Skip navigation

How we use your personal information

Updates were made to the UCAS Privacy Policy on 17 December 2024, within the ‘Calling UCAS’ section to include further guidance on the retention period for call recordings. 

Our privacy policy tells you about the personal information we collect from you, how we use it, and what your rights are. We’ve divided it into headings you can select and view, depending on the services you are using.

If we make any major changes to this policy, we’ll add an alert on this website and, if necessary, our social media channels or contact you. If you are under the age of 13, you can take a look around our website, but you shouldn’t give us your personal information, as our services are for people aged 13 or over. As UCAS processes personal information of individuals under the age of 18 we handle data and develop our systems and services in accordance with Code of Practice known as the ‘Children’s Code', which has been released by the Information Commissioner’s Office (ICO).

If you've got any questions about our privacy policy, or how we use personal information, email datagovernance@ucas.ac.uk or write to: Data Protection Officer, UCAS, Rosehill, New Barn Lane, Cheltenham, Gloucestershire, GL52 3LZ.

For a quick introduction about how we use your personal information, take a look at our video. For the full picture, please refer to the guidance below.

      

Being ISO 27001 certified means we adhere to the highest international standards for information security management. At UCAS, this certification underscores our commitment to safeguarding the sensitive data entrusted to us. It assures our clients that their information is handled with the utmost care and protection. Our certification not only ensures compliance but also signifies our dedication to maintaining the integrity and confidentiality of data.