspect of our data management processes, please contact the Data Protection Officer on the contact details above.

If we are unable to resolve your complaint then you may complain to the ICO using any of the following methods:


The ICO’s address:           

Information Commissioner’s Office

Wycliffe House

Water Lane





Helpline number: 0303 123 1113

Changes to this privacy notice

This privacy notice was published in 20th March 2024 and will be updated in 20th March 2025.

We may change this privacy notice from time to time—when we do we will inform you via our website or email. 

How to contact us

You can contact us and/or our Data Protection Officer by post, email or telephone if you have any questions about this privacy notice or the information we hold about you, to exercise a right under data protection law or to make a complaint. 

Our contact details are shown below: 

Qualis Group

323 High Street
CM16 4BZ

Qualis Group 0333 230 0460

Skip to content