We are committed to protecting the privacy and security of your personal data. This Privacy Notice describes how we collect, use and look after your personal data, including when you visit our website and purchase services from us. It also tells you about your rights and how the law protects you.
Who we are and how to contact us
We are Dimeasure Ltd. We are a private company registered in England and Wales with company number 15095763. If you have any queries about this Privacy Notice, please contact us using the contact information on our home page.
What personal data do we process?
The type of data we process will depend on our relationship with you. We may collect, use, store and transfer the following types of personal data:
- Contact data: Name, work contact details (email address, telephone number), job title, company/organisation, and usernames on third‑party services (if we communicate with you there).
- Billing and payment data: Billing address and data concerning payment status, if you pay for our services. Where applicable, we may hold certain payment details, including where we make payments to you.
- Identity data: First name, last name, title, job title, organisation and place of work. We may also collect some other identity data about you for our regulatory and compliance purposes, such as your date of birth and information contained on identity documents.
- Online usage, metadata and web data: IP address, browser type/version, device and operating system information, and information about how you use our website and/or services (for example, pages viewed, time spent and links clicked). See our Cookie Policy for details of cookies and similar technologies.
- Data processed using our services: If you use our services (including RXI), we may process personal data contained in or generated from your use of the services (including data about authorised users). Depending on configuration and your use case, this may include personal identifiers relating to individuals referenced in trading platforms or related systems.
In respect of website enquiries, account administration, billing and service provision, we typically act as a controller of the relevant personal data. However, where you require personal data to be uploaded to RXI as part of your configuration, you will be the controller of that personal data and we will act as a processor on your instruction. If you do provide us with personal data about other people, including for the purpose of using our services and/or RXI, you must ensure you are allowed to share it with us for the intended purpose.
How and when do we collect personal data?
We may collect personal data in the following ways:
- Direct interactions: Where you interact with us, including by completing our online Contact Us form or where you contact us in connection with our services or another matter.
- Using our website or services: We may collect your data using cookies or other similar technologies. Please see our Cookie Policy for more information. We may also collect personal data via our software, as noted in the section entitled “Data processed using our services” above.
- You provide services to us: We will typically collect certain personal data about you for the purpose of ensuring we can work with you, such as contact and payment information.
- Third parties: Third parties may provide us with personal data about you. This might include compliance and screening providers (where relevant), payment providers, hosting/IT providers and commercial partners.
How do we use your personal data?
We will only use your personal data when the law allows us to. Depending on the context, the main lawful bases we rely on are:
- Consent: You have given us your consent to process your personal data for a specific purpose.
- Contract: The processing is necessary for us to perform our contractual obligations with you or you have asked us to take specific steps before entering into a contract with you.
- Legal obligation: The processing is necessary for us to comply with a legal or regulatory obligation.
- Legitimate interests: The processing is necessary for our legitimate interest (or those of a third-party), for example, for us to provide the best service to you via our website. Before we process your personal data on this basis, we consider and balance any potential impact on you and we will not rely on this basis where such impact outweighs our interest.
Where we need personal data to provide the services or to comply with a legal obligation, and you do not provide it, we may not be able to provide the services (or may have to suspend them). We will tell you where this applies.
A summary of key processing activities and the lawful basis we rely on is set out at the end of this Privacy Notice.
When may we disclose your data?
We may share personal data with trusted third parties where this is necessary for the purposes set out in this notice. We require our service providers to process personal data only on our instructions and to keep it secure. Examples include:
- Service providers such as website hosting and software hosting providers, analytics providers, security providers, and other IT and support providers (usually acting as data processors).
- Payment providers and banks (usually acting as independent controllers for payment processing).
- Professional and business advisers such as lawyers, accountants, consultants and insurers (usually acting as independent controllers).
- Regulators and authorities, such as HM Revenue & Customs and law enforcement, where we are required or permitted to do so (usually acting as independent controllers).
- Potential buyers, investors or counterparties where we sell, transfer, merge or restructure our business, subject to appropriate confidentiality safeguards (usually acting as independent controllers).
International transfers
Some of our service providers may process personal data outside the UK and/or the European Economic Area (EEA). Where this happens, we take steps to ensure a similar level of protection is applied to your personal data. We will typically rely on one or more of the following safeguards:
- transfers to countries recognised as providing adequate protection under UK data protection law;
- the UK International Data Transfer Agreement (IDTA) or the UK Addendum to the EU Standard Contractual Clauses (as appropriate); and/or
- additional technical and organisational measures where required and adherence with updates to the law and guidance concerning international transfers of personal data.
Data security and retention
We use appropriate technical and organisational security measures designed to protect personal data against loss, misuse, unauthorised access, alteration or disclosure. Access is limited to personnel and suppliers who have a business need to know.
We have procedures in place to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
We only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting or reporting requirements.
We may update our data retention practices occasionally and you can request details by contacting us. We are legally required to keep basic information about our customers (including contact, identity and transaction data) for six years after they cease being customers, for tax purposes.
We may also anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes, including benchmarking via our services. We can use anonymised information indefinitely without further notice to you.
Your legal rights
You have certain rights in certain circumstances under data protection law. In particular, you can:
- Access: Ask for access to and a copy of your personal data and can check we are lawfully processing it.
- Correction: Ask us to correct any incomplete or inaccurate personal data we hold about you.
- Erasure: Ask us to delete or remove your personal data in certain circumstances. Please note however that we may not always be able to comply with your request for specific legal reasons, which will be notified to you at the time of your request.
- Object: Object to the processing of your personal data where we are relying on our legitimate interest (or those of a third-party) as the basis for processing your personal data, if you feel it impacts on your fundamental rights and freedoms or where we are processing your personal data for direct marketing purposes. In some cases, we may demonstrate that we have compelling legitimate grounds to process your information which override your rights and freedoms.
- Restrict processing: Ask us to suspend or restrict the processing of your personal data if: (a) you want us to establish the accuracy of your personal data; (b) our use of your personal data is unlawful, but you do not want us to erase it; (c) you need us to hold your personal data (where we no longer require it) as you need it to establish, exercise or defend legal claims; or (d) you have objected to our use of your personal data, but we need to verify whether we have overriding legitimate grounds to use it.
- Request a transfer: Request a transfer of your personal data which is held in an automated manner and which you provided your consent for us to process such personal data or which we need to process to perform our contract with you, to you or a third-party.
- Withdraw your consent: Withdraw your consent at any time, where we are relying on consent to process your personal data. This does not affect the lawfulness of any processing carried out before you withdraw your consent.
To exercise your rights, please contact us using the contact details on our website. We usually respond within one month. We may request information to verify your identity.
You also have the right to complain to the Information Commissioner’s Office (ICO) if you are unhappy with how we handle your personal data.
Keeping your information up to date
Please let us know if your personal data changes during your relationship with us so we can keep our records accurate.
Third-party links
Our website and services may contain links to third‑party websites, plug‑ins and applications. We do not control these third-party websites and we are not responsible for their privacy practices. Please review their privacy notices.
Updates
We may change this Privacy Notice from time to time by updating this page. Please check it regularly to ensure you are aware of any changes. This Privacy Notice was last updated on 27 January 2026.
Processing activities
The table below summarises common processing activities and the lawful basis we typically rely on. In some cases, more than one basis may apply depending on the context:
| Purpose | Types of data | Lawful basis |
|---|
| Responding to enquiries and managing prospective client or supplier relationships | Contact and account data; correspondence | Legitimate interests and/or steps prior to contract |
| Providing services to clients (including account administration and support) or purchasing services from suppliers | Contact and account data; client and supplier data, including correspondence | Contract (and, where acting as processor, on client instructions under the contract and/or legitimate interests) |
| Billing, payment and collections | Billing and payment data; contact data | Contract; legal obligation (as applicable) |
| Website security and abuse prevention | Technical data; usage data | Legitimate interests (security) |
| Website analytics (e.g., Google Analytics) | Technical and usage data | Consent (via cookie banner/settings) |
| Compliance, due diligence and risk management (e.g., KYC/AML where applicable) | Identity and verification data; contact data | Legal obligation and/or legitimate interests |
| Business operations, record‑keeping, training and legal claims | Correspondence; contact data; relevant account records | Legitimate interests; legal obligation |
| Corporate transactions (sale, merger, investment, reorganisation, etc.) | Relevant records about clients, contacts and suppliers | Legitimate interests |