Privacy & data use

How Black Eagle Services collects, uses, and protects personal data.

This Privacy Policy applies to the Black Eagle website, platform dashboards, account onboarding flows, and any mobile application or webview that connects to the same services.

1. Who we are

Black Eagle Services operates a staffing and event support platform for customers and staff. For privacy questions or requests, you can contact us at info@blackeagleservices.co.uk or through the contact page on this website.

2. Information we collect

Depending on how you use the service, we may collect the following categories of information:

account and identity details, such as first name, last name, email address, password, and account status;
customer business details, such as company name, company address, postcode, company number, VAT number, website, and booking contact details;
staff onboarding details, such as date of birth, mobile number, address, postcode, National Insurance number, work positions, availability, work history, and emergency contact details;
identity and verification data, such as email verification codes, onboarding status, and selfie images captured for staff identification;
payment and financial administration data, such as booking totals, payment status, deposit status, staff bank details, and Stripe checkout references;
event, order, and application data, such as event location, dates, role requirements, staff applications, assignments, ratings, and operational notes;
support and communication data, such as emails sent for account approval, verification, password reset, and service notifications;
technical and security data, such as password reset tokens, setup tokens, timestamps, and server-side operational records.

3. Device permissions and sensitive data

If you use the staff onboarding flow, the platform may request access to your device camera so that a staff selfie can be captured. We use this image to support staff identification and reduce the risk of impersonation during staffing operations.

We also collect bank details from staff for payout administration and National Insurance information where required for staffing and compliance purposes. Payment card details entered during customer checkout are handled by Stripe and are not stored directly on our servers.

4. How we use personal data

We use personal data to operate the service, including to:

create, approve, verify, secure, and manage customer and staff accounts;
review staffing applications and match staff to available event roles;
create orders, manage bookings, coordinate event delivery, and track payment status;
send verification codes, onboarding emails, password reset links, and service communications;
store staff bank details and payout-related information for business administration;
maintain service quality, investigate incidents, resolve disputes, and improve operations;
meet legal, accounting, tax, fraud prevention, and record-keeping obligations.

5. Lawful basis

Where UK data protection law applies, we process personal data because it is necessary to provide our services, manage contractual relationships, comply with legal obligations, protect legitimate business interests such as platform security and fraud prevention, or because you have asked us to take steps before entering into a contract.

6. Sharing of personal data

We do not sell personal data. We may share data only when necessary with:

payment service providers such as Stripe, to process customer payments and related payment events;
email and communication providers, to send verification, approval, and reset emails;
hosting, database, and technical infrastructure providers used to run the platform securely;
internal administrators and operational staff who need access to support bookings, staff management, or compliance checks;
authorities, advisers, or counterparties where disclosure is required by law or needed to protect legal rights.

7. Data retention

We keep personal data only for as long as necessary for the purposes described in this policy, including service delivery, account recovery, compliance, financial record-keeping, dispute handling, and security. Different data types may be retained for different periods. When data is no longer needed, we delete it or de-identify it where reasonably practical.

8. Security

We use reasonable technical and organisational measures to protect personal data against unauthorised access, misuse, alteration, disclosure, or loss. No system can be guaranteed completely secure, but we work to limit access to sensitive data and to secure account and payment workflows.

9. International transfers

Some service providers used to operate the platform may process data outside the United Kingdom. Where this happens, we take steps that are intended to ensure personal data continues to receive an appropriate level of protection.

10. Your choices and rights

Subject to applicable law, you may request access to your personal data, ask us to correct inaccurate information, request deletion, object to certain processing, or ask us to restrict how your information is used. You can also request account deletion by following the instructions on our Account Deletion page.

11. Children

This service is not directed to children. We do not knowingly collect personal data from children for use of this staffing platform.

12. Changes to this policy

We may update this Privacy Policy from time to time to reflect operational, legal, or product changes. When we do, we will update the “Last updated” date shown on this page.

Quick summary

Main uses Account management, event staffing, booking delivery, payments, support, and security.

Sensitive categories Staff selfie images, National Insurance details, and bank details are used only where needed for onboarding and operations.

Third parties Payments may be processed by Stripe. Service emails may be sent through our configured email providers.

Deletion requests Open the account deletion page to request account removal or data deletion review.

Contact info@blackeagleservices.co.uk